Lucene search
K

11 matches found

EUVD
EUVD
added 2026/06/17 6:12 p.m.41 views

EUVD-2026-36726

Multer vulnerable to Denial of Service via deeply nested field names...

7.5CVSS5.2AI score0.00278EPSS
Exploits0References3
Cvelist
Cvelist
added 2026/06/15 1:56 p.m.37 views

CVE-2026-5079 multer vulnerable to Denial of Service via deeply nested field names

Impact: multer versions 1.0.0 through 2.1.1 and 3.0.0-alpha.1 are vulnerable to a Denial of Service via deeply nested field names in multipart form data. The append-field dependency parses bracket notation in field names with no limit on nesting depth, allowing an attacker to force allocation of...

7.5CVSS0.00278EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2026/06/15 12:0 a.m.20 views

PT-2026-49233

Name of the Vulnerable Software and Affected Versions multer versions 1.0.0 through 2.1.1 multer version 3.0.0-alpha.1 Description A Denial of Service issue exists due to the way the append-field dependency parses bracket notation in field names within multipart form data. Because there is no lim...

7.5CVSS5.3AI score0.00278EPSS
Exploits0References9
OSV
OSV
added 2024/03/06 10:59 a.m.26 views

BIT-GOLANG-2022-30633 Stack exhaustion when unmarshaling certain documents in encoding/xml

Uncontrolled recursion in Unmarshal in encoding/xml before Go 1.17.12 and Go 1.18.4 allows an attacker to cause a panic due to stack exhaustion via unmarshalling an XML document into a Go struct which has a nested field that uses the 'any' field tag...

7.5CVSS7.7AI score0.01618EPSS
Exploits0References6
RedHat Linux
RedHat Linux
added 2023/05/16 8:49 a.m.5 views

golang: encoding/xml: stack exhaustion in Unmarshal

A flaw was found in golang. Calling Unmarshal on an XML document into a Go struct, which has a nested field that uses the "any" field tag, can cause a panic due to stack exhaustion...

7.5CVSS6.6AI score0.01618EPSS
Exploits0References6
RedHat Linux
RedHat Linux
added 2022/11/15 10:31 a.m.3 views

golang: encoding/xml: stack exhaustion in Unmarshal

A flaw was found in golang. Calling Unmarshal on an XML document into a Go struct, which has a nested field that uses the "any" field tag, can cause a panic due to stack exhaustion...

7.5CVSS6.6AI score0.01618EPSS
Exploits0References6
OSV
OSV
added 2022/08/10 8:15 p.m.28 views

CVE-2022-30633

Uncontrolled recursion in Unmarshal in encoding/xml before Go 1.17.12 and Go 1.18.4 allows an attacker to cause a panic due to stack exhaustion via unmarshalling an XML document into a Go struct which has a nested field that uses the 'any' field tag...

7.5CVSS7.4AI score
Exploits0References5
UbuntuCve
UbuntuCve
added 2022/08/10 8:15 p.m.41 views

CVE-2022-30633

Uncontrolled recursion in Unmarshal in encoding/xml before Go 1.17.12 and Go 1.18.4 allows an attacker to cause a panic due to stack exhaustion via unmarshalling an XML document into a Go struct which has a nested field that uses the 'any' field tag...

7.5CVSS6.8AI score0.01618EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2022/08/10 11:39 a.m.6 views

golang: encoding/xml: stack exhaustion in Unmarshal

A flaw was found in golang. Calling Unmarshal on an XML document into a Go struct, which has a nested field that uses the "any" field tag, can cause a panic due to stack exhaustion...

7.5CVSS6.6AI score0.01618EPSS
Exploits0References6
OSV
OSV
added 2022/07/20 8:52 p.m.29 views

GO-2022-0523 Stack exhaustion when unmarshaling certain documents in encoding/xml

Unmarshaling an XML document into a Go struct which has a nested field that uses the 'any' field tag can panic due to stack exhaustion...

7.5CVSS7.7AI score0.01618EPSS
Exploits0References4
Microsoft KB
Microsoft KB
added 2020/04/13 4:9 a.m.27 views

MS15-081: Description of the security update for Word 2013: August 11, 2015

Resolves vulnerabilities in Office that could allow remote code execution if a user opens a specially crafted Microsoft Office file.SummaryThis security update resolves vulnerabilities in Microsoft Office that could allow remote code execution if a user opens a specially crafted Microsoft Office...

7AI score
Exploits0
Rows per page
Query Builder