Search Vulnerabilities

Keycloak: keycloak: denial of service via specially crafted saml input

Denial of service vulnerability in M-Files Server

Improper Command Detection Logic Allows RCE in Cortex Code Command-Line Interface

Net::CIDR::Lite versions before 0.23 for Perl does not validate IPv6 group count, which may allow IP ACL bypass

Junos OS: SRX Series, MX Series: When a specifically malformed first ISAKMP packet is received kmd/iked crashes

Rack: `Rack::Request` accepts invalid Host characters, enabling host allowlist bypass.

A vulnerability in the Lobby Ambassador web-based management API of Cisco IOS XE Software could allow an authenticated, remote attacker to elevate ...

IBM QRadar SIEM Information Disclosure

Libsoup: libsoup: http smuggling and server-side request forgery via malformed hostnames

API - Insufficient Input Validation

Uv: uv: specially crafted zip archives lead to arbitrary code execution due to parsing differentials

Microsoft Exchange Server Spoofing Vulnerability

FacturaScripts has SQL Injection vulnerability in API ORDER BY Clause

Denial of Service condition in M-Files Server

Junos OS: SRX Series: Specifically malformed SSL packet causes FPC crash

Weblate's over‑permissive webhook endpoint enables mass repository updates and component enumeration

Nodemailer: nodemailer: email to an unintended domain can occur due to interpretation conflict

Sauter: Improper Validation of user-controlled data

Web http client: Unchecked Server-Side Malicious Packet Issue

Denial of Service issue in Amazon.IonDotnet