CVE-2026-26003

CVE-2026-26003 affects FastGPT versions 4.14.0–4.14.5, where an unauthenticated attacker can access the plugin system via FastGPT/api/plugin/xxx, potentially crashing the plugin system and causing loss of plugin installation status. The impact on confidentiality/integrity is limited, with availab...

DEBIAN-CVE-2021-30015

There is a Null Pointer Dereference in function filtercore/filterpck.c:gffilterpcknewallocinternal in GPAC 1.0.1. The pid comes from function av1dmxparseflushsample, the ctx.opid maybe NULL. The result is a crash in gffilterpcknewallocinternal...

ljharb's qs module input validation vulnerability

A web framework is a framework used to support the development of dynamic websites, web applications, and web services. qs module is a string query parsing module used by developers when building web frameworks. A denial of service vulnerability exists in ljharb's qs module. An attacker could...

CVE-2016-6691

service/jni/comandroidserverwifiGbk2Utf.cpp in the Qualcomm Wi-Fi gbk2utf module in Android before 2016-10-05 allows remote attackers to cause a denial of service framework crash or possibly have unspecified other impact via an access point that has a malformed SSID with GBK encoding, aka Qualcom...