Lucene search
K

4 matches found

CNNVD
CNNVD
added 2026/02/25 12:0 a.m.9 views

esm.sh 代码问题漏洞

esm.sh is an open-source content distribution network developed by esm.sh. Versions of esm.sh 137 and earlier contained code vulnerabilities. These vulnerabilities stemmed from a server-side request forgeing vulnerability in the https routing mechanism of esm.sh. The service attempted to block...

8.6CVSS7.3AI score0.00339EPSS
Exploits1References1
RedHat Linux
RedHat Linux
added 2020/05/21 6:56 p.m.3 views

dotnet: Denial of service due to infinite loop

An infinite loop was found in the HTTP Routing component of Microsoft.AspNetCore.App, which could be exploited by a remote, unauthenticated attacker. This flaw allows an attacker without special privileges to send crafted requests to a machine running an ASP.NET Core application, triggering the...

7.5CVSS5.7AI score0.05701EPSS
Exploits0References5
RedhatCVE
RedhatCVE
added 2020/05/12 7:11 p.m.38 views

CVE-2020-1161

An infinite loop was found in the HTTP Routing component of Microsoft.AspNetCore.App, which could be exploited by a remote, unauthenticated attacker. This flaw allows an attacker without special privileges to send crafted requests to a machine running an ASP.NET Core application, triggering the...

5CVSS2.5AI score0.05701EPSS
Exploits0References4
OpenWrt
OpenWrt
added 2019/11/05 12:0 a.m.50 views

Security Advisory 2019-11-05-2 - LuCI CSRF vulnerability (CVE-2019-17367)

DESCRIPTION A logic flaw in LuCI's HTTP routing component led to ineffective CSRF token testing for various request endpoints, specifically ones using the arcombine dispatch action. This allows 3rd party web pages running in the same browser session as an active LuCI login session to perform...

8.8CVSS8.9AI score0.00562EPSS
Exploits0References3
Rows per page
Query Builder