LORIS document_repository Insecure Direct Object Reference Vulnerability and Patch Analysis

github.com 2026-04-09翻訳準備中…中国語で表示中中国語 →English →

Security AdvisoryMediumLoris

Affected:

Loris document_repository >= 21.0.0 and <= 28.0.0

Fixed in:

27.0.2
28.0.1

参照 CVE: CVE-2026-35165 · 6.3

本文由本平台从 github.com 自动抓取，经 LLM 流水线清洗、双语翻译。版权归原作者。查看原文。

このソースからの他の記事

Go os.Root Path Traversal Mitigation: Merge #2187 Analysis 2026-05-10 Signal K WebSocket Login Rate Limit Bypass (CVE-2024-41893) 2026-05-10 Quarkus OpenAPI Generator Auth Header Leakage via Path Parameter Matching 2026-05-10 phpvms/phpvms removes importer module and routes to mitigate security risks 2026-05-10 quarkus-openapi-generator 2.17.0 Security Update: Dependency Upgrades and Permissions 2026-05-10