Use After Free

chromium is vulnerable to Use After Free. This vulnerability could allow an attacker who convinced a user to install a malicious extension to potentially exploit heap corruption via a crafted HTML page...

Authorization Bypass

chromium is vulnerable to Authorization Bypasses. This obfuscation vulnerability could be exploited by a malicious website. The vulnerability could allows an attacker to hide security warnings and notifications from the user, making it easier to trick the user into clicking on a malicious link or...

Authorization Bypass

chromium is vulnerable to Authorization Bypasses. This obfuscation vulnerability could be exploited by a malicious website. The vulnerability could allow an attacker to hide security warnings and notifications from the user, making it easier to trick the user into granting permissions that they...

Insufficient Policy Enforcement

chromium is vulnerable to Insufficient Policy Enforcement. This vulnerability allows an attacker who convinced a user to install a malicious extension to bypass an enterprise policy via a crafted HTML page, which enables the attacker to bypass security policies that are in place to restrict the...

Authorization Bypass

chromium is vulnerable to Authorization Bypasses. This vulnerability could allow a remote attacker to spoof the contents of a dialog URL via a crafted HTML page...

Buffer Overflow

chromium is vulnerable to Buffer Overflows. The vulnerability could allow a remote attacker who had compromised the renderer process and gained control of a WebUI process to potentially exploit heap corruption via a crafted HTML page...

Authorization Bypass

chromium is vulnerable to Authorization Bypasses. This vulnerability could allow a remote attacker to bypass Autofill restrictions via a crafted HTML page...

Improper Access Control

chromium is vulnerable to Improper Access Control. This vulnerability could allow a remote attacker to obfuscate security UI via a crafted HTML page...

HTTP Request Smuggling

puma is vulnerable to HTTP Request Smuggling. The vulnerability exists due to processing zero-length content-Length headers and chunked transfer encoding bodies in client.rb, allowing an attacker to smuggle HTTP requests...

Denial Of Service (DoS)

vim is vulnerable to Denial of Service DoS attacks. This vulnerability allows a local attacker to cause a denial of service DoS by tricking a user into opening a specially crafted file due to a null pointer dereference in the exbufferall function...

Cross-site Scripting (XSS)

pimcore/pimcore is vulnerable to Cross-site Scripting. The vulnerability exists due to a lack of sanitization of user inputs in datetime.js which allows an attacker to inject and execute arbitrary javascript into the browser...

Arbitrary Code Execution

pandasai is vulnerable to Arbitrary Code Execution. The vulnerability exists in cleancode function at init.py due to lack of security checks which allows an attacker to inject and execute malicious code, resulting in prompt injection...

Remote Code Execution (RCE)

org.jenkins-ci.plugins: convert-to-pipeline is vulnerable to Remote Code Execution RCE. The vulnerability exists due to improperly converting the build environment, build steps, and post-build actions of freestyle projects to the corresponding pipeline step invocations via simple string...

Cross-site Scripting (XSS)

cockpit-hq/cockpit is vulnerable to Stored Cross-site Scripting XSS. The vulnerability exists in the upload function at bootstrap.php due to lack of MIME sanitization which allows an attacker to inject and execute arbitrary JavaScript...

Cross-site Scripting (XSS)

cockpit-hq/cockpit is vulnerable to Cross-site Scripting XSS. The vulnerability exists in Rest/GraphQL viewer due to lack of escaping script tags which allows an attacker to inject and execute arbitrary javascript...

Cross-site Scripting (XSS)

cockpit-hq/cockpit is vulnerable to Cross-site Scripting XSS. The vulnerability exists in the index.php due to lack of sanitization of user inputs during installation which allows an attacker to inject and execute arbitrary javascript into a victims browser...

Cross-site Scripting (XSS)

cockpit-hq/cockpit is vulnerable to Cross-site Scripting XSS. The vulnerability exists in upload function at bootstrap.php because due to improper sanitization of inputs which allows an attacker to inject and execute arbitrary javascript...

Cross Site Scripting (XSS)

Keycloak is vulnerable to Cross Site Scripting XSS. The vulnerability is due to not sanitizing the username field when the same field is displayed back to the user on the user interface through browser. The attacker can include a malicious script in the username field and make that username field...

