Lucene search
+L

8 matches found

attackerkb
attackerkb
added 2026/05/13 2:37 p.m.8 views

CVE-2026-44288

protobufjs compiles protobuf definitions into JavaScript JS functions. Prior to 7.5.6 and 8.0.2, protobufjs includes a minimal UTF-8 decoder that accepted overlong UTF-8 byte sequences and decoded them to their canonical characters instead of replacing them. An attacker who can provide protobuf...

5.3CVSS5.8AI score0.00301EPSS
Exploits0References2Affected Software1
vulnrichment
vulnrichment
added 2026/05/13 2:37 p.m.5 views

CVE-2026-44288 protobufjs: Overlong UTF-8 decoding

protobufjs compiles protobuf definitions into JavaScript JS functions. Prior to 7.5.6 and 8.0.2, protobufjs includes a minimal UTF-8 decoder that accepted overlong UTF-8 byte sequences and decoded them to their canonical characters instead of replacing them. An attacker who can provide protobuf...

5.3CVSS5.8AI score0.00301EPSS
Exploits0References1
euvd
euvd
added 2025/10/07 12:30 a.m.13 views

EUVD-2009-2696

Malware in sbrugna...

4.3CVSS6.4AI score0.04359EPSS
Exploits1References2
redhatcve
redhatcve
added 2025/05/21 8:1 p.m.10 views

CVE-2009-2705

CA SiteMinder allows remote attackers to bypass cross-site scripting XSS protections for J2EE applications via a request containing non-canonical, "overlong Unicode" in place of blacklisted characters...

4.3CVSS6AI score0.04359EPSS
Exploits1References1
nvd
nvd
added 2009/08/11 10:30 a.m.26 views

CVE-2009-2705

CA SiteMinder allows remote attackers to bypass cross-site scripting XSS protections for J2EE applications via a request containing non-canonical, "overlong Unicode" in place of blacklisted characters...

4.3CVSS5.8AI score0.04359EPSS
Exploits1References1
prion
prion
added 2009/08/11 10:30 a.m.27 views

Cross site scripting

CA SiteMinder allows remote attackers to bypass cross-site scripting XSS protections for J2EE applications via a request containing non-canonical, "overlong Unicode" in place of blacklisted characters...

4.3CVSS6.2AI score0.04359EPSS
Exploits1References1
cvelist
cvelist
added 2009/08/11 10:0 a.m.29 views

CVE-2009-2705

CA SiteMinder allows remote attackers to bypass cross-site scripting XSS protections for J2EE applications via a request containing non-canonical, "overlong Unicode" in place of blacklisted characters...

5.8AI score0.04359EPSS
Exploits1References1
ptsecurity
ptsecurity
added 2009/08/11 12:0 a.m.4 views

PT-2009-5093 · Ca · Ca Siteminder

Name of the Vulnerable Software and Affected Versions: CA SiteMinder affected versions not specified Description: The issue allows remote attackers to bypass cross-site scripting XSS protections for J2EE applications. This is achieved by sending a request that contains non-canonical, "overlong...

4.3CVSS5.5AI score0.04359EPSS
Exploits1References3
Rows per page
Query Builder