Lucene search
+L

106 matches found

cnnvd
cnnvd
added 2026/02/26 12:0 a.m.14 views

NanaZip 安全漏洞

NanaZip is a compression software open source by the M2-Team. Versions of NanaZip from 5.0.1252.0 to 6.0.1638.0, as well as versions before 6.5.1638.0, have security vulnerabilities. These vulnerabilities stem from the.NET Single File Application parser’s integer underflow in header size...

5.1CVSS5.8AI score0.00129EPSS
Exploits1References1
attackerkb
attackerkb
added 2026/02/25 11:43 p.m.2 views

CVE-2026-27710

NanaZip is an open source file archive. Starting in version 5.0.1252.0 and prior to versions 6.0.1638.0 and 6.5.1638.0, a denial-of-service vulnerability exists in NanaZip’s .NET Single File Application parser. A crafted bundle can force an integer underflow in header-size calculation and trigger...

5.1CVSS5.5AI score0.00129EPSS
Exploits1References2Affected Software1
euvd
euvd
added 2026/02/25 11:43 p.m.4 views

EUVD-2026-8768

NanaZip is an open source file archive. Starting in version 5.0.1252.0 and prior to versions 6.0.1638.0 and 6.5.1638.0, a denial-of-service vulnerability exists in NanaZip’s .NET Single File Application parser. A crafted bundle can force an integer underflow in header-size calculation and trigger...

5.1CVSS5.5AI score0.00129EPSS
Exploits1References1
cve
cve
added 2026/02/25 11:43 p.m.18 views

CVE-2026-27710

CVE-2026-27710 affects NanaZip prior to fixed versions 6.0.1638.0 and 6.5.1638.0, where the ".NET Single File Application" parser is vulnerable to a denial-of-service due to an integer underflow in header-size calculation, which can trigger an unbounded memory allocation when opening a crafted bu...

5.1CVSS5.5AI score0.00129EPSS
Exploits1References1Affected Software1
osv
osv
added 2026/02/25 11:43 p.m.5 views

CVE-2026-27710 NanaZip .NET Single-File Parser Integer Underflow Leads to Unbounded Allocation (DoS)

NanaZip is an open source file archive. Starting in version 5.0.1252.0 and prior to versions 6.0.1638.0 and 6.5.1638.0, a denial-of-service vulnerability exists in NanaZip’s .NET Single File Application parser. A crafted bundle can force an integer underflow in header-size calculation and trigger...

5.1CVSS5.6AI score0.00129EPSS
Exploits1References3
ptsecurity
ptsecurity
added 2026/02/25 12:0 a.m.8 views

PT-2026-22044

NanaZip is an open source file archive. Starting in version 5.0.1252.0 and prior to versions 6.0.1638.0 and 6.5.1638.0, a denial-of-service vulnerability exists in NanaZip’s .NET Single File Application parser. A crafted bundle can force an integer underflow in header-size calculation and trigger...

5.1CVSS5.5AI score0.00129EPSS
Exploits1References2
redhatcve
redhatcve
added 2026/02/21 1:30 a.m.6 views

CVE-2026-26282

NanaZip is an open source file archive Starting in version 5.0.1252.0 and prior to version 6.0.1630.0, NanaZip has an out-of-bounds heap read in .NET Single File bundle header parser due to missing bounds check. Opening a crafted file with NanaZip causes a crash or leaks heap data to the user...

6.6CVSS5.6AI score0.00172EPSS
Exploits1References1
nvd
nvd
added 2026/02/19 9:18 p.m.6 views

CVE-2026-26282

NanaZip is an open source file archive Starting in version 5.0.1252.0 and prior to version 6.0.1630.0, NanaZip has an out-of-bounds heap read in .NET Single File bundle header parser due to missing bounds check. Opening a crafted file with NanaZip causes a crash or leaks heap data to the user...

6.6CVSS0.00172EPSS
Exploits1References2
vulnrichment
vulnrichment
added 2026/02/19 8:41 p.m.4 views

CVE-2026-26282 NanaZip has DotNet Single file OOB Heap Read

NanaZip is an open source file archive Starting in version 5.0.1252.0 and prior to version 6.0.1630.0, NanaZip has an out-of-bounds heap read in .NET Single File bundle header parser due to missing bounds check. Opening a crafted file with NanaZip causes a crash or leaks heap data to the user...

