Browse and filter security vulnerabilities across ecosystems
Browse and filter security vulnerabilities across ecosystems
In Meshtastic, an attacker can spoof licensed amateur flag for a node
In Bun before 1
AA Block country <= 1.0.1 - Unauthenticated IP Address Spoofing via X-Forwarded-For Header
PbootCMS Header handle.php get_user_ip less trusted source
In the KDE Connect information-exchange protocol before 2025-04-18, a packet can be crafted to temporarily change the displayed information about a...
Termix' official Docker image contains an authentication bypass vulnerability
RICOH Streamline NX versions 3
Movable Type contains an issue with use of less trusted source
RICOH Streamline NX V3 PC Client versions 3
Fabio allows HTTP clients to manipulate custom headers it adds
The optional feature 'Anti-Virus & Sandbox' of i-FILTER contains an issue with improper pattern file validation
Bypass Connection Restriction Vulnerability in Hitachi Ops Center Analyzer
Retool (self-hosted) before 3
SSL
An issue was discovered in the oidc (aka OpenID Connect Authentication) extension before 4
Passbolt API before 5, if the server is misconfigured (with an incorrect installation process and disregarding of Health Check results), can send e...
PVWA (Password Vault Web Access) in CyberArk Privileged Access Manager Self-Hosted before 14
PostgreSQL libpq retains an error message from man-in-the-middle
OpenRefine has a reflected cross-site scripting vulnerability from POST request in ExportRowsCommand
Limit Login Attempts (Spam Protection) <= 5.3 - IP Address Spoofing to Protection Mechanism Bypass
Showing 1 - 20 of 1,000+ results