Browse and filter security vulnerabilities across ecosystems
Browse and filter security vulnerabilities across ecosystems
Nimiq has Allocation of Resources Without Limits or Throttling in its libp2p request/response
Allocation of Resources Without Limits or Throttling in GitLab
Allocation of Resources Without Limits or Throttling in GitLab
Allocation of Resources Without Limits or Throttling in GitLab
Allocation of Resources Without Limits or Throttling in GitLab
Zebra: addr/addrv2 Deserialization Resource Exhaustion
Next AI Draw.io: Unbounded HTTP Body — Denial of Service
FreeScout has Authentication Bypass and Information Disclosure in SystemController via /system/cron
OpenBao has Decompression Bomb via Unbounded Copy in OCI Plugin Extraction (DoS)
Possible DoS via SQL Box
Vault Vulnerable to Denial-of-Service via Unauthenticated Root Token Generation/Rekey Operations
MCP-Framework: Unbounded memory allocation in readRequestBody allows denial of service via HTTP transport
SpdyStream: DOS on CRI
Pillow is vulnerable to a FITS GZIP decompression bomb
Unbounded PGP AEAD chunk size leads to pre-auth resource exhaustion.
XWiki's REST APIs can list all pages/spaces, leading to unavailability
Varnish Enterprise before 6
SvelteKit has a BODY_SIZE_LIMIT bypass in @sveltejs/adapter-node
Vikunja has a File Size Limit Bypass via Vikunja Import
PraisonAI's Unauthenticated WebSocket Endpoint Proxies to Paid OpenAI Realtime API Without Rate Limits
Showing 1 - 20 of 1,000+ results