All 4 CVE vulnerabilities found in bref, with AI-generated Chinese analysis, references, and POCs.
Vendor: brefphp
| CVE ID | Title | CVSS | Severity | Published |
|---|---|---|---|---|
| CVE-2024-29186 | Slow String Operations via MultiPart Requests in Event-Driven Functions CWE-400 | 5.3 | Medium | 2024-03-22 |
| CVE-2024-24754 | Bref Body Parsing Inconsistency in Event-Driven Functions CWE-436 | 3.7 | Low | 2024-02-01 |
| CVE-2024-24752 | Bref Uploaded Files Not Deleted in Event-Driven Functions CWE-400 | 6.5 | Medium | 2024-02-01 |
| CVE-2024-24753 | Bref Multiple Value Headers Not Supported in ApiGatewayFormatV2 CWE-436 | 4.8 | Medium | 2024-02-01 |
All 4 known CVE vulnerabilities affecting bref with full Chinese analysis, references, and POCs where available.