3 matches found
EUVD-2026-25286
Flowise is a drag & drop user interface to build a customized large language model flow. Prior to 3.1.0, the Chatflow configuration file upload settings can be modified to allow the application/javascript MIME type. This lets an attacker upload .js files even though the frontend doesn’t normally...
UBUNTU-CVE-2022-4206
A sensitive information leak issue has been discovered in all versions of DAST API scanner from 1.6.50 prior to 2.0.102, exposing the Authorization header in the vulnerability report...
kernel: setrlimit(RLIMIT_CPUINFO) with zero value doesn't inherit properly across children
Linux kernel 2.6.17, and other versions before 2.6.22, does not check when a user attempts to set RLIMITCPU to 0 until after the change is made, which allows local users to bypass intended resource limits...