5 matches found
CVE-2026-53642 FOSSBilling: Unverified clients can access client-area pages when email confirmation is required
FOSSBilling is a free, open-source billing and client management system. In versions 0.5.6 through 0.7.2, when the "Require Email Confirmation" setting is enabled, a logged-in client with an unverified email address emailapproved = 0 can access all client-area pages e.g. /client/balance,...
PT-2025-45166
Name of the Vulnerable Software and Affected Versions Youki versions 0.5.6 and below Description Youki is a container runtime written in Rust. Insufficient initial validation of the /dev/null source allows for container escape when bind mounting the container's /dev/null as a file mask. This occu...
PT-2023-11600 · Tdengine +1 · Tdengine +1
Name of the Vulnerable Software and Affected Versions: Tengine version 2.2.2 Tengine versions 0.5.6 through 1.13.2 Description: The web server is vulnerable to an integer overflow vulnerability in the nginx range filter module. This vulnerability results in the leakage of potentially sensitive...
40au-isteven-angular-multiselect (=4.0.0), @abcd19/st-grid (=3.1.0) +723 more potentially affected by CVE-2023-26111 via node-static (>=0.5.6 <=0.7.11)
node-static NPM version =0.5.6, =1.0.5, =0.0.5, =0.0.1, =0.0.1, =17.0.6 - @beadswap/lib =0.0.1 and more Source cves: CVE-2023-26111 Source advisory: OSV:GHSA-5G97-WHC9-8G7J...
ALPINE-CVE-2017-7529
Nginx versions since 0.5.6 up to and including 1.13.2 are vulnerable to integer overflow vulnerability in nginx range filter module resulting into leak of potentially sensitive information triggered by specially crafted request...