Browse and filter security vulnerabilities across ecosystems
Browse and filter security vulnerabilities across ecosystems
z-9527 admin User Update Endpoint user.js dynamically-determined object attributes
gougucms User Registration Login.php reg_submit dynamically-determined object attributes
NocoBase Affected by Sandbox Escape to RCE via console._stdout Prototype Chain Traversal in Workflow Script Node
Graphiti Affected by Arbitrary Method Execution via Unvalidated Relationship Names
Apache Airflow Providers Http: Unsafe Pickle Deserialization in apache-airflow-providers-http leading to RCE via HttpOperator
n8n Has an Expression Escape Vulnerability Leading to RCE
Improper Control of Dynamically-Managed Code Resources in Crafter Studio
SandboxJS has Sandbox Escape via Unprotected AsyncFunction Constructor
vm2 has a Sandbox Escape
Signal K Server has Unauthenticated State Pollution leading to Remote Code Execution (RCE)
n8n Vulnerable to Remote Code Execution via Expression Injection
SamuNatsu HaloBot Inter-plugin API index.js html_renderer dynamically-managed code resources
Improper control of dynamically managed code resources in Ivanti Endpoint Manager prior to version 2024 SU4 SR1 allows a remote, unauthenticated at...
Improper Sandboxing in Google Apigee's JavaCallout Policy Allows for Remote Code Execution
youlaitech youlai-mall orders improper control of dynamically-identified variables
youlaitech youlai-mall addresses deleteAddress improper control of dynamically-identified variables
Improper control of dynamically-managed code resources vulnerability in WebAPI component in Synology DiskStation Manager (DSM) before 7
GZDoom engine allows arbitrary code execution via ZScript actor states
Improper control of dynamically-managed code resources for some Intel(R) NPU Drivers within Ring 3: User Applications may allow a denial of service
Rack has Possible Information Disclosure Vulnerability
Showing 1 - 20 of 1,000+ results