5.2CVSS5.6AI score0.00172EPSS
Exploits1References2
cvelist
cvelist
added 2026/02/19 8:41 p.m.26 views

CVE-2026-26282 NanaZip has DotNet Single file OOB Heap Read

NanaZip is an open source file archive Starting in version 5.0.1252.0 and prior to version 6.0.1630.0, NanaZip has an out-of-bounds heap read in .NET Single File bundle header parser due to missing bounds check. Opening a crafted file with NanaZip causes a crash or leaks heap data to the user...

5.2CVSS0.00172EPSS
Exploits1References2
cve
cve
added 2026/02/19 8:41 p.m.15 views

CVE-2026-26282

NanaZip (open source file archiver) is affected by CVE-2026-26282: an out-of-bounds heap read in the .NET Single File bundle header parser due to a missing bounds check. Affected versions are 5.0.1252.0 through prior to 6.0.1630.0; upgrading to 6.0.1630.0 patches the issue. Exploitation would req...

6.6CVSS5.6AI score0.00172EPSS
Exploits1References2Affected Software1
osv
osv
added 2026/02/19 8:41 p.m.7 views

CVE-2026-26282 NanaZip has DotNet Single file OOB Heap Read

NanaZip is an open source file archive Starting in version 5.0.1252.0 and prior to version 6.0.1630.0, NanaZip has an out-of-bounds heap read in .NET Single File bundle header parser due to missing bounds check. Opening a crafted file with NanaZip causes a crash or leaks heap data to the user...

5.2CVSS5.6AI score0.00172EPSS
Exploits1References4
ptsecurity
ptsecurity
added 2026/02/19 12:0 a.m.5 views

PT-2026-20927

NanaZip is an open source file archive Starting in version 5.0.1252.0 and prior to version 6.0.1630.0, NanaZip has an out-of-bounds heap read in .NET Single File bundle header parser due to missing bounds check. Opening a crafted file with NanaZip causes a crash or leaks heap data to the user...

5.2CVSS5.6AI score0.00172EPSS
Exploits1References2
cnnvd
cnnvd
added 2026/02/19 12:0 a.m.9 views

NanaZip 安全漏洞

NanaZip is a compression software open source by the M2-Team. Versions of NanaZip prior to 6.0.1630.0 contained security vulnerabilities. These vulnerabilities stemmed from a lack of boundary checks in the.NET Single File bundling header parser, which could lead to out-of-bounds heap access...

6.6CVSS5.8AI score0.00172EPSS
Exploits1References2
fedora
fedora
added 2026/01/22 1:8 a.m.8 views

[SECURITY] Fedora 43 Update: cpp-httplib-0.30.1-5.fc43

A C++11 single-file header-only cross platform HTTP/HTTPS library. It's extremely easy to setup. Just include the httplib.h file in your code!...

10CVSS7.1AI score0.00505EPSS
Exploits5
debiancve
debiancve
added 2026/01/12 6:18 p.m.19 views

CVE-2026-22776

cpp-httplib is a C++11 single-file header-only cross platform HTTP/HTTPS library. Prior to version 0.30.1, a Denial of Service DoS vulnerability exists in cpp-httplib due to the unsafe handling of compressed HTTP request bodies Content-Encoding: gzip, br, etc.. The library validates the...

8.7CVSS5.3AI score0.00353EPSS
Exploits1
vulnrichment
vulnrichment
added 2026/01/07 9:20 a.m.3 views

CVE-2025-14352 Awesome Hotel Booking <= 1.0.3 - Incorrect Authorization to Unauthenticated Arbitrary Booking Modification

The Awesome Hotel Booking plugin for WordPress is vulnerable to unauthorized modification of data due to incorrect authorization in the room-single.php shortcode handler in all versions up to, and including, 1.0.3. This is due to the plugin relying solely on nonce verification without capability...

5.3CVSS5.9AI score0.00236EPSS
Exploits0References2
githubexploit
githubexploit
added 2026/01/05 6:58 p.m.149 views

FoolishScan-

Foolish Scan v2.3 Gold Master Context-Aware CTF & Lab Re...

7.1AI score
Exploits0
githubexploit
githubexploit
added 2026/01/05 6:58 p.m.145 views

FoolishScan

Foolish Scan v2.3 Gold Master Context-Aware CTF & Lab Re...

7.1AI score
Exploits0
debiancve
debiancve
added 2026/01/01 5:54 p.m.8 views

CVE-2026-21428

cpp-httplib is a C++11 single-file header-only cross platform HTTP/HTTPS library. Prior to version 0.30.0, the writeheaders function does not check for CR & LF characters in user supplied headers, allowing untrusted header value to escape header lines. This vulnerability allows attackers to add...

8.7CVSS5.3AI score0.00372EPSS
Exploits1
Rows per page
Query Builder