Filter
AND
AND
-Infinity
0

Trending

Last week
Last month
Last year

Langgenius Dify Node.jsIt was possible to bypass Permissions and access non authorized modules by using process.mainModule.…

high
7.5
First published (updated )
CVE-2023-23918

maven/com.graphql-java:graphql-javaGraphQL Java (aka graphql-java) before 21.5 does not properly consider ExecutableNormalizedFields (E…

high
7.5
First published (updated )
CVE-2024-40094

IBM Cognos ControllerCodehaus-plexus: directory traversal

high
7.5
First published (updated )
CVE-2022-4244

IBM Cognos ControllerCommand Injection

high
8.1
First published (updated )
CVE-2024-36138

Langgenius Dify Node.jsNode.js could allow a local attacker to gain elevated privileges on the system, caused by the DLL se…

high
7.3
First published (updated )
CVE-2022-32223

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

Langgenius Dify Node.jsCommand Injection, OS Command Injection

high
8.1
First published (updated )
CVE-2022-32212

redhat/nodeNode.js could provide weaker than expected security, caused by an error related to the formatting lo…

high
8.2
First published (updated )
CVE-2022-21824

redhat/nodeA flaw was found in node.js, where it did not properly handle multi-value Relative Distinguished Nam…

high
7.4
First published (updated )
CVE-2021-44533

redhat/nodeNode.js could allow a remote attacker to bypass security restrictions, caused by a string injection …

high
7.4
First published (updated )
CVE-2021-44532

redhat/nodeNode.js could allow a remote attacker to bypass security restrictions, caused by the improper handli…

high
7.4
First published (updated )
CVE-2021-44531

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

redhat/nodejsUse After Free

high
7.5
First published (updated )
CVE-2021-22940

Langgenius Dify Node.jsNode.js could allow a local attacker to gain elevated privileges on the system, caused by improper c…

high
7.8
First published (updated )
CVE-2021-22921

Langgenius Dify Node.jsLast updated 24 July 2024

high
7.5
First published (updated )
CVE-2023-23919

maven/software.amazon.ion:ion-javaIon Java StackOverflow vulnerability

high
7.5
EPSS
0.05%
First published (updated )
CVE-2024-21634

redhat/nodejsUndici vulnerable to Regular Expression Denial of Service in Headers

high
7.5
First published (updated )
CVE-2023-24807

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

maven/org.springframework:spring-webSpring Framework URL Parsing with Host Validation

high
8.1
First published (updated )
CVE-2024-22262

maven/org.springframework:spring-webSpring Framework URL Parsing with Host Validation

high
8.1
First published (updated )
CVE-2024-22243

IBM Cognos ControllerApache XML Graphics FOP: XML External Entity (XXE) Processing

high
7.5
First published (updated )
CVE-2024-28168

IBM Cognos ControllerIBM Controller could allow an authenticated attacker to conduct formula injection. An attacker could…

high
8
First published (updated )
CVE-2024-45084

IBM Cognos ControllerXEE

high
8.2
First published (updated )
CVE-2023-47160

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

IBM Cognos ControllerIBM Controller client application contains hard coded database passwords in source code which could …

high
8.8
First published (updated )
CVE-2024-52902

IBM Cognos ControllerIBM Cognos Controller is vulnerable to unrestricted deserialization. This vulnerability allows users…

high
8.8
First published (updated )
CVE-2024-28777

Oracle Banking PlatformCode Injection

high
7.5
First published (updated )
CVE-2020-11979

maven/org.apache.tomcat.embed:tomcat-embed-coreApache Commons FileUpload, Apache Tomcat: FileUpload DoS with excessive parts

high
7.5
First published (updated )
CVE-2023-24998

Siemens SINEC InsExposure of Private Personal Information to an Unauthorized Actor in follow-redirects/follow-redirects

high
8
First published (updated )
CVE-2022-0155

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

IBM Cognos ControllerIBM Cognos Controller session fixation

high
8.8
First published (updated )
CVE-2023-40695

IBM Cognos ControllerIBM Cognos Controller SQL injection

high
7.2
First published (updated )
CVE-2021-20451

IBM Cognos ControllerIBM Cognos Controller information disclosure

high
7.5
First published (updated )
CVE-2023-40696

IBM Cognos ControllerIBM Cognos Controller information disclosure

high
7.5
First published (updated )
CVE-2020-4874

IBM Cognos ControllerIBM Cognos Controller improper certificate validation

high
8.2
First published (updated )
CVE-2024-40702

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

Company

Resources

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co
By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.
© 2025 SecAlerts Pty Ltd.
ABN: 70 645 966 203, ACN: 645 966 203