Lucene search
+L

7 matches found

attackerkb
attackerkb
added 2026/07/06 8:3 a.m.9 views

CVE-2026-46585

Improper Input Validation, Authorization Bypass Through User-Controlled Key vulnerability in Apache Camel Lucene Component. The camel-lucene producer reads the search phrase from an Exchange header LuceneConstants.HEADERQUERY whose value was the plain string QUERY and RETURNLUCENEDOCS for...

6AI score0.00399EPSS
Exploits1References2Affected Software1
euvd
euvd
added 2025/10/07 12:30 a.m.7 views

EUVD-2019-8507

Malware in sbrugna...

9.8CVSS7.4AI score0.02457EPSS
Exploits1References9
veracode
veracode
added 2024/11/12 1:45 p.m.17 views

Improper Access Control

github.com/hashicorp/consul is vulnerable to Improper Access Control. The vulnerability is due to the ability to bypass HTTP header-based access rules when using headers in L7 traffic intentions, allowing unauthorized access in certain cases...

8.3CVSS6.6AI score0.00473EPSS
Exploits0References5Affected Software1
redhat
redhat
added 2019/04/10 8:29 p.m.4 views

istio/envoy: Authorization bypass via null characters injection in HTTP/1.x

A flaw was found in Envoy version 1.9.0 and older, where Envoy does not reject embedded zero characters NUL, ASCII 0x0 when processing HTTP/1.x header values. This flaw allows remote attackers crafting header values containing embedded NUL characters to potentially bypass header matching rules,...

8.3CVSS5.8AI score0.03732EPSS
Exploits1References4
nessus
nessus
added 2012/03/16 12:0 a.m.28 views

Mozilla Thunderbird 10.x < 10.0.3 Multiple Vulnerabilities

Binary data 6352.prm...

9.3CVSS9.8AI score0.0663EPSS
Exploits1References21
nessus
nessus
added 2012/03/15 12:0 a.m.40 views

Mozilla SeaMonkey 2.x < 2.8 Multiple Vulnerabilities

Binary data 801337.prm...

9.3CVSS9.8AI score0.0663EPSS
Exploits1References21
nessus
nessus
added 2012/03/15 12:0 a.m.39 views

Thunderbird 10.0.x < 10.0.3 Multiple Vulnerabilities (Mac OS X)

The installed version of Thunderbird 10.0.x is potentially affected by the following security issues : - Multiple memory corruption issues. By tricking a user into visiting a specially crafted page, these issues may allow an attacker to execute arbitrary code in the context of the affected...

9.3CVSS8.6AI score0.0663EPSS
Exploits1References20
Rows per page
Query Builder