Lucene search
+L

4 matches found

OSV
OSV
added 2026/03/26 9:20 p.m.4 views

CVE-2026-33671 Picomatch has a ReDoS vulnerability via extglob quantifiers

Picomatch is a glob matcher written JavaScript. Versions prior to 4.0.4, 3.0.2, and 2.3.2 are vulnerable to Regular Expression Denial of Service ReDoS when processing crafted extglob patterns. Certain patterns using extglob quantifiers such as + and , especially when combined with overlapping...

7.5CVSS5.9AI score0.00412EPSS
Exploits0References4
CNNVD
CNNVD
added 2026/03/26 12:0 a.m.10 views

Picomatch 安全漏洞

Picomatch is a fast and accurate Glob pattern matching library written in JavaScript, developed by micromatch. Versions prior to Picomatch 4.0.4, 3.0.2, and 2.3.2 contained security vulnerabilities. These vulnerabilities stemmed from regular expression denial-of-service attacks when processing...

7.5CVSS5.8AI score0.00412EPSS
Exploits0References2
ATTACKERKB
ATTACKERKB
added 2026/02/04 8:25 p.m.6 views

CVE-2026-0944

Improper Check for Unusual or Exceptional Conditions vulnerability in Drupal Group invite allows Forceful Browsing.This issue affects Group invite: from 0.0.0 before 2.3.9, from 3.0.0 before 3.0.4, from 4.0.0 before 4.0.4...

5.3CVSS5.3AI score0.00197EPSS
Exploits0References2Affected Software1
Patchstack
Patchstack
added 2025/12/04 11:29 p.m.8 views

WordPress CryptX plugin <= 4.0.5 - Cross Site Scripting (XSS) vulnerability

Cross Site Scripting XSS vulnerability discovered by Muhammad Yudha - DJ in WordPress Plugin CryptX versions = 4.0.5...

6.4CVSS5.9AI score0.00266EPSS
Exploits0References1Affected Software1
Rows per page
Query Builder