Categoria: CVE

A vulnerability labeled as critical has been found in chimurai http-proxy-middleware up to 3.0.6/4.1.0. The impacted element is the function fixRequestBody of the component Upstream Backend. Such manipulation leads to crlf...

A vulnerability identified as critical has been detected in BerriAI LiteLLM up to 1.83.x. The affected element is an unknown function. This manipulation causes authentication bypass by spoofing. The identification of this...

A vulnerability categorized as problematic has been discovered in filamentphp filament up to 4.11.4/5.6.4. Impacted is an unknown function. The manipulation results in race condition. This vulnerability was named CVE-2026-48505....

A vulnerability was found in vLLM up to 0.21.x. It has been rated as critical. This issue affects some unknown processing of the component OpenAI API. The manipulation leads to http request smuggling. This vulnerability is...

A vulnerability was found in MessagePack-CSharp MessagePack for C# up to 2.5.300/3.1.6. It has been declared as problematic. This vulnerability affects the function MessagePackReader.ReadDateTime. Executing a manipulation can...

A vulnerability labeled as problematic has been found in Angular up to 18.2.14/19.2.24/20.3.23/21.2.15. This impacts an unknown function of the component Unicode Character Handler. Such manipulation leads to cross site...

A vulnerability identified as problematic has been detected in Angular up to 18.2.14/19.2.24/20.3.23/21.2.15. This affects an unknown function. This manipulation causes cross site scripting. This vulnerability is tracked as...

A vulnerability categorized as problematic has been discovered in remix-run react-router and server-runtime up to 7.15.0. The impacted element is an unknown function. The manipulation results in cross-site request forgery. This...

A vulnerability was found in withastro astro up to 6.3.2. It has been rated as problematic. The affected element is an unknown function. The manipulation of the argument data-astro-template leads to basic cross site scripting....

A vulnerability was found in Angular up to 18.2.14/19.2.21/20.3.20/21.2.12. It has been declared as critical. Impacted is an unknown function. Executing a manipulation can lead to server-side request forgery. The identification...

A vulnerability was found in withastro astro up to 6.4.5. It has been classified as problematic. This issue affects the function spreadAttributes. Performing a manipulation results in cross site scripting. This vulnerability was...

A vulnerability was found in honojs hono up to 4.12.24 and classified as problematic. This vulnerability affects unknown code of the component Cookie Header Handler. Such manipulation leads to escaping of output. This...