Lucene search
K

9 matches found

Snyk
Snyk
added 2026/05/04 7:45 p.m.7 views

NULL Pointer Dereference

Overview Affected versions of this package are vulnerable to NULL Pointer Dereference in the restore process when handling a crafted backup archive containing a valid backup/index.yaml and a malformed legacy backup.yaml file that omits the container section. An attacker can cause the daemon to...

7.1CVSS5.8AI score0.00408EPSS
Exploits1References2
Snyk
Snyk
added 2026/05/04 4:53 p.m.6 views

Server-side Request Forgery (SSRF)

Overview Affected versions of this package are vulnerable to Server-side Request Forgery SSRF via the imgPostURLInfo function. An attacker can cause the server to initiate outbound HTTP HEAD requests to arbitrary endpoints by supplying a crafted URL during the image import preflight stage. This c...

5.3CVSS5.9AI score0.00271EPSS
Exploits1References2
Snyk
Snyk
added 2025/10/07 1:42 p.m.3 views

Interpretation Conflict

Overview nodemailer is an Easy as cake e-mail sending from your Node.js applications Affected versions of this package are vulnerable to Interpretation Conflict due to improper handling of quoted local-parts containing @. An attacker can cause emails to be sent to unintended external recipients o...

6.9CVSS6.9AI score
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2025/09/10 12:0 a.m.3 views

Linux Distros Unpatched Vulnerability : CVE-2024-51489

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Ampache is a web based audio/video streaming application and file manager. The current implementation of token parsing does not adequately validate CSRF tokens...

5.4CVSS5.5AI score0.00272EPSS
Exploits1References2
SUSE CVE
SUSE CVE
added 2025/07/28 11:34 p.m.2 views

SUSE CVE-2024-38536

Suricata is a network Intrusion Detection System, Intrusion Prevention System and Network Security Monitoring engine. A memory allocation failure due to http.memcap being reached leads to a NULL-ptr reference leading to a crash. Upgrade to 7.0.6...

7.5CVSS6.9AI score0.00874EPSS
Exploits1References2
OSV
OSV
added 2025/02/24 5:15 a.m.5 views

CVE-2025-1618

A vulnerability has been found in vTiger CRM 6.4.0/6.5.0 and classified as problematic. This vulnerability affects unknown code of the file /modules/Mobile/index.php. The manipulation of the argument operation leads to cross site scripting. The attack can be initiated remotely. The exploit has be...

6.1CVSS3.8AI score0.00369EPSS
Exploits0References4
OSV
OSV
added 2024/02/26 4:27 p.m.1 views

UBUNTU-CVE-2024-23835

Suricata is a network Intrusion Detection System, Intrusion Prevention System and Network Security Monitoring engine. Prior to version 7.0.3, excessive memory use during pgsql parsing could lead to OOM-related crashes. This vulnerability is patched in 7.0.3. As workaround, users can disable the...

7.5CVSS5.8AI score0.00927EPSS
Exploits0References10
Snyk
Snyk
added 2023/07/11 12:0 a.m.5 views

Access Restriction Bypass

Overview Microsoft.AspNetCore.App.Runtime.linux-musl-x64 is a package providing a default set of APIs for building an ASP.NET Core application. Contains assets used for self-contained deployments. Affected versions of this package are vulnerable to Access Restriction Bypass. A vulnerability exist...

8.1CVSS6.9AI score0.01913EPSS
Exploits0References2
Snyk
Snyk
added 2023/06/14 12:0 a.m.6 views

Remote Code Execution (RCE)

Overview Affected versions of this package are vulnerable to Remote Code Execution RCE. A vulnerability exists in .NET source generator for P/Invokes that can lead to generated code freeing uninitialized memory and crashing. Remediation Upgrade Microsoft.NETCore.App.Runtime.linux-arm64 to version...

7.3CVSS7.6AI score0.00999EPSS
Exploits0References2
Rows per page
Query Builder