CVE-2026-33814

When processing HTTP/2 SETTINGS frames, transport will enter an infinite loop of writing CONTINUATION frames if it receives a SETTINGSMAXFRAMESIZE with a value of 0...

CVE-2026-0845

The WCFM – Frontend Manager for WooCommerce along with Bookings Subscription Listings Compatible plugin for WordPress is vulnerable to unauthorized modification of data that can lead to privilege escalation due to a missing capability check on the 'WCFMSettingsController::processing' function in...

PMWeb 安全漏洞

PMWeb is a web-based platform from PMWeb, Inc. which is used to manage the lifecycle of a user's schedule and build operations. A security vulnerability exists in PMWeb version 7.2.0, which stems from an insufficient password strength requirement in the Settings Processing component, which could...

The vulnerability of the nghttp2 library, related to errors occurring when using allocated memory during the processing of HTTP/2 SETTINGS, allows a attacker to cause a service failure.

The vulnerability of the nghttp2 library is related to errors that occur when using allocated memory during the processing of HTTP/2 SETTINGS packets. Exploiting this vulnerability can allow a malicious actor to cause service interruptions by sending numerous HTTP/2 SETTINGS packets...