1388939 matches found
CVE-2026-10054
The CVE-2026-10054 entry concerns Eclipse Theia (1.8.1 and later) where the browser backend exposes privileged terminal RPC over WebSocket (/services/shell-terminal, /services/terminals/:id) without proper service-level authentication. The vulnerability stems from fail-open WebSocket origin valid...
CVE-2026-50282
creationtimestamp| type| source ---|---|--- 2026-07-03 08:24:19+00:00| seen| https://bsky.app/profile/qiancx.bsky.social/post/3mpq4ndri4a2i 2026-07-03 08:24:29+00:00| seen| https://bsky.app/profile/kriptabiz.bsky.social/post/3mpq4neltfq2n 2026-07-03 09:30:24+00:00| seen|...
EUVD-2026-41518
Improper Limitation of a Pathname to a Restricted Directory 'Path Traversal' vulnerability in Apache Lucene.Net Lucene.Net.Replicator library. This issue affects Apache Lucene.Net.Replicator: from 4.8.0-beta00005 before 4.8.0-beta00018. Users are recommended to upgrade to version 4.8.0-beta00018,...
CVE-2026-9230
The Quiz and Survey Master QSM – Easy Quiz and Survey Maker plugin for WordPress is vulnerable to authorization bypass in all versions up to, and including, 11.1.4. This is due to the plugin not properly verifying that a user is authorized to perform an action. This makes it possible for...
CVE-2026-54891
A flaw was found in Erlang's SSL Secure Sockets Layer component. A network-positioned attacker can exploit this vulnerability by injecting unauthenticated plaintext data into a client's TLS Transport Layer Security handshake. The client application may then process this injected data as if it wer...
CVE-2026-9547
When a libcurl-based application performs transfers via SCP:// or S...
CVE-2026-9545
In this scenario, libcurl first uses a proper HTTP/3 server for the in...
CVE-2026-8932
libcurl (client library) is affected by CVE-2026-8932 due to incomplete mTLS config matching in the connection reuse logic. The vulnerability arises because TLS settings related to client certificates, notably the private key, were omitted from the configuration match checks, allowing a previousl...
EUVD-2026-41509
libcurl would reuse a previously created connection even when some mTLS config related option had been changed that should have prohibited reuse. libcurl keeps previously used connections in a connection pool for subsequent transfers to reuse if one of them matches the setup. However, some TLS...
EUVD-2026-41506
The curl logic that works with SASL authentication could end up cleaning up the GSASL context twice without clearing the pointer in between, making it free the same pointer twice...
CVE-2026-8924
A flaw in curl\u2019s cookie parsing logic allows a malicious HTTP ser...
EUVD-2026-41503
A vulnerability exists where a new transfer that uses STARTTLS to upgrade the connection might reuse an existing live connection even though the TLS configuration mismatches so it should not...
CVE-2026-12064
When a user invokes curl using a schemeless URL combined with --proto...
CVE-2026-11856
Successfully using libcurl to do a transfer to a specific HTTP origin...
CVE-2026-10536
A use-after-free vulnerability exists in libcurl when an application c...
CVE-2026-58652
creationtimestamp| type| source ---|---|--- 2026-07-03 04:04:20+00:00| seen| https://bsky.app/profile/kriptabiz.bsky.social/post/3mppo4hmy6r2j 2026-07-03 10:25:57+00:00| seen| https://bsky.app/profile/kriptabiz.bsky.social/post/3mpqdguittd2n...
ROOT-OS-DEBIAN-13-CVE-2026-31417 CVE-2026-31417 in rootio-linux - Patched by Root
Root has patched CVE-2026-31417 in the rootio-linux package for Root:Debian:13. Multiple fixed versions available...
ROOT-OS-DEBIAN-13-CVE-2025-22096 CVE-2025-22096 in rootio-linux - Patched by Root
Root has patched CVE-2025-22096 in the rootio-linux package for Root:Debian:13. Multiple fixed versions available...
ROOT-OS-DEBIAN-13-CVE-2026-53226 CVE-2026-53226 in rootio-linux - Patched by Root
Root has patched CVE-2026-53226 in the rootio-linux package for Root:Debian:13. Multiple fixed versions available...
ROOT-OS-DEBIAN-13-CVE-2025-68321 CVE-2025-68321 in rootio-linux - Patched by Root
Root has patched CVE-2025-68321 in the rootio-linux package for Root:Debian:13. Multiple fixed versions available...