Lucene search
K

5 matches found

CNNVD
CNNVD
added 2026/01/23 12:0 a.m.8 views

Langflow security vulnerabilities

Langflow is an open-source visualization framework developed by Langflow for building multi-agent and RAG applications. Langflow has a security vulnerability that stems from processing the execglobals parameter, which includes resources from untrusted control ranges, potentially leading to remote...

9.8CVSS7.6AI score0.10371EPSS
Exploits8References1
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2021-0483

Malware in sbrugna...

7.8CVSS7.6AI score0.00988EPSS
Exploits0References7
RedhatCVE
RedhatCVE
added 2025/05/22 9:30 p.m.5 views

CVE-2021-21316

less-openui5 is an npm package which enables building OpenUI5 themes with Less.js. In less-openui5 before version 0.10., when processing theming resources i.e. .less files with less-openui5 that originate from an untrusted source, those resources might contain JavaScript code which will be execut...

7.8CVSS6.8AI score0.00988EPSS
Exploits0References1
OSV
OSV
added 2024/09/19 2:49 p.m.2 views

GHSA-68J8-FP38-P48Q Gematik Referenzvalidator has an XXE vulnerability that can lead to a Server Side Request Forgery attack

Impact The profile location routine in the referencevalidator commons package is vulnerable to XML External Entities attack due to insecure defaults of the used Woodstox WstxInputFactory. A malicious XML resource can lead to network requests issued by referencevalidator and thus to a Server Side...

8.6CVSS5.8AI score0.00637EPSS
Exploits0References9
Prion
Prion
added 2019/07/17 12:15 p.m.21 views

Design/Logic Flaw

LibreOffice has a 'stealth mode' in which only documents from locations deemed 'trusted' are allowed to retrieve remote resources. This mode is not the default mode, but can be enabled by users who want to disable LibreOffice's ability to include remote resources within a document. A flaw existed...

4CVSS6.5AI score0.03149EPSS
Exploits0References9Affected Software5
Rows per page
Query Builder