6 matches found
@3onedata/alsatian (>=0.1.8-fix.3 <=0.1.8-fix.5), @abyedev/hono-dotenv (=1.0.0) +526 more potentially affected by CVE-2026-44456 via hono (>=0.5.10 <=4.12.15)
hono NPM version =0.5.10, =0.1.8-fix.3, =5.0.0, =0.2.0, =0.2.0, =0.4.0, =0.2.0, =0.1.4, =2026.4.4, =1.0.2, =0.1.1, =0.0.1, =0.0.2-a, =0.1.22, =1.1.1, =1.3.0 and more Source cves: CVE-2026-44456 Source advisory: OSV:GHSA-9VQF-7F2P-GF9V...
CVE-2020-9280
In SilverStripe through 4.5, files uploaded via Forms to folders migrated from Silverstripe CMS 3.x may be put to the default "/Uploads" folder instead. This affects installations which allowed upload folder protection via the optional silverstripe/secureassets module under 3.x. This module is...
PT-2020-10146 · Red Hat · Openshift/Jenkins
Name of the Vulnerable Software and Affected Versions: openshift/jenkins versions 3.11 through 4 Description: An insecure modification vulnerability in the /etc/passwd file was found in the container openshift/jenkins. An attacker with access to the container could use this flaw to modify...
BlueStacks App Player Input Validation Error Vulnerability
BlueStacks App Player is a suite of software from the Chinese company BlueStacks that supports making Android applications run on Windows systems. An input validation error vulnerability exists in BlueStacks App Player version 2, version 3, and version 4 before 4.90. An attacker can exploit this...
5aces-client-web (>=1.0.1 <=1.0.6), @aoki/freshness (=0.3.0) +62 more potentially affected by CVE-2018-6184 via next (>=1.2.3 <=4.2.1)
next NPM version =1.2.3, =1.0.1, =0.0.1, =1.0.0, =1.0.0, =1.0.5, =0.3.0, =0.1.8, =0.1.0, =1.0.2, =1.3.21, =1.3.46 - @usehenri/view =0.9.0-alpha.0 and more Source cves: CVE-2018-6184 Source advisory: OSV:GHSA-M34X-WGRH-G897...
CVE-2017-7504
HTTPServerILServlet.java in JMS over HTTP Invocation Layer of the JbossMQ implementation, which is enabled by default in Red Hat Jboss Application Server = Jboss 4.X does not restrict the classes for which it performs deserialization, which allows remote attackers to execute arbitrary code via...