Lucene search
K

6 matches found

IBM Security Bulletins
IBM Security Bulletins
added 2026/04/13 9:48 p.m.4 views

Security Bulletin: vulerability in IBM Spectrum Symphony with IBM WebSphere Application Server Liberty

Summary vulerability in IBM Spectrum Symphony with IBM WebSphere Application Server Liberty Vulnerability Details CVEID:CVE-2024-56339 DESCRIPTION: IBM WebSphere Application Server 9.0 and WebSphere Application Server Liberty 17.0.0.3 through 25.0.0.7 could allow a remote attacker to bypass...

7.5CVSS5.9AI score0.004EPSS
Exploits0Affected Software1
Snyk
Snyk
added 2026/04/06 6:3 p.m.5 views

Incorrect Behavior Order: Validate Before Canonicalize

Overview vite is a Native-ESM powered web dev build tool Affected versions of this package are vulnerable to Incorrect Behavior Order: Validate Before Canonicalize through the server.fs.deny component. An attacker can access sensitive files by appending specific query parameters such as ?raw,...

8.2CVSS5.7AI score0.02095EPSS
Exploits1References2
EUVD
EUVD
added 2025/11/13 12:31 p.m.5 views

EUVD-2025-163768

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Pluggabl Booster for WooCommerce woocommerce-jetpack allows Stored XSS.This issue affects Booster for WooCommerce: from n/a through = 7.3.2...

6.5CVSS5.5AI score0.00138EPSS
Exploits0References2
CVE
CVE
added 2025/11/13 9:24 a.m.18 views

CVE-2025-64380

CVE-2025-64380 affects WordPress Booster for WooCommerce (woocommerce-jetpack) plugin, specifically versions up to and including 7.3.2. The root cause is improper input handling during web page generation, leading to a stored cross-site scripting (XSS) vulnerability. This means malicious script p...

6.5CVSS5.6AI score0.00138EPSS
Exploits0References1Affected Software1
IBM Security Bulletins
IBM Security Bulletins
added 2025/10/23 8:26 p.m.8 views

Security Bulletin: vulerability in IBM Spectrum Symphony with spring webmvc

Summary vulerability in IBM Spectrum Symphony with spring webmvc Vulnerability Details CVEID:CVE-2024-38819 DESCRIPTION: Applications serving static resources through the functional web frameworks WebMvc.fn or WebFlux.fn are vulnerable to path traversal attacks. An attacker can craft malicious HT...

7.5CVSS6.6AI score0.54862EPSS
Exploits6Affected Software1
CNNVD
CNNVD
added 2024/03/24 12:0 a.m.4 views

Varnish Cache 安全漏洞

Varnish Cache is a suite of reverse web caching servers. A security vulnerability exists in Varnish Cache versions prior to 7.3.2 and 7.4.x prior to 7.4.3 and Varnish Enterprise versions prior to 6.0.12r6, which stems from a credit exhaustion that allows HTTP/2 connections to control the flow...

7.5CVSS7.3AI score0.03663EPSS
Exploits0References4
Rows per page
Query Builder