In a CVX cluster, an EOS switch connected to a CVX server is not resilient to certain malformed messages received from the connected CVX server. Similarly, the CVX server is not resilient to certain malformed messages received from the connected EOS switch. This leads to either a Sysdb agent crash o...
An authenticated Redis session could be used to obtain full root access to all servers in the CVX cluster. Note that this would require an attacker to have both network access to the Redis service on a CVX server and the Redis password. Please note that all Redis communication, including authenticat...
Klever-Go KVM: Unauthenticated remote node crash (nil-pointer DoS) in klever-go P2P transaction interceptor (txVersionChecker nil RawData) - potential chain halt
klever-go: REST API slow-header connection exhaustion via Gin Engine.Run
klever-go: Unbounded goroutine spawn on direct-message ingress enables peer-driven DoS
Klever-Go KVM: Throttler slot leak in trie account-data sync causes epoch bootstrap / state sync DoS
DbGate is cross-platform database manager. In versions 7.1.8 and prior, the POST /runners/load-reader endpoint in DbGate accepts a functionName parameter that is directly interpolated into a JavaScript code template without any sanitization or validation. An authenticated user (with basic access, no...
Sync-in Server is a secure, open-source platform for file storage, sharing, collaboration, and syncing. Prior to version 2.3.0, the private IP blocklist regex used in the URL download feature does not match IPv4-mapped IPv6 addresses (e.g. ::ffff:127.0.0.1), allowing SSRF protection to be bypassed o...
Source controller: Improper path handling allows traversal
Authenticated Remote Code Execution via loadReader functionName code injection in DbGate
praisonai-platform: Agent endpoints accept any agent_id without workspace ownership check, cross-workspace read/update/delete IDOR
DbGate: Zip Slip in archive/unzip allows arbitrary file write leading to RCE
DbGate: Unauthenticated Remote Code Execution via JSON Script Runner
NocoDB: Missing Ownership Check in MCP Attachment Read
NocoDB: Stored Cross-Site Scripting via Form View Redirect URL
NocoDB: OAuth Authorization Code Race Condition
NocoDB: Path Traversal via SQLite Source Filename
NocoDB: SQL Injection via Column Title in Bulk GroupBy
NocoDB: Stored Cross-Site Scripting via Row Comments
NocoDB: Server-Side Request Forgery via Database Connection Host