Lucene search
+L

37 matches found

redhatcve
redhatcve
added 2026/04/13 7:25 p.m.5 views

CVE-2026-6125

A security flaw has been discovered in Dromara warm-flow up to 1.8.4. Impacted is the function SpelHelper.parseExpression of the file /warm-flow/save-json of the component Workflow Definition Handler. The manipulation of the argument listenerPath/skipCondition/permissionFlag results in code...

6.5CVSS5.5AI score0.00301EPSS
Exploits0References1
osv
osv
added 2026/04/12 12:30 p.m.4 views

GHSA-822V-8W6H-5JXP Warm-Flow has a SpEL Expression Injection in SpelHelper.parseExpression

A security flaw has been discovered in Dromara warm-flow up to 1.8.4. Impacted is the function SpelHelper.parseExpression of the file /warm-flow/save-json of the component Workflow Definition Handler. The manipulation of the argument listenerPath/skipCondition/permissionFlag results in code...

6.3CVSS6.3AI score0.00301EPSS
Exploits0References8
vulnrichment
vulnrichment
added 2026/04/12 9:30 a.m.3 views

CVE-2026-6125 Dromara warm-flow Workflow Definition save-json SpelHelper.parseExpression code injection

A security flaw has been discovered in Dromara warm-flow up to 1.8.4. Impacted is the function SpelHelper.parseExpression of the file /warm-flow/save-json of the component Workflow Definition Handler. The manipulation of the argument listenerPath/skipCondition/permissionFlag results in code...

6.5CVSS5.5AI score0.00301EPSS
Exploits0References5
attackerkb
attackerkb
added 2026/04/12 9:30 a.m.3 views

CVE-2026-6125

A security flaw has been discovered in Dromara warm-flow up to 1.8.4. Impacted is the function SpelHelper.parseExpression of the file /warm-flow/save-json of the component Workflow Definition Handler. The manipulation of the argument listenerPath/skipCondition/permissionFlag results in code...

6.5CVSS6.3AI score0.00301EPSS
Exploits0References5Affected Software1
ptsecurity
ptsecurity
added 2026/04/12 12:0 a.m.9 views

PT-2026-32157

A security flaw has been discovered in Dromara warm-flow up to 1.8.4. Impacted is the function SpelHelper.parseExpression of the file /warm-flow/save-json of the component Workflow Definition Handler. The manipulation of the argument listenerPath/skipCondition/permissionFlag results in code...

6.5CVSS6.3AI score0.00301EPSS
Exploits0References6
osv
osv
added 2026/02/18 6:16 a.m.7 views

AZL-78087 CVE-2026-2641 affecting package ctags 6.1.0-1

A weakness has been identified in universal-ctags ctags up to 6.2.1. The affected element is the function parseExpression/parseExprList of the file parsers/v.c of the component V Language Parser. Executing a manipulation can lead to uncontrolled recursion. It is possible to launch the attack on t...

4.8CVSS5.3AI score0.00154EPSS
Exploits0References1
vulnrichment
vulnrichment
added 2026/02/18 5:32 a.m.7 views

CVE-2026-2641 universal-ctags V Language v.c parseExprList recursion

A weakness has been identified in universal-ctags ctags up to 6.2.1. The affected element is the function parseExpression/parseExprList of the file parsers/v.c of the component V Language Parser. Executing a manipulation can lead to uncontrolled recursion. It is possible to launch the attack on t...

4.8CVSS5.1AI score0.00154EPSS
Exploits0References6
cve
cve
added 2026/02/18 5:32 a.m.35 views

CVE-2026-2641

CVE-2026-2641 affects universal-ctags ctags up to 6.2.1. The vulnerability lies in the V Language Parser’s component, specifically the function sequence in parsers/v.c (parseExpression/parseExprList). Manipulating input can trigger uncontrolled recursion, allowing a local attacker to exploit it o...

