Lucene search
K

4 matches found

SUSE CVE
SUSE CVE
added 2026/03/25 12:26 a.m.5 views

SUSE CVE-2026-27945

ZITADEL is an open source identity management platform. Zitadel Action V2 introduced as early preview in 2.59.0, beta in 3.0.0 and GA in 4.0.0 is a webhook based approach to allow developers act on API request to Zitadel and customize flows such the issue of a token. Zitadel's Action target URLs...

6.5CVSS5.9AI score0.00226EPSS
Exploits0References3
Snyk
Snyk
added 2024/11/13 5:24 p.m.3 views

Cross-site Scripting (XSS)

Overview Affected versions of this package are vulnerable to Cross-site Scripting XSS via the online or hybrid meeting embeds. Workaround Users who are not able to upgrade to the fixed version can disable the creation of meetings by participants in the meeting component. Details Cross-site...

7.7CVSS5.3AI score0.00243EPSS
Exploits0References2
ATTACKERKB
ATTACKERKB
added 2022/06/10 8:0 p.m.16 views

CVE-2022-25845

The package com.alibaba:fastjson before 1.2.83 are vulnerable to Deserialization of Untrusted Data by bypassing the default autoType shutdown restrictions, which is possible under certain conditions. Exploiting this vulnerability allows attacking remote servers. Workaround: If upgrading is not...

9.8CVSS7.3AI score0.17767EPSS
Exploits5References8
CNNVD
CNNVD
added 2021/11/19 12:0 a.m.6 views

Sharetribe Go 操作系统命令注入漏洞

Sharetribe Go is a source-available marketplace software from the Sharetribe team. An OS command injection vulnerability exists in versions of Sharetribe Go prior to 10.2.1, users who are unable to upgrade should set the snsnotificationtoken configuration parameter to a confidential value...

9.8CVSS8.4AI score0.034EPSS
Exploits0References5
Rows per page
Query Builder