Lucene search
K

6 matches found

AstraLinux
AstraLinux
added 2026/05/20 5:53 a.m.3 views

Astra Linux – Vulnerability in node-loader-utils

A prototype pollution vulnerability exists in the parseQuery function in parseQuery.js, within the webpack-loader-utils module. This issue affects all versions prior to 1.4.1 and 2.0.3...

9.8CVSS7AI score0.02601EPSS
Exploits1References1
NVD
NVD
added 2026/02/04 9:15 p.m.7 views

CVE-2026-1554

XML Injection aka Blind XPath Injection vulnerability in Drupal Central Authentication System CAS Server allows Privilege Escalation.This issue affects Central Authentication System CAS Server: from 0.0.0 before 2.0.3, from 2.1.0 before 2.1.2...

4.2CVSS0.00152EPSS
Exploits0References1
CNNVD
CNNVD
added 2023/01/30 12:0 a.m.4 views

servst 路径遍历漏洞

servst is a simple file server by the individual developer Andrey Polischuk. A security vulnerability exists in servst versions prior to 2.0.3, which stems from the mishandling of the filePath variable that allows an attacker to implement directory traversal...

7.5CVSS7.2AI score0.01339EPSS
Exploits1References4
Positive Technologies
Positive Technologies
added 2022/03/17 12:0 a.m.5 views

PT-2022-17233

Name of the Vulnerable Software and Affected Versions set-in versions prior to 2.0.3 Description The issue allows an attacker to perform Prototype Pollution via the setIn method, enabling them to merge object prototypes into it. This problem stems from an incomplete fix of a previous issue...

9.8CVSS7.3AI score0.01901EPSS
Exploits1References9
OSV
OSV
added 2017/03/14 10:59 p.m.4 views

CVE-2016-8016

Information exposure in Intel Security VirusScan Enterprise Linux VSEL 2.0.3 and earlier allows authenticated remote attackers to obtain the existence of unauthorized files on the system via a URL parameter...

3.4CVSS5.8AI score0.0456EPSS
Exploits4References4
OSV
OSV
added 2016/04/25 10:59 a.m.4 views

UBUNTU-CVE-2016-4082

epan/dissectors/packet-gsmcbch.c in the GSM CBCH dissector in Wireshark 1.12.x before 1.12.11 and 2.0.x before 2.0.3 uses the wrong variable to index an array, which allows remote attackers to cause a denial of service out-of-bounds access and application crash via a crafted packet...

5.9CVSS6.6AI score0.02401EPSS
Exploits0References5
Rows per page
Query Builder