CVE-2026-44222

vLLM is an inference and serving engine for large language models LLMs. From 0.6.1 to before 0.20.0, there is a a Token Injection vulnerability in vLLM’s multimodal processing. Unauthenticated, text-only prompts that spell special tokens are interpreted as control. Image and video placeholder...

CVE-2026-42199

Grid is a data structure grid for rust. From version 0.17.0 to before version 1.0.1, an integer overflow in Grid::expandrows can corrupt the relationship between the grid’s logical dimensions and its backing storage. After the internal invariant is broken, the safe API get may invoke getunchecked...

EUVD-2026-28834

Grid is a data structure grid for rust. From version 0.17.0 to before version 1.0.1, an integer overflow in Grid::expandrows can corrupt the relationship between the grid’s logical dimensions and its backing storage. After the internal invariant is broken, the safe API get may invoke getunchecked...

EUVD-2014-6024

Malware in sbrugna...

Linux Distros Unpatched Vulnerability : CVE-2018-15494

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In Dojo Toolkit before 1.14, there is unescaped string injection in dojox/Grid/DataGrid. CVE-2018-15494 Note that Nessus relies on the presence of the package a...

CVE-2023-33558

An information disclosure vulnerability in the component users-grid-data.php of Ocomon before v4.0.1 allows attackers to obtain sensitive information such as e-mails and usernames...

PT-2023-24383 · Ocomon · Ocomon

Name of the Vulnerable Software and Affected Versions: Ocomon versions prior to 4.0.1 Description: An information disclosure issue in the component users-grid-data.php of Ocomon allows attackers to obtain sensitive information such as e-mails and usernames. Recommendations: For versions prior to...

NFine Rapid Development Platform 安全漏洞

NFine Rapid Development Platform is a C language based, very fast WEB + ORM framework for NFine individual developers. A security vulnerability exists in NFine Rapid Development Platform, which stems from systemManage/Organize/GetTreeGridJson?search=false&nd=1681813520783&rows=10000&page=1&...

Design/Logic Flaw

The IBM WebSphere DataPower XC10 appliance 2.1 and 2.5 before FP4 allows remote authenticated users to bypass intended grid-data access restrictions via unspecified vectors...

CVE-2014-6138

CVE-2014-6138 affects IBM WebSphere DataPower XC10 appliance 2.1 and 2.5 before FP4. Remote authenticated users can bypass intended grid-data access restrictions via unspecified vectors. The documents do not disclose the root cause or a confirmed exploit path. Affected product/versions are specif...