Lucene search
K

4 matches found

Positive Technologies
Positive Technologies
added 2026/06/30 12:0 a.m.6 views

PT-2026-53878

Name of the Vulnerable Software and Affected Versions @fastify/express versions prior to 4.0.7 Description A middleware scoping flaw exists where plugin prefixes are not applied to middleware mount paths when the mount path is provided as an array or a regular expression. This occurs due to...

9.1CVSS6AI score0.00295EPSS
Exploits0References7
OSV
OSV
added 2025/07/15 3:31 p.m.3 views

GHSA-36WV-V2QP-V4G4 Apache CXF is vulnerable to DoS attacks as entire files are read into memory and logged

Apache CXF stores large stream based messages as temporary files on the local filesystem. A bug was introduced which means that the entire temporary file is read into memory and then logged. An attacker might be able to exploit this to cause a denial of service attack by causing an out of memory...

5.6CVSS6.7AI score0.00624EPSS
Exploits0References6
Positive Technologies
Positive Technologies
added 2022/02/21 12:0 a.m.5 views

PT-2022-9638

Name of the Vulnerable Software and Affected Versions Popup Builder WordPress plugin versions prior to 4.0.7 Description The issue is related to a Local File Inclusion problem due to the lack of validation and sanitization of the sgpb type parameter, which is used in a require statement. This can...

8.8CVSS7.2AI score0.05365EPSS
Exploits2References6
Positive Technologies
Positive Technologies
added 2021/04/06 12:0 a.m.4 views

PT-2021-4536 · Redmine · Redmine

Name of the Vulnerable Software and Affected Versions: Redmine versions 4.0.0 through 4.0.6 Redmine versions 4.1.0 through 4.1.0 Description: The issue is related to stored XSS via textile inline links, which can be exploited by a remote attacker to impact data integrity. The vulnerability is due...

9.8CVSS6AI score0.01737EPSS
Exploits0References39
Rows per page
Query Builder