Lucene search
K

8 matches found

Snyk
Snyk
added 2025/07/04 10:41 p.m.6 views

Uncaught Exception

Overview mcp is a Model Context Protocol SDK Affected versions of this package are vulnerable to Uncaught Exception via the receiveloop function in the shared/session.py file. An attacker can cause the server to crash and require a restart by deliberately triggering an exception after establishin...

8.7CVSS6.9AI score0.00353EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2025/02/14 12:33 p.m.6 views

CVE-2023-51784

Improper Control of Generation of Code 'Code Injection' vulnerability in Apache InLong.This issue affects Apache InLong: from 1.5.0 through 1.9.0, which could lead to Remote Code Execution. Users are advised to upgrade to Apache InLong's 1.10.0 or cherry-pick 1 to solve it. 1...

9.8CVSS7.1AI score0.01723EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2024/08/18 12:0 a.m.7 views

PT-2024-30938 · Microcks · Microcks

Name of the Vulnerable Software and Affected Versions: Microcks versions prior to 1.10.0 Description: The issue allows non-administrator access to the "POST /api/import" and "POST /api/export" endpoints. Recommendations: For versions prior to 1.10.0, update to version 1.10.0 or later to resolve t...

9.8CVSS6.8AI score0.00603EPSS
Exploits0References17
OSV
OSV
added 2024/01/03 10:15 a.m.3 views

CVE-2023-51785

Deserialization of Untrusted Data vulnerability in Apache InLong.This issue affects Apache InLong: from 1.7.0 through 1.9.0, the attackers can make a arbitrary file read attack using mysql driver. Users are advised to upgrade to Apache InLong's 1.10.0 or cherry-pick 1 to solve it. 1 ...

7.5CVSS5.9AI score0.01012EPSS
Exploits0References2
OSV
OSV
added 2024/01/03 10:15 a.m.5 views

CVE-2023-51784

Improper Control of Generation of Code 'Code Injection' vulnerability in Apache InLong.This issue affects Apache InLong: from 1.5.0 through 1.9.0, which could lead to Remote Code Execution. Users are advised to upgrade to Apache InLong's 1.10.0 or cherry-pick 1 to solve it. 1...

9.8CVSS5.8AI score0.01723EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2023/03/21 12:0 a.m.6 views

PT-2023-10348 · Unknown · Ydalb Mapicoin

Name of the Vulnerable Software and Affected Versions: Ydalb mapicoin versions up to 1.9.0 Description: A vulnerability has been found in the file webroot/stats.php, where the manipulation of the link/search argument leads to cross-site scripting. The attack can be initiated remotely...

6.1CVSS4.3AI score0.00473EPSS
Exploits0References6
OSV
OSV
added 2022/10/13 1:15 p.m.5 views

DEBIAN-CVE-2022-42889

Apache Commons Text performs variable interpolation, allowing properties to be dynamically evaluated and expanded. The standard format for interpolation is "$prefix:name", where "prefix" is used to locate an instance of org.apache.commons.text.lookup.StringLookup that performs the interpolation...

9.8CVSS8.3AI score0.99931EPSS
Exploits41References1
OSV
OSV
added 2022/10/13 1:15 p.m.3 views

UBUNTU-CVE-2022-42889

Apache Commons Text performs variable interpolation, allowing properties to be dynamically evaluated and expanded. The standard format for interpolation is "$prefix:name", where "prefix" is used to locate an instance of org.apache.commons.text.lookup.StringLookup that performs the interpolation...

9.8CVSS7.5AI score0.99931EPSS
Exploits41References4
Rows per page
Query Builder