Falhas do tipo CWE-185
26 resultadosCVE-2020-11034MEDIUMbypass of manageRedirect in GLPIEPSS 7.6%CVE-2018-7158—The `'path'` module in the Node.js 4.x release line contains a potential regular expression denial of service (ReDoS) vector. The code in quEPSS 3.4%CVE-2020-3408HIGHCisco IOS and IOS XE Software Split DNS Denial of Service VulnerabilityEPSS 1.6%CVE-2018-1109—A vulnerability was found in Braces versions 2.2.0 and above, prior to 2.3.1. Affected versions of this package are vulnerable to Regular ExEPSS 1.4%CVE-2020-7929MEDIUMSpecially crafted regex query can cause DoSEPSS 1.3%CVE-2020-7016—Kibana versions before 6.8.11 and 7.8.1 contain a denial of service (DoS) flaw in Timelion. An attacker can construct a URL that when viewedEPSS 1.1%CVE-2021-36093MEDIUMDoS attack using PostMaster filtersEPSS 1.1%CVE-2024-52289HIGHauthentik has an insecure default configuration for OAuth2 Redirect URIsEPSS 1.1%CVE-2020-1741MEDIUMA flaw was found in openshift-ansible. OpenShift Container Platform (OCP) 3.11 is too permissive in the way it specified CORS allowed originEPSS 0.9%CVE-2025-54365HIGHfastapi-guard patch contains bypassable RegExEPSS 0.7%CVE-2025-20139HIGHA vulnerability in chat messaging features of Cisco Enterprise Chat and Email (ECE) could allow an unauthenticated, remote attacker to causeEPSS 0.6%CVE-2024-2223HIGH Incorrect Regular Expression in GravityZone Update Server (VA-11465)EPSS 0.5%CVE-2026-25896CRITICALfast-xml-parser has an entity encoding bypass via regex injection in DOCTYPE entity namesEPSS 0.4%CVE-2026-27895MEDIUMLAM has incorrect regular expression in PDF export component that allows user to upload files of any typeEPSS 0.4%CVE-2026-33418HIGH@dicebear/converter ensureSize() Vulnerable to SVG Dimension Capping Bypass via XML Comment InjectionEPSS 0.4%CVE-2024-6641MEDIUMWP Hardening – Fix Your WordPress Security <= 1.2.6 - Unauthenticated Security Feature Bypass to Username EnumerationEPSS 0.4%CVE-2026-3419MEDIUMFastify's Missing End Anchor in "subtypeNameReg" Allows Malformed Content-Types to Pass ValidationEPSS 0.4%CVE-2026-4296HIGHIncorrect Regular Expression vulnerability in GitHub Enterprise Server allowed unauthorized access to user accounts via OAuth callback URL validation bypassEPSS 0.3%CVE-2026-25479MEDIUMLitestar has an AllowedHosts validation bypass due to unescaped regex metacharacters in configured host patternsEPSS 0.3%CVE-2026-24398MEDIUMHono's IPv4 address validation bypass in IP Restriction Middleware allows IP spoofingEPSS 0.3%