Out-Of-Bounds Read

gawk is vulnerable to Out-Of-Bounds Read. The vulnerability exists in the builtin.c file in the gawk package. An attacker can exploit this vulnerability by sending a specially crafted input to the gawk program, which could lead to a denial of service or the disclosure of sensitive information...

Arbitrary Code Injection

sketchsvg is vulnerable to Remote Code Execution RCE. The vulnerability exists due to a lack of user input sanitization in when calling the shell.exec method, allowing an attacker to inject and execute malicious code into the system...

Information Disclosure

tech.powerjob:powerjob-server-remote is vulnerable to Information Disclosure. The vulnerability exists in the way that PowerJob handles the appId parameter in the /container/list interface. An attacker is able to exploit this vulnerability by sending a specially crafted request to the PowerJob...

Prototype Pollution

dot-lens is vulnerable to Prototype Pollution. The vulnerability exists due to insufficient conditional checks in the set function of index.js which allows an attacker to inject and modify malicious properties such as proto, resulting in prototype pollution...

Cross-Site Request Forgery (CSRF)

wallabag/wallabag is vulnerable to Cross-Site Request Forgery CSRF. The vulnerability exists in the deleteClientAction function of DeveloperController.php as it does not properly validate the CSRF token, which allows an attacker to arbitrarily delete the API key by sending a GET request to the...

Insufficient URL Validation

org.apache.nifi:nifi-dbcp-base is vulnerable to Insufficient URL Validation. The vulnerability allows an authenticated attacker with relevant privileges to bypass connection URL validation using custom input formatting, which leads to unauthorized access to data or other resources...

Cross-Site Request Forgery (CSRF)

wallabag/wallabag is vulnerable to Cross-Site Request Forgery CSRF. The vulnerability exists due to the lack of a CSRF token in the resetAction function of ConfigController.php, which allows an attacker to arbitrarily delete the victim user's annotations, entries and tags by sending GET requests ...

XML Injection

org.apache.ivy:ivy is vulnerable to XML Injection. The vulnerability exists due to improper external DTD XML restrictions. An attacker is able to exploit this vulnerability by parsing a specially crafted XML file, which allows the attacker to access sensitive information, such as passwords or oth...

Arbitrary Code Execution

com.alibaba.nacos:nacos-spring-context is vulnerable to Arbitrary Code Execution. The vulnerability exists in the SnakeYamls Constructor, which is used to parse YAML files. An attacker who is able to modify a yaml file thats defined in the NacosPropertySource is able to execute arbitrary code...

Password Disclosure

dolphinscheduler-server is vulnerable to Password Disclosure. The vulnerability exists due to improper handling of logs in the process function of LoggerRequestProcessor.java, allowing an attacker to utilize tasks to read config files, which could include the database password...

Denial Of Service (DoS)

github.com/weaviate/weaviate is vulnerable to Denial Of Service DoS. The vulnerability exists because the handleUnbatchedGraphQLRequest function of handlersgraphql.go does not properly check the query type for the metrics request, allowing an attacker to crash the application...

Denial Of Service (DoS)

ffmpeg is vulnerable to Denial of Service DoS attacks. The vulnerability exists in the avtimecodemakestring function, which is used to convert a timecode to a string. This vulnerability could allow a local attacker to cause a denial of service DoS by providing a crafted .mov file that triggers th...

Improper Access Control

PowerJob is vulnerable to Incorrect Access Control vulnerability. The vulnerability is due to not applying sufficient authorization checks on the POST /user/save end point. This can lead to an attacker creating users without any permissions...

Weak Encryption

github.com/cheqd/cheqd-node is vulnerable to weak encryption. The vulnerability exists in package-lock.json because it does not properly validate the inter-blockchain communication protocol...

Denial Of Service (DoS)

libreswan is vulnerable to Denial of Service DoS attacks. This vulnerability exists in the ikesainitinfo function in the ike.c file. An attacker can exploit this vulnerability by sending a specially crafted IKE packet to the libreswan server, which could cause the server to crash...

