Lucene search
K

5 matches found

Cvelist
Cvelist
added 2026/03/24 6:18 p.m.20 views

CVE-2026-33498 Parse Server: Query condition depth bypass via pre-validation transform pipeline

Parse Server is an open source backend that can be deployed to any infrastructure that can run Node.js. Prior to versions 8.6.55 and 9.6.0-alpha.44, an attacker can send an unauthenticated HTTP request with a deeply nested query containing logical operators to permanently hang the Parse Server...

8.7CVSS0.00452EPSS
Exploits0References5
CNNVD
CNNVD
added 2026/03/24 12:0 a.m.9 views

Parse Server SQL注入漏洞

Parse Server is an open-source backend developed by the Parse Platform. It can be deployed on any infrastructure that runs Node.js. Versions of Parse Server prior to 8.6.59 and 9.6.0-alpha.53 contain a SQL injection vulnerability. This vulnerability arises from the ability of attackers to inject...

8.6CVSS5.9AI score0.00452EPSS
Exploits0References5
EUVD
EUVD
added 2025/10/03 8:7 p.m.6 views

EUVD-2025-28805

Malicious code in bioql PyPI...

4.4CVSS6.4AI score0.00272EPSS
Exploits0References3
Positive Technologies
Positive Technologies
added 2025/02/27 12:0 a.m.4 views

PT-2025-9033 · Infoblox · Infoblox Nios

Name of the Vulnerable Software and Affected Versions: Infoblox NIOS versions prior to 8.6.5 Description: The issue allows Infoblox NIOS to execute with more privileges than required. Recommendations: For versions prior to 8.6.5, update to version 8.6.5 or later to resolve the issue...

9.8CVSS7.5AI score0.00378EPSS
Exploits0References6
CNNVD
CNNVD
added 2022/08/10 12:0 a.m.2 views

KUKA SystemSoftware V/KSS 访问控制错误漏洞

KUKA SystemSoftware V/KSS is a robot control operating system from KUKA SystemSoftware. An Access Control Error vulnerability exists in KUKA SystemSoftware V/KSS versions prior to 8.6.5 that stems from incorrect access control. An attacker can exploit this vulnerability to directly read or write...

9.8CVSS8.3AI score0.00887EPSS
Exploits0References2
Rows per page
Query Builder