All 4 CVE vulnerabilities found in salvo, with AI-generated Chinese analysis, references, and POCs.
Vendor: salvo-rs
| CVE ID | Title | CVSS | Severity | Published |
|---|---|---|---|---|
| CVE-2026-33241 | Salvo Affected by Denial of Service via Unbounded Memory Allocation in Form Data Parsing CWE-770 | 7.5 | - | 2026-03-23 |
| CVE-2026-33242 | Salvo has a Path Traversal in salvo-proxy::encode_url_path allows API Gateway Bypass CWE-22 | 7.5 | High | 2026-03-23 |
| CVE-2026-22257 | Salvo is vulnerable to stored XSS in the list_html function by uploading files with malicious names CWE-79 | 8.8 | High | 2026-01-08 |
| CVE-2026-22256 | Salvo is vulnerable to reflected XSS in the list_html function CWE-79 | 8.8 | High | 2026-01-08 |
All 4 known CVE vulnerabilities affecting salvo with full Chinese analysis, references, and POCs where available.