3 matches found
CVE-2025-58751 Vite middleware may serve files starting with the same name with the public directory
Vite is a frontend tooling framework for JavaScript. Prior to versions 7.1.5, 7.0.7, 6.3.6, and 5.4.20, files starting with the same name with the public directory were served bypassing the server.fs settings. Only apps that explicitly expose the Vite dev server to the network using --host or...
ImageMagick Denial of Service Vulnerability (CNVD-2017-31147)
ImageMagick is a set of open-source image processing software from the U.S. company ImageMagick Studio. The software can read, convert and write pictures in a variety of formats. A denial of service vulnerability exists in the 'sixeldecode' function in the coders/sixel.c file in ImageMagick versi...
PT-2017-15246 · WordPress · Wp Live Chat Support
Name of the Vulnerable Software and Affected Versions: WP Live Chat Support versions prior to 7.0.07 Description: A cross-site scripting issue allows remote attackers to inject arbitrary web script or HTML. Recommendations: For versions prior to 7.0.07, update to version 7.0.07 or later to resolv...