4.8CVSS5.1AI score0.00154EPSS
Exploits0References6
cvelist
cvelist
added 2026/02/18 5:32 a.m.40 views

CVE-2026-2641 universal-ctags V Language v.c parseExprList recursion

A weakness has been identified in universal-ctags ctags up to 6.2.1. The affected element is the function parseExpression/parseExprList of the file parsers/v.c of the component V Language Parser. Executing a manipulation can lead to uncontrolled recursion. It is possible to launch the attack on t...

4.8CVSS0.00154EPSS
Exploits0References6
osv
osv
added 2026/02/18 5:32 a.m.20 views

CVE-2026-2641 universal-ctags V Language v.c parseExprList recursion

A weakness has been identified in universal-ctags ctags up to 6.2.1. The affected element is the function parseExpression/parseExprList of the file parsers/v.c of the component V Language Parser. Executing a manipulation can lead to uncontrolled recursion. It is possible to launch the attack on t...

4.8CVSS5.4AI score0.00154EPSS
Exploits0References8
ptsecurity
ptsecurity
added 2026/02/18 12:0 a.m.15 views

PT-2026-20354

A weakness has been identified in universal-ctags ctags up to 6.2.1. The affected element is the function parseExpression/parseExprList of the file parsers/v.c of the component V Language Parser. Executing a manipulation can lead to uncontrolled recursion. It is possible to launch the attack on t...

4.8CVSS5.1AI score0.00154EPSS
Exploits0References7
euvd
euvd
added 2025/10/03 8:7 p.m.4 views

EUVD-2024-20436

Malicious code in bioql PyPI...

7.8CVSS7.6AI score0.0033EPSS
Exploits1References1
redhatcve
redhatcve
added 2025/05/23 9:35 a.m.4 views

CVE-2024-22919

swftools0.9.2 was discovered to contain a global-buffer-overflow vulnerability via the function parseExpression at swftools/src/swfc.c:2587...

7.8CVSS7.3AI score0.0033EPSS
Exploits1References1
redhatcve
redhatcve
added 2025/05/23 9:35 a.m.22 views

CVE-2024-22911

A stack-buffer-underflow vulnerability was found in SWFTools v0.9.2, in the function parseExpression at src/swfc.c:2602...

7.8CVSS6.8AI score0.0033EPSS
Exploits1References1
nvd
nvd
added 2024/01/19 6:15 p.m.69 views

CVE-2024-22955

swftools 0.9.2 was discovered to contain a stack-buffer-underflow vulnerability via the function parseExpression at swftools/src/swfc.c:2576...

7.8CVSS7.7AI score0.0033EPSS
Exploits1References1
nvd
nvd
added 2024/01/19 6:15 p.m.46 views

CVE-2024-22911

A stack-buffer-underflow vulnerability was found in SWFTools v0.9.2, in the function parseExpression at src/swfc.c:2602...

7.8CVSS7.6AI score0.0033EPSS
Exploits1References1
osv
osv
added 2024/01/19 6:15 p.m.3 views

CVE-2024-22911

A stack-buffer-underflow vulnerability was found in SWFTools v0.9.2, in the function parseExpression at src/swfc.c:2602...

7.8CVSS5.7AI score0.0033EPSS
Exploits1References1
osv
osv
added 2024/01/19 6:15 p.m.4 views

CVE-2024-22919

swftools0.9.2 was discovered to contain a global-buffer-overflow vulnerability via the function parseExpression at swftools/src/swfc.c:2587...

7.8CVSS5.8AI score0.0033EPSS
Exploits1References1
nvd
nvd
added 2024/01/19 6:15 p.m.27 views

CVE-2024-22919

swftools0.9.2 was discovered to contain a global-buffer-overflow vulnerability via the function parseExpression at swftools/src/swfc.c:2587...

7.8CVSS7.7AI score0.0033EPSS
Exploits1References1
prion
prion
added 2024/01/19 6:15 p.m.19 views

Buffer overflow

swftools0.9.2 was discovered to contain a global-buffer-overflow vulnerability via the function parseExpression at swftools/src/swfc.c:2587...

4.4CVSS7.6AI score0.0033EPSS
Exploits1References1Affected Software1
Rows per page
Query Builder