Résumé
CoreWCF NetNamedPipe transport accepts attach to a pre-existing named pipe instance
Références
Vulnérabilités liées
Tout Supply chain →- MEDIUMGHSA-WVRH-2F4M-924V
ChatterBot: Symlink-Following Arbitrary Write via UbuntuCorpusTrainer
- CRITICALGHSA-WFQX-GJRF-G28R
Crossplane: Signature verification TOCTOU allows installing unverified package content via mutable tag
- MEDIUMGHSA-CMWH-PVXP-8882
DOMPurify: Permanent `ALLOWED_ATTR` pollution via `setConfig()` bypassing the hook clone-guard (incomplete fix of the 3.4.7 hook-pollution patch)
- HIGHGHSA-RJVW-7VVW-549V
PraisonAI: Jobs webhook SSRF protection bypass via DNS rebinding
- HIGHGHSA-869J-R97X-HX2G
Anki's local HTTP server does not sufficiently validate requests
- MEDIUMGHSA-JV2J-MQMW-XVV5
SurrealDB: Denial of Service via deep operator chains