Improper Input Validation

vrite is vulnerable to Improper Input Validation. An Attacker may attempt to flood your authentication system with requests that include very long password hashes, leading to resource exhaustion and potentially causing a denial of service. Longer password hashes take more time to compute during t...

Denial Of Service (DoS)

gpac vulnerable to Denial of Service. The vulnerability is due to improper validation leading to denial of service...

Server-Side Request Forgery (SSRF)

vrite is vulnerable to Server-Side Request Forgery SSRF. This vulnerability allows a remote attacker to make unauthorized requests to internal servers on the target system...

NULL Pointer Dereference

libgpac.so is vulnerable to NULL Pointer Dereference. The vulnerability exists in pcmreframeprocess function at reframerawpcm.c which results in an application crash...

Denial Of Services (DoS)

Libopencvcontrib.so is vulnerable to Denial of Service DoS. This vulnerability exists due to a lack of proper buffer cleanup during an error in the DecodedBitStreamParser function of decodedbitstreamparser.cpp', which allows an attacker to cause an application crash when scanning a QR code...

Privilege Escalation

apacheairflow is vulnerable to Privilege Escalation. The vulnerability is due to requiresaccessdecorator function in auth.py which does not check if a user has the required permissions to access certain DAGs. This allows an attacker can manipulate DAGs beyond their permission scope. This can lead...

Authorization HTTP Header Leakage

Urllib3 is vulnerable to Information Disclosure. The vulnerability exists in cross-origin redirects, due to authorization HTTP header leakage. This can result in the authorization header being leaked to unintended hosts after a redirect, which results in information disclosure. This vulnerability...

Timing Attack

Harbor is vulnerable to timing attacks. The vulnerability is due the comparison of secrets which are not run in constant time. This allows an attacker to decipher response times for cryptographic calculation and secret enumeration, which can result in sensitive information disclosure...

Information Disclosure

librabbitmq.so is vulnerable to Information Disclosure. The vulnerability exists because credentials can only be entered through the command line which allows an attacker to gain access to the sensitive information via listing all process and its arguments...

Denial Of Service (DoS)

libopencvcontrib.so is vulnerable to Denial of Service DoS. A null pointer dereference in the wechatqrcode module allows a remote attacker to crash affected applications by sending a specially crafted QR code. The vulnerability exists in DecodedBitStreamParser::decodeByteSegment function of the...

Cross-site Scripting (XSS)

froxlor/froxlor is vulnerable to Cross-site Scripting XSS. The vulnerability exists because the markdown syntax in the customnotes field is improperly sanitized which allows an attacker to inject and execute html scripts...

Path Traversal

ansible-core is vulnerable to Path Traversal. The vulnerability exists due to the lack of sanitization in the linkname of role.py, which allows an attacker to overwrite files outside of the installation directory...

Denial Of Service (DoS)

Microsoft QUIC is vulnerable to Denial of Service DOS. The vulnerability is due to a memory leak in the QuicCryptoTlsReadExtensions function in cryptotls.c, which results in Denial of Service. An attacker can create multiple instances are present or multiple calls to the decode happen...

Information Disclosure

Apache Airflow is vulnerable to Information Disclosure. The vulnerability is due to a flaw that permits authenticated users to list warnings for all Directed Acyclic Graphs DAG's regardless of their permissions to access such DAG's. This leads to exposure of sensitive information such as dagids a...

Cross-Site Scripting (XSS)

Zope is vulnerable to Cross-site Scripting XSS . The vulnerability is due to improper user-input sanitization in the title property. This can allow an attacker to store script code that is executed while viewing the affected object in the Zope Management Interface ZMI...

Command Injection

Geokit-rails is vulnerable to Command Injection. The vulnerability is due to unsafe deserialization of YAML within the geolocation cookie. This issue can be exploited remotely via a malicious cookie value...

Information Disclosure

Apache Airflow is vulnerable to Information Disclosure. The vulnerability is due to an improper access control mechanism which allows an authorized user with read access to specific Directed Acyclic Graphs DAGS to access information about task instances in other DAGs...

