Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

4 matches found

NVD
NVDadded 2022/07/18 9:15 p.m.9 views

CVE-2022-34027

Nginx NJS v0.7.4 was discovered to contain a segmentation violation via njsvalueproperty at njsvalue.c...

7.5CVSS0.00273EPSS
Exploits1References1
CVE
CVEadded 2022/07/18 8:14 p.m.82 views

CVE-2022-34029

Scope and impact: CVE-2022-34029 affects Nginx NJS 0.7.4, with an out-of-bounds read via njs_scope_value in njs_scope.h. The vulnerability is described across multiple sources (e.g., NVD, Red Hat, osv.dev) as a high-severity issue with CVSS 3.1 base score 9.1, indicating critical impact to confid...

9.1CVSS9.1AI score0.00391EPSS
Exploits1References1Affected Software1
CVE
CVEadded 2022/07/18 8:14 p.m.68 views

CVE-2022-34027

Summary: CVE-2022-34027 affects Nginx NJS 0.7.4. A vulnerability in the njs_value_property function (njs_value.c) may cause a segmentation fault and enable remote code execution. The CVSSv3.1 base score is 7.5 ( HIGH ), with network access, no user interaction required. Details from connected sou...

7.5CVSS7.5AI score0.00273EPSS
Exploits1References1Affected Software1
RubySec
RubySecadded 2020/02/10 12:0 a.m.23 views

matestack-ui-core is vulnerable to XSS/Script injection

matestack-ui-core does not excape strings by default and does not cover this in the docs. matestack-ui-core should escape strings by default in order to prevent XSS/Script injection vulnerability. v0.7.4 fixes that by escaping strings by default...

7.7CVSS2.6AI score0.00337EPSS
Exploits1References1Affected Software1
Rows per page
Query Builder