Lucene search
K

5 matches found

OSV
OSV
added 2026/05/09 12:32 p.m.15 views

OESA-2026-2240 pdfbox security update

Apache PDFBox is an open source Java PDF library for working with PDF documents. This project allows creation of new PDF documents, manipulation of existing documents and the ability to extract content from documents. Apache PDFBox also includes several command line utilities. Apache PDFBox is...

4.3CVSS5.7AI score0.00711EPSS
Exploits0References2
Snyk
Snyk
added 2026/04/18 1:25 a.m.5 views

Server-side Request Forgery (SSRF)

Overview @nocobase/plugin-workflow-request is a Send HTTP requests to any HTTP service for data interaction in workflow. Affected versions of this package are vulnerable to Server-side Request Forgery SSRF via the workflow HTTP request and custom request plugins, which make server-side HTTP...

9.6CVSS5.7AI score0.00384EPSS
Exploits1References2
Snyk
Snyk
added 2026/04/18 1:25 a.m.6 views

Server-side Request Forgery (SSRF)

Overview @nocobase/plugin-action-custom-request is a Sending a request to any HTTP service supports sending context data to the target service. Affected versions of this package are vulnerable to Server-side Request Forgery SSRF via the workflow HTTP request and custom request plugins, which make...

9.6CVSS5.7AI score0.00384EPSS
Exploits1References2
ATTACKERKB
ATTACKERKB
added 2026/04/14 8:9 a.m.8 views

CVE-2026-33929

Improper Limitation of a Pathname to a Restricted Directory 'Path Traversal' vulnerability in Apache PDFBox Examples. This issue affects the ExtractEmbeddedFiles example in Apache PDFBox: from 2.0.24 through 2.0.36, from 3.0.0 through 3.0.7. Users are recommended to update to version 2.0.37 or...

5.3CVSS5.8AI score0.00886EPSS
Exploits0References4Affected Software1
Positive Technologies
Positive Technologies
added 2026/04/14 12:0 a.m.3 views

PT-2026-32604

Name of the Vulnerable Software and Affected Versions Apache PDFBox versions 2.0.24 through 2.0.36 Apache PDFBox versions 3.0.0 through 3.0.7 Description The ExtractEmbeddedFiles example contains a path traversal issue, which occurs when an application does not properly restrict the pathnames use...

4.3CVSS5.8AI score0.00711EPSS
Exploits0References30
Rows per page
Query Builder