60 matches found
CVE-2026-46456
Improper Input Validation vulnerability in Apache Camel AWS2-SQS Component. The camel-aws2-sqs component map inbound message attributes into the Camel Exchange through a component-specific HeaderFilterStrategy. Sqs2HeaderFilterStrategy configured only an outbound filter setOutFilterPattern, which...
CVE-2026-46456 Apache Camel: Camel-AWS2-SQS: Inbound message attributes are mapped into the Exchange without an inbound HeaderFilterStrategy, allowing a message sender to inject Camel control headers
Improper Input Validation vulnerability in Apache Camel AWS2-SQS Component. The camel-aws2-sqs component map inbound message attributes into the Camel Exchange through a component-specific HeaderFilterStrategy. Sqs2HeaderFilterStrategy configured only an outbound filter setOutFilterPattern, which...
CVE-2026-46456 Apache Camel: Camel-AWS2-SQS: Inbound message attributes are mapped into the Exchange without an inbound HeaderFilterStrategy, allowing a message sender to inject Camel control headers
Improper Input Validation vulnerability in Apache Camel AWS2-SQS Component. The camel-aws2-sqs component map inbound message attributes into the Camel Exchange through a component-specific HeaderFilterStrategy. Sqs2HeaderFilterStrategy configured only an outbound filter setOutFilterPattern, which...
EUVD-2023-2477
Malicious code in bioql PyPI...
EUVD-2023-1900
Malicious code in bioql PyPI...
EUVD-2023-32555
Malicious code in bioql PyPI...
EUVD-2023-2581
Malicious code in bioql PyPI...
CVE-2023-41943
Jenkins AWS CodeCommit Trigger Plugin 3.0.12 and earlier does not perform a permission check in an HTTP endpoint, allowing attackers with Overall/Read permission to clear the SQS queue...
MAL-2024-9710 Malicious code in middleware-sdk-sqs (npm)
--- -= Per source details. Do not edit below this line.=-...
@0xc/serverless-offline-aws-sqs (>=1.0.0 <=2.0.3), @1eg/cert-manager-to-azion (>=0.0.1 <=0.2.0) +2896 more potentially affected by CVE-2024-21534 via jsonpath-plus (>=0.12.0 <=10.1.0)
jsonpath-plus NPM version =0.12.0, =1.0.0, =0.0.1, =0.0.1, =0.0.1-alpha, =0.4.0-next.10, =0.7.0, =0.0.1, =1.0.0, =1.0.98-alpha.0, =1.3.65-alpha.0, =1.27.0, =0.0.1, =1.0.0-atomist-update-latest-1544450968007.20181210141037, =1.0.0-atomist-update-latest-1544451015596.20181210141150,...
Malicious code in Be.Vlaanderen.Basisregistеrs.Sqs.Lаmbda (NuGet)
--- -= Per source details. Do not edit below this line.=-...
MAL-2024-4068 Malicious code in Be.Vlaanderen.Basisregistеrs.Sqs.Lаmbda (NuGet)
--- -= Per source details. Do not edit below this line.=-...
Malicious code in Be.Vlaanderen.Basisrеgistеrs.Sqs.Lаmbdа (NuGet)
--- -= Per source details. Do not edit below this line.=-...
MAL-2024-4086 Malicious code in Be.Vlaanderen.Basisrеgistеrs.Sqs.Lаmbdа (NuGet)
--- -= Per source details. Do not edit below this line.=-...
Malicious code in Be.Vlaanԁеren.Basisregisters.Sqs (NuGet)
--- -= Per source details. Do not edit below this line.=-...
MAL-2024-4412 Malicious code in Bе.Vlaanԁеren.Basisregistеrs.Sqs (NuGet)
--- -= Per source details. Do not edit below this line.=-...
CSRF vulnerability in Jenkins AWS CodeCommit Trigger Plugin
A cross-site request forgery CSRF vulnerability in Jenkins AWS CodeCommit Trigger Plugin 3.0.12 and earlier allows attackers to clear the SQS queue...
Missing permission check in Jenkins AWS CodeCommit Trigger Plugin
Jenkins AWS CodeCommit Trigger Plugin 3.0.12 and earlier does not perform a permission check in an HTTP endpoint, allowing attackers with Overall/Read permission to clear the SQS queue...
GHSA-997J-37H7-MHG9 CSRF vulnerability in Jenkins AWS CodeCommit Trigger Plugin
A cross-site request forgery CSRF vulnerability in Jenkins AWS CodeCommit Trigger Plugin 3.0.12 and earlier allows attackers to clear the SQS queue...
CVE-2023-41943
Jenkins AWS CodeCommit Trigger Plugin 3.0.12 and earlier does not perform a permission check in an HTTP endpoint, allowing attackers with Overall/Read permission to clear the SQS queue...