Search CVE reports

(Prometheus is an open-source monitoring system and time series databas ...)

(Arbitrary Class Instantiation via Model Manifest in Apache OpenNLP Ext ...)

(Buffer Overflow vulnerability in GPAC before commit v391dc7f4d234988ea ...)

(ModSecurity is an open source, cross platform web application firewall ...)

(Redis is an in-memory data structure store. In redis-server from 7.2.0 ...)

(Buffer Overflow vulnerability exists in Assimp versions up to 6.0.2 in ...)

In ProFTPD through 1.3.9a before 7666224, a SQL injection vulnerability in sqltab_fetch_clients_cb() in contrib/mod_wrap2_sql.c allows a remote attacker to inject arbitrary SQL commands via a crafted domain name that is accessed...

An issue was discovered in OpenStack Horizon 25.6 and 25.7 before 25.7.3. There is a write operation to the session storage backend before authentication and thus storage can be exhausted by unauthenticated requests. This is a...

RedisBloom is a probabilistic data structures module for Redis. In all versions of RedisBloom before 2.8.20, the module does not properly validate serialized values processed through the Redis RESTORE command. An authenticated...

RedisTimeSeries is a time-series module for Redis. In all versions before 1.12.14 of RedisTimeSeries, the module does not properly validate serialized values processed through the Redis RESTORE command. An authenticated attacker...