Browse and filter security vulnerabilities across ecosystems
Browse and filter security vulnerabilities across ecosystems
Church Admin <= 5.0.28 - Authenticated (Administrator+) Blind Server-Side Request Forgery via 'audio_url' Parameter
A permissions issue was addressed with additional restrictions
A permissions issue was addressed with additional restrictions
This issue was addressed with improved permissions checking
This issue was addressed through improved state management
RustFS RPC signature verification logs shared secret
DoS from quadratic complexity in model.ParseHashtags
Best Practical Request Tracker (RT) before 4
Libxml2: libxml2: denial of service via crafted xml catalogs
Libxml2: unbounded relaxng include recursion leading to stack overflow
The device's passwords have not been adequately salted, making them vulnerable to password extraction attacks
An attacker with administrative access may inject malicious content into the login page, potentially enabling cross-site scripting (XSS) attacks, l...
Org.keycloak/keycloak-quarkus-server: keycloak: proxy bypass due to improper handling of matrix parameters in url paths
Drag and Drop Multiple File Upload for Contact Form 7 <= 1.3.9.2 - Missing Authorization to Unauthenticated File Deletion
A potential missing authentication vulnerability was reported in some Lenovo Tablets that could allow an unauthorized user with physical access to ...
Undici has an unbounded decompression chain in HTTP responses on Node.js Fetch API via Content-Encoding leads to resource exhaustion
Showing 1 - 20 of 1,000+ results