Lucene search
K

5 matches found

AlpineLinux
AlpineLinux
added 2026/06/02 10:1 p.m.6 views

CVE-2026-42507

When returning errors, functions in the net/textproto package would include its input as part of the error. This might allow an attacker to inject misleading content to errors that are printed or logged...

5.3CVSS5.8AI score0.0037EPSS
Exploits0
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2023-50859

Malicious code in bioql PyPI...

9.1CVSS9AI score0.00348EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2025/05/22 10:25 a.m.8 views

CVE-2019-10084

In Apache Impala 2.7.0 to 3.2.0, an authenticated user with access to the IDs of active Impala queries or sessions can interact with those sessions or queries via a specially-constructed request and thereby potentially bypass authorization and audit mechanisms. Session and query IDs are unique an...

7.5CVSS6.9AI score0.00994EPSS
Exploits0References1
Debian CVE
Debian CVE
added 2025/02/12 4:20 p.m.5 views

CVE-2025-25184

Rack provides an interface for developing web applications in Ruby. Prior to versions 2.2.11, 3.0.12, and 3.1.10, Rack::CommonLogger can be exploited by crafting input that includes newline characters to manipulate log entries. The supplied proof-of-concept demonstrates injecting malicious conten...

7.1CVSS7AI score0.01142EPSS
Exploits1
securityvulns
securityvulns
added 2000/07/10 12:0 a.m.41 views

LPRng lpd should not be SETUID root

Well, even in spite of all of my efforts, care, and paranoia, I finally dropped the hammer on my foot. Luckily it appears that I spotted this loophole before somebody on the LPRng mailing list did. Or worse yet, got a call from CERT about this problem :- SUMMARY: Versions of...

Exploits0
Rows per page
Query Builder