Lucene search
K

7 matches found

CVE
CVE
added 2026/06/19 6:14 p.m.23 views

CVE-2026-49293

CVE-2026-49293 affects js-toml up to v1.1.0. The parsing of hexadecimal/octal/binary integer literals uses a hand-written parseBigInt loop that multiplies the BigInt accumulator by the radix for every digit, yielding an O(n^2) time complexity in the length of the literal. A single TOML document c...

7.5CVSS5.8AI score0.00415EPSS
Exploits1References3Affected Software1
Vulnrichment
Vulnrichment
added 2026/05/12 7:9 p.m.10 views

CVE-2026-7474 Nomad vulnerable to path traversal in dynamic host volume which may lead to code execution

HashiCorp Nomad and Nomad Enterprise prior to 2.0.1 are vulnerable to code execution on the client host through a path traversal attack. This vulnerability CVE-2026-7474 is fixed in Nomad 2.0.1, 1.11.5 and 1.10.11...

8.8CVSS6.2AI score0.06892EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/01/09 9:16 a.m.5 views

CVE-2025-14114

The 1180px Shortcodes plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'class' shortcode attribute in all versions up to, and including, 1.1.1 due to insufficient input sanitization and output escaping. This makes it possible for authenticated attackers, with...

6.4CVSS5AI score0.00227EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2025/10/07 12:0 a.m.5 views

Unity Linux 20.1070e Security Update: nodejs (UTSA-2025-680624)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-680624 advisory. The X509VFLAGX509STRICT flag enables additional security checks of the certificates present in a certificate chain. It is not set by default. Starting from OpenSSL...

7.4CVSS7.7AI score0.18339EPSS
Exploits1References4
NVD
NVD
added 2025/02/18 7:15 p.m.11 views

CVE-2025-26603

Vim is a greatly improved version of the good old UNIX editor Vi. Vim allows to redirect screen messages using the :redir ex command to register, variables and files. It also allows to show the contents of registers using the :registers or :display ex command. When redirecting the output of...

4.2CVSS0.00223EPSS
Exploits0References3
CNNVD
CNNVD
added 2023/12/07 12:0 a.m.6 views

Desdev DedeCMS Security Breach

Desdev DedeCMS Dream Weaving Content Management System is a PHP-based open-source content management system CMS of China Zhuozhuo network Desdev company. The system has the functions of content publishing, content management, content editing and content retrieval. A security vulnerability exists ...

6.1CVSS6.2AI score0.00431EPSS
Exploits1References2
OSV
OSV
added 2017/05/04 2:29 p.m.2 views

DEBIAN-CVE-2017-8779

rpcbind through 0.2.4, LIBTIRPC through 1.0.1 and 1.0.2-rc through 1.0.2-rc3, and NTIRPC through 1.4.3 do not consider the maximum RPC data size during memory allocation for XDR strings, which allows remote attackers to cause a denial of service memory consumption with no subsequent free via a...

7.5CVSS7.2AI score0.81921EPSS
Exploits4References1
Rows per page
Query Builder