4 matches found
Rocket.Chat 访问控制错误漏洞
Rocket.Chat is a chat software developed by the Rocket.Chat company. Vulnerabilities in access control existed in versions prior to 8.4.0, 8.3.2, 8.2.2, 8.1.3, 8.0.4, 7.13.6, 7.12.7, 7.11.7, and 7.10.10. These vulnerabilities stem from spelling errors in the permission checks for the /api/apps/lo...
UBUNTU-CVE-2026-4926
Impact: A bad regular expression is generated any time you have multiple sequential optional groups curly brace syntax, such as abc:z. The generated regex grows exponentially with the number of groups, causing denial of service. Patches: Fixed in version 8.4.0. Workarounds: Limit the number of...
CVE-2024-12417
The The Simple Link Directory plugin for WordPress is vulnerable to arbitrary shortcode execution in all versions up to, and including, 8.4.5. This is due to the software allowing users to execute an action that does not properly validate a value before running doshortcode. This makes it possible...
METTLER TOLEDO FreeWeight.Net 安全漏洞
METTLER TOLEDO FreeWeight.Net is a weighing management software from METTLER TOLEDO USA. A security vulnerability exists in METTLER TOLEDO FreeWeight.Net version 8.4.0, which originates from reflective cross-site scripting and could lead to the injection of malicious script...