Security
Headlines

Headlines Latest CVEs

Headline

GHSA-6294-6rgp-fr7r: jose2go vulnerable to denial of service via large p2c value

The jose2go component before 1.6.0 for Go allows attackers to cause a denial of service (CPU consumption) via a large p2c (aka PBES2 Count) value.

1 year ago

ghsa: Latest News

GHSA-v62p-rq8g-8h59: pbkdf2 silently disregards Uint8Array input, returning static keys

12 hours ago

GHSA-h7cp-r72f-jxh6: pbkdf2 returns predictable uninitialized/zero-filled memory for non-normalized or unimplemented algos

12 hours ago

GHSA-jpv7-p47h-f43j: letmein connection limiter allows an arbitrary amount of simultaneous connections

13 hours ago

GHSA-9f65-56v6-gxw7: Claude Code Improper Authorization via websocket connections from arbitrary origins

13 hours ago

GHSA-hwpg-x5hw-vpv9: ChangeDetection.io XSS in watch overview

13 hours ago