5 matches found
CVE-2026-25762
AdonisJS is a TypeScript-first web framework. Prior to versions 10.1.3 and 11.0.0-next.9, a denial of service DoS vulnerability exists in the multipart file handling logic of @adonisjs/bodyparser. When processing file uploads, the multipart parser may accumulate an unbounded amount of data in...
CVE-2010-5338
IceWarp Webclient before 10.2.1 has XSS via an HTTP POST request: webmail/basic/ with the parameter dlgcaptchaaction is non-persistent in 10.1.3 and 10.2.0...
Octokit 安全漏洞
Octokit is a Ruby toolkit for the GitHub API. A security vulnerability exists in Octokit version 9.0.5 through versions prior to 10.1.3, which stems from a regular expression denial of service ReDoS attack that can be caused by crafting a specific options parameter...
PT-2023-27787 · Opennds +1 · Opennds +1
Name of the Vulnerable Software and Affected Versions: OpenNDS versions prior to 10.1.3 Description: An issue was discovered in the captive portal in OpenNDS, which has multiple memory leaks due to not freeing up allocated memory. This may lead to a Denial-of-Service condition due to the...
IBM Emptoris Strategic Supply Management 跨站脚本漏洞
IBM Emptoris Strategic Supply Management is a platform for installing and managing the Emptoris suite of products from IBM USA. A cross-site scripting vulnerability exists in IBM Emptoris Strategic Supply Management 10.1.0, 10.1.1, and 10.1.3, which allows an attacker to alter the intended...