2 matches found
CVE-2026-55633
DataEase CVE-2026-55633 affects the DataEase open-source data visualization tool prior to version 2.10.24. The issue arises from a bypass of the H2 zip protocol and file dropper fix, enabling an authenticated attacker to upload a zip archive disguised with a .ttf extension via FontManage.saveFile...
PHP zip:// URL buffer overflow
Stack buffer overflow stack overrun on oversized URL...