Lucene search
+L

7 matches found

EUVD
EUVD
added 2026/07/08 3:37 p.m.4 views

EUVD-2026-42313

Socket.IO enables bidirectional and low-latency communication for every platform. From 4.1.0 before 6.6.7, Engine.IO protocol v4 polling transport does not properly close the HTTP response for invalid binary POST requests with Content-Type: application/octet-stream, allowing an unauthenticated...

7.5CVSS6AI score0.00354EPSS
Exploits0References3
OSV
OSV
added 2026/07/08 3:37 p.m.4 views

CVE-2026-59725 Socket.IO: Engine.IO Polling Transport Connection Exhaustion

Socket.IO enables bidirectional and low-latency communication for every platform. From 4.1.0 before 6.6.7, Engine.IO protocol v4 polling transport does not properly close the HTTP response for invalid binary POST requests with Content-Type: application/octet-stream, allowing an unauthenticated...

7.5CVSS6.1AI score0.00354EPSS
Exploits0References5
Positive Technologies
Positive Technologies
added 2026/07/08 12:0 a.m.10 views

PT-2026-56488

Name of the Vulnerable Software and Affected Versions Socket.IO versions 4.1.0 through 6.6.6 Description The Engine.IO protocol v4 polling transport fails to properly close the HTTP response when receiving invalid binary POST requests that use the Content-Type: application/octet-stream header. Th...

7.5CVSS6AI score0.00354EPSS
Exploits0References11
CVE
CVE
added 2025/10/09 5:23 a.m.20 views

CVE-2025-7526

CVE-2025-7526 affects WP Travel Engine – Tour Booking Plugin – Tour Operator Software for WordPress (versions

9.8CVSS7.2AI score0.00853EPSS
Exploits0References2
CNNVD
CNNVD
added 2025/09/06 12:0 a.m.4 views

WordPress plugin Easy Social Feed 跨站脚本漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A cross-site scripting...

6.4CVSS5.7AI score0.00216EPSS
Exploits0References4
OSV
OSV
added 2025/01/31 12:15 p.m.5 views

AZL-56351 CVE-2025-21667 affecting package kernel for versions less than 6.6.76.1-1

In the Linux kernel, the following vulnerability has been resolved: iomap: avoid avoid truncating 64-bit offset to 32 bits on 32-bit kernels, iomapwritedelallocscan was inadvertently using a 32-bit position due to folionextindex returning an unsigned long. This could lead to an infinite loop when...

5.5CVSS6.4AI score0.00202EPSS
Exploits0References1
OSV
OSV
added 2021/02/15 5:15 p.m.8 views

AZL-6437 CVE-2021-27218 affecting package glib for versions less than 2.60.1-5

An issue was discovered in GNOME GLib before 2.66.7 and 2.67.x before 2.67.4. If gbytearraynewtake was called with a buffer of 4GB or more on a 64-bit platform, the length would be truncated modulo 232, causing unintended length truncation...

7.5CVSS7AI score0.0408EPSS
Exploits0References1
Rows per page
Query Builder