2 matches found
DEBIAN-CVE-2025-59436
The ip aka node-ip package through 2.0.1 in NPM might allow SSRF because the IP address value 017700000001 is improperly categorized as globally routable via isPublic. NOTE: this issue exists because of an incomplete fix for CVE-2024-29415...
OpenProject 安全漏洞
OpenProject is an open source Web-based project management software . The software features project planning, task management, bug tracking and cost budgeting. A security vulnerability exists in versions of OpenProject prior to 12.5.6 that stems from routing being publicly available...