Denial Of Service (DoS)

jtidy is vulnerable to Denial of Service DoS. The vulnerability is due to lack of nesting depth checks in the library, which allows an attacker to cause an application crash through a stack overflow by parsing a deeply nested html string...

Prototype Pollution

Open MCT is vulnerable to prototype pollution. The vulnerability is due to the import action improperly sanitizing user input, which allows an attacker to add arbitrary proto properties to the global object prototype...

Cross-site Scripting

froxlor is vulnerable to Cross-site Scripting. The vulnerability is due to the improper sanitization or validation of input. The attacker can exploit this issue by injecting malicious JavaScript into the webpage...

Authentication Bypass

org.apache.shiro: shiro-spring is vulnerable to Authentication Bypass. The vulnerability is due to different pattern matching techniques between Spring-Boot 2.6+ and Apache Shiro. This can result in an authentication bypass. As a workaround, set the following Spring Boot configuration value:...

Denial Of Service (DoS)

libfrr.so is vulnerable to Denial of service attack. The vulnerability is caused by a lack of validation of the contents of stream data. Availability of the system is impacted as a results of exploitation of this vulnerability...

Improper Authorization

vantage6server is vulnerable to Improper Authorization. The vulnerability exists due to improper validations which allows an attacker to perform unauthorized actions by creating resources with integers as names...

Incorrect Authorization

Vault is vulnerable to Incorrect Authorization. The vulnerability is due to ChangeBindings function in iampolicy.go not checking if the number of conditions in the policy didn't change after policy update...

Denial Of Service

opentelemetry-go-contrib is vulnerable to Denial of Service. The handler wrapper adds labels that have unbound cardinality. An attacker can send malicious requests which leads to a memory exhaustion...

Information Disclosure

vantage6server is vulnerable to Information Disclosure. The vulnerability exists because the deletion of collaboration links are not properly handled which allows an attacker to gain read access to some deleted collaborations...

Authorization Bypass

Org.apache.zookeeper: zookeeper is vulnerable to authorization bypass. This vulnerability exists due to improper implementation of a User-Controlled Key for user authentication, allowing an attacker to gain access to the system and perform unauthorized actions. Note that this vulnerability is onl...

Insecure Deserialization

Radisson is vulnerable to Insecure Deserialization. The vulnerability is due to the client deserializing objects without validation. If an attacker can gain control of the redis server, they can include crafted objects that lead to arbitrary code execution. Due to incomplete fix, its recommended...

Arbitrary Code Execution

babel is vulnerable to Arbitrary Code Execution . An attacker can trick a user into compiling malicious code which can lead to code injection during compilation, when using specific plugins that rely on internal babel methods. This can lead to bypass of several protection mechanisms posed by the...

Denial Of Service (DoS)

Golang.org/x/net is vulnerable to Denial of Service DoS. This vulnerability exists due to a flaw which allows a user to send a request, and quickly cancel it. The http2.Server.MaxConcurrentStreams limits the amount of allowed inflight requests, but does not handle the situation of resetting the...

Privilege Escalation

kOps is vulnerable to Privilege Escalation. The vulnerability is caused when running kOps with the GCP Provider in Gossip Mode, where Node service account credentials could be used by a container running in the cluster to retrieve sensitive information from the state storage bucket and escalate t...

Cross Site Scripting

Microweber is vulnerable to Cross-site Scripting XSS .The vulnerability is due to not sanitizing user provided types and title fields during web page generation. This may lead to an attacker injecting malicious scripts that are executed by the victim's browser by sending a crafted URL that reflec...

Integer Overflow

libgpac.so is vulnerable to Denial Of Service DOS. The vulnerability is caused by an insufficient validation in the QDecCoordOnUnitSphere function of src/bifs/unquantize.c which can lead to an integer overflow. This can result in application crash leading to Denial Of Service DOS...

