Lucene search
K

5 matches found

ATTACKERKB
ATTACKERKB
•added 2026/03/10 4:37 p.m.•4 views

CVE-2026-30939

Parse Server is an open source backend that can be deployed to any infrastructure that can run Node.js. Prior to 8.6.13 and 9.5.1-alpha.2, an unauthenticated attacker can crash the Parse Server process by calling a Cloud Function endpoint with a prototype property name as the function name. The...

8.8CVSS5.8AI score0.0049EPSS
Exploits0References4Affected Software1
OSV
OSV
•added 2026/03/10 4:37 p.m.•5 views

CVE-2026-30939 Parse Server has Denial of Service (DoS) and Cloud Function Dispatch Bypass via Prototype Chain Resolution

Parse Server is an open source backend that can be deployed to any infrastructure that can run Node.js. Prior to 8.6.13 and 9.5.1-alpha.2, an unauthenticated attacker can crash the Parse Server process by calling a Cloud Function endpoint with a prototype property name as the function name. The...

8.8CVSS5.8AI score0.0049EPSS
Exploits0References5
OSV
OSV
•added 2025/07/16 2:15 p.m.•8 views

AZL-65571 CVE-2025-40913 affecting package tcl for versions less than 8.6.13-2

Net::Dropbear versions through 0.16 for Perl contains a dependency that may be susceptible to an integer overflow. Net::Dropbear embeds a version of the libtommath library that is susceptible to an integer overflow associated with CVE-2023-36328...

6.5CVSS5.8AI score0.00275EPSS
Exploits0References1
OSV
OSV
•added 2019/03/26 6:29 p.m.•2 views

UBUNTU-CVE-2019-6341

In Drupal 7 versions prior to 7.65; Drupal 8.6 versions prior to 8.6.13;Drupal 8.5 versions prior to 8.5.14. Under certain circumstances the File module/subsystem allows a malicious user to upload a file that can trigger a cross-site scripting XSS vulnerability...

5.4CVSS6.3AI score0.12408EPSS
Exploits0References3
OpenVAS
OpenVAS
•added 2019/03/22 12:0 a.m.•22 views

Drupal XSS Vulnerability (SA-CORE-2019-004) - Windows

Under certain circumstances the File module/subsystem allows a malicious user to upload a file that can trigger a cross-site scripting XSS vulnerability. SPDX-FileCopyrightText: 2019 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the...

5.4CVSS5.6AI score0.12408EPSS
Exploits0References1
Rows per page
Query Builder