Lucene search
K

4 matches found

CNNVD
CNNVD
added 2026/06/10 12:0 a.m.13 views

Erlang/OTP 安全漏洞

Erlang/OTP is an open-source JavaScript library for handling exceptions. This library can catch exceptions caused by built-in APIs in node.js. Erlang/OTP’s erlinterface versions prior to 5.5.2.1, 5.7.0.1, and 5.8.1 have security vulnerabilities. These vulnerabilities arise from the eisprintterm...

6.9CVSS5.8AI score0.00136EPSS
Exploits0References1
NVD
NVD
added 2026/06/09 5:17 p.m.11 views

CVE-2026-42570

Svelte devalue is a JavaScript library that serializes values into strings when JSON.stringify isn't sufficient for the job. From version 5.6.3 to before version 5.8.1, devalue.parse could, due to quirks in some JavaScript engines, be convinced to allocate much more memory than was needed when...

7.5CVSS0.00384EPSS
Exploits0References6
CNNVD
CNNVD
added 2024/02/09 12:0 a.m.5 views

pkg security vulnerability

npm pkg is a library from npm that packages Node.js projects into executables. A security vulnerability exists in pkg 5.8.1 and earlier, which stems from the fact that any native code package pkg built writes to a hardcoded directory, and can be exploited by an attacker to replace a genuine...

7.8CVSS8.7AI score0.00231EPSS
Exploits0References4
OSV
OSV
added 2020/02/19 7:15 p.m.3 views

CVE-2019-17333

The Web server component of TIBCO Software Inc.'s TIBCO EBX contains a vulnerability that theoretically allows authenticated users to perform stored cross-site scripting XSS attacks. Affected releases are TIBCO Software Inc.'s TIBCO EBX: versions 5.8.1.fixS and below, versions 5.9.3, 5.9.4, 5.9.5...

5.4CVSS5.7AI score0.00678EPSS
Exploits0References2
Rows per page
Query Builder