Remote Code Execution (RCE)

cachethq/cachet is vulnerable to Remote Code Execution RCE. The vulnerability is caused by a flaw in the way Cachet handles twig templates. An attacker is able to exploit this flaw by injecting malicious code into a template, which will then be executed when the template is rendered...

Deserialization Of Untrusted Data

vantage6 is vulnerable to Deserialization of Untrusted Data. The vulnerability is due to the library's use of the insecure pickle library which is used serialization for deserializing data, enabling an attacker to manipulate the serialized data by injecting malicious code...

Denial Of Service

JSON-Java is vulnerable to Denial of Service. The vulnerability is due to chars with value \0 being parsed incorrectly, which can results in an input string of modest size causing indefinite amounts of memory usage...

Cross-Origin Cookie Leakage

Undici is vulnerable to Cross-Origin Cookie Leakage. The vulnerability is due to a failure to clear cookie headers which may lead to accidental leakage of cookie to a 3rd-party site or a malicious attacker who can control the redirection target...

Improper Access Control

vantage6-server is vulnerable to Improper Access Control. The vulnerability is due to improper permission checks in the /api/collaboration/id/task endpoint which retrieves tasks from a collaboration. Vantage only checks if the user has permission to view the collaboration, but should also check i...

Cross-Site Request Forgery (CSRF)

snipe/snipe-it is vulnerable to Cross-Site Request Forgery CSRF. The vulnerability occurs because the library defaults to using the GET method for the resend remainder acceptance option instead of POST, enabling an attacker to send malicious reminders and perform unauthorized actions...

Denial Of Service

libfrr.so is vulnerable to Denial Of Service attack. This is possible because of an inconsistent boundary check. Attackers can cause an out of bound read by BGP OPEN message with an option of type 0xff...

Denial Of Service (DoS)

Tomcat is vulnerable to Denial Of Service DoS. This vulnerability exists due to an incomplete implementation of the Commons FileUpload which improperly closes streams, allowing an attacker to cause a Denial of Service in the system if tomcat is run on Windows...

Denial Of Service (DoS)

Libraries that implement HTTP/2 are vulnerable to Denial Of Service DoS. The vulnerability could be exploited by attackers via sending a large number of HTTP/2 requests to a vulnerable server, then canceling them, causing the server to consume excessive resources and become unavailable to...

Improper Input Validation

python is vulnerable to improper input validation. The vulnerability arises due to incorrect parsing of an email address containing a special character. An attacker can bypass protection mechanisms in which application access is granted only after verifying its domain name...

Information Disclosure

tomcat-catalina is vulnerable to information disclosure. This vulnerability exists due to an improper request recycling mechanism, allowing an attacker to possibly access other requests...

Information Disclosure

github.com/zitadel/zitadel is vulnerable to Information Disclosure. This vulnerability allows an attacker to verify if an account exists in ZITADEL by using the password reset function, even if the Ignoring unknown usernames setting is enabled...

Denial Of Service (DoS)

matrixsynapse is vulnerable to Denial Of Service DoS. The vulnerability is due to malicious server ACL events which can impact performance temporarily or permanently, leading to a persistent denial of service DoS...

Race Condition

libpmix.so is vulnerable to Race Conditions. A remote attacker is able to obtain ownership of arbitrary files due to a race conditions when executing the library with a UID of 0...

Denial Of Service (DoS)

@graphql-mesh/runtime is vulnerable to Denial Of Service DoS. This vulnerability exists due to improper transforms at the root level, allowing an attacker to send duplicate queries with different variables which can exhaust server resources...

Authentication Bypass

neuvector is vulnerable to Authentication Bypass. An attacker can reverse engineer a JWT token, forging a valid taken to perform malicious activity. This can lead to RCE...

Request Smuggling

tomcat-coyote are vulnerable to Request Smuggling. This vulnerability exists because the library does not properly validate HTTP trailer headers, which allows an attacker to smuggle requests if the application is behind a reverse proxy...