Pyroscope 安全漏洞

Pyroscope is an open-source continuous performance analysis platform developed by Grafana. Vulnerabilities exist in versions prior to Pyroscope 1.15.2, 1.16.1, and 1.17.0. These vulnerabilities stem from improper configuration, potentially allowing attackers to extract the secretkey configuration...

CVE-2025-68505

Missing Authorization vulnerability in icc0rz H5P h5p allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects H5P: from n/a through = 1.16.1...

CVE-2025-68505

Missing Authorization vulnerability in icc0rz H5P h5p allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects H5P: from n/a through = 1.16.1...

Linux Distros Unpatched Vulnerability : CVE-2022-30698

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - NLnet Labs Unbound, up to and including version 1.16.1 is vulnerable to a novel type of the ghost domain names attack. The vulnerability works by targeting an...

Linux Distros Unpatched Vulnerability : CVE-2021-27918

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - encoding/xml in Go before 1.15.9 and 1.16.x before 1.16.1 has an infinite loop if a custom TokenReader for xml.NewTokenDecoder returns EOF in the middle of an...

PT-2021-7397 · Pgbouncer +3 · Pgbouncer +3

Name of the Vulnerable Software and Affected Versions: PgBouncer versions prior to 1.16.1 Description: The issue is related to the handling of initial message request data in PgBouncer, which can be exploited by a remote attacker to access confidential data, compromise data integrity, and cause a...

CVE-2019-10785

dojox is vulnerable to Cross-site Scripting in all versions before version 1.16.1, 1.15.2, 1.14.5, 1.13.6, 1.12.7 and 1.11.9. This is due to dojox.xmpp.util.xmlEncode only encoding the first occurrence of each character, not all of them...