Denial Of Service (DoS)

libreswan is vulnerable to Denial of Service DoS attacks. This vulnerability exists in the pluto/ikev1.c file when processing IKEv1 Quick Mode requests. An attacker can exploit this vulnerability by sending a specially crafted IKEv1 Quick Mode packet to the libreswan server, which could cause the...

NULL Pointer Dereference

libreswan is vulnerable to NULL Pointer Dereference. The vulnerability occurs when a malformed IKEv1 Delete/Notify packet is received resulting in a crash or denial of service if sent continuously...

Cross-site Request Forgery

blueocean is vulnerable to Cross-site Request Forgery. The vulnerability is due to a lack of requiring POST requests for an HTTP endpoint in GithubScm.java, which allows an attacker to view github credentials...

Buffer Overflow

ghostscript is vulnerable to Buffer Overflow. The vulnerability exists in the devnpcxwriterle function of gdevdevn.c, which allows a local malicious attacker to cause a denial of service via a crafted PDF file for a DEVN device with gs...

Arbitrary File Read

apache-airflow-providers-apache-spark is vulnerable to Arbitrary File Read. The vulnerability exists because the preparecommand function of sqoop.py does not properly validate the connection host field, which allows an attacker to pass malicious query param containing ?, leading to reading...

Denial Of Service (DoS)

libclamav.so is vulnerable to Denial of Service DoS attacks. The vulnerability is caused by an incorrect check for completion when a file is decompressed, which may result in a loop condition that could cause the affected software to stop responding, resulting in denial of service conditions...

Buffer Overflow

Matthias-Wandel jhead is vulnerable to Buffer Overflow, it is caused by allowing attackers to execute arbitary code causing denial of service DoS...

SQL Injection

org.jeecgframework.boot:jeecg-boot-base-core is vulnerable to SQL Injection attacks. This vulnerability allows a local attacker to cause a denial of service DoS attack by injecting malicious SQL code into specially crafted requests. The vulnerability is caused by improper input validation in the...

Cross-site Request Forgery (CSRF)

org.jenkins-ci.plugins, favorite-view is vulnerable to Cross-Site Request Forgery. The vulnerability exists due to the lack of validation in the HTTP endpoint which allows an attackers to add or remove views from another user's favorite views tab bar...

Denial Of Service (DoS)

libprocps.so is vulnerable to Denial Of Service DoS. The vulnerability exists in the ps option which allows an attacker to write unlimited amounts of unfiltered data into the process heap causing an application crash...

Cross-site Request Forgery

Folders Plugin is vulnerable to Cross-site Request Forgery. The vulnerability is due to a lack of requiring POST requests for an HTTP endpoint, which allows an attacker to copy a view inside a folder...

Information Disclosure

org.jenkins-ci.plugins, cloudbees-folder is vulnerable to Information Disclosure. The vulnerability exists because the library does not properly restrict the organization folder log file location, which allows an attacker to gain access to sensitive information in the system...

Credential Exposure

org.jenkins-ci.plugins, nodejs config-file-provide is vulnerable to information exposure. The vulnerability exists because it does not mask credentials for authentication in the npm config file, which results in credential exposure in the build log...

Cross-site Scripting (XSS)

@excalidraw/excalidraw is vulnerable to Cross-site Scripting XSS. The vulnerability exists due to improper input sanitization via embedded links in whiteboard object which allows an attacker to inject and execute arbitrary JavaScript...

Information Exposure

org.jenkins-ci.plugins: config-file-provide is vulnerable to Information Exposure. The vulnerability is due to improper credential masking, which can result in credential exposure in build logs...

Arbitrary File Read

@tryghost/zip is vulnerable to Arbitrary File Read. The vulnerability exists because the module.exports function of extract.js does not properly restrict symbolic links in uploaded files, which allows an attacker to upload a symlink, leading to arbitrary files read on the operating system...

Improper Input Validation

github.com/woodpecker-ci/woodpecker is vulnerable to Improper Input Validation. The vulnerability occurs because the library does not properly validate webhook data, which could be used to take over the repository...