Lucene search
+L

40714 matches found

CVE
CVE
added 2026/07/09 10:33 p.m.21 views

CVE-2026-44342

CVE-2026-44342 describes a CSRF vulnerability in the New API where GET requests on state-changing endpoints GET /api/oauth/email/bind and GET /api/oauth/wechat/bind could allow an attacker to bind an email or OAuth identity for a logged-in user when session cookies are susceptible to cross-site n...

5.3CVSS5.8AI score0.00189EPSS
Exploits0References3Affected Software1
OSV
OSV
added 2026/07/09 10:33 p.m.4 views

CVE-2026-44342 New API CSRF in email and WeChat account binding endpoints

New API is a large language mode LLM gateway and artificial intelligence AI asset management system. Prior to 0.12.0-alpha.1, the email and WeChat account binding endpoints GET /api/oauth/email/bind and GET /api/oauth/wechat/bind used GET requests for state-changing account operations, allowing a...

5.3CVSS6AI score0.00189EPSS
Exploits0References5
Cvelist
Cvelist
added 2026/07/09 10:33 p.m.38 views

CVE-2026-44342 New API CSRF in email and WeChat account binding endpoints

New API is a large language mode LLM gateway and artificial intelligence AI asset management system. Prior to 0.12.0-alpha.1, the email and WeChat account binding endpoints GET /api/oauth/email/bind and GET /api/oauth/wechat/bind used GET requests for state-changing account operations, allowing a...

5.3CVSS0.00189EPSS
Exploits0References3
OSV
OSV
added 2026/07/09 10:28 p.m.5 views

CVE-2026-33655 New API: SSRF Protection Bypass via Unresolved Hostname in Notification URLs

New API is a large language mode LLM gateway and artificial intelligence AI asset management system. Prior to 0.12.0-alpha.1, the default SSRF protection configuration did not apply IP filtering to hostnames; with ApplyIPFilterForDomain disabled by default, URL validation checked domain allow/blo...

7.7CVSS6.1AI score0.00442EPSS
Exploits0References5
Cvelist
Cvelist
added 2026/07/09 10:28 p.m.38 views

CVE-2026-33655 New API: SSRF Protection Bypass via Unresolved Hostname in Notification URLs

New API is a large language mode LLM gateway and artificial intelligence AI asset management system. Prior to 0.12.0-alpha.1, the default SSRF protection configuration did not apply IP filtering to hostnames; with ApplyIPFilterForDomain disabled by default, URL validation checked domain allow/blo...

7.7CVSS0.00442EPSS
Exploits0References3
Debian
Debian
added 2026/07/08 9:26 p.m.7 views

[SECURITY] [DSA 6385-1] pgextwlist security update

------------------------------------------------------------------------- Debian Security Advisory DSA-6385-1 [email protected] https://www.debian.org/security/ Moritz Muehlenhoff July 08, 2026 https://www.debian.org/security/faq -...

8.8CVSS6AI score0.01572EPSS
Exploits0
CBLMariner
CBLMariner
added 2026/07/08 4:2 p.m.9 views

CVE-2026-53357 affecting package kernel for versions less than 6.6.143.1-1

CVE-2026-53357 affecting package kernel for versions less than 6.6.143.1-1. An upgraded version of the package is available that resolves this issue...

8CVSS6.1AI score0.00165EPSS
Exploits0
CBLMariner
CBLMariner
added 2026/07/08 4:2 p.m.4 views

CVE-2026-48618 affecting package nodejs for versions less than 24.17.0-1

CVE-2026-48618 affecting package nodejs for versions less than 24.17.0-1. An upgraded version of the package is available that resolves this issue...

7.7CVSS7AI score0.02486EPSS
Exploits0
CBLMariner
CBLMariner
added 2026/07/08 4:2 p.m.5 views

CVE-2026-53034 affecting package kernel for versions less than 6.6.143.1-1

CVE-2026-53034 affecting package kernel for versions less than 6.6.143.1-1. An upgraded version of the package is available that resolves this issue...

5.5CVSS6.1AI score0.00128EPSS
Exploits0
CBLMariner
CBLMariner
added 2026/07/08 4:2 p.m.6 views

CVE-2026-52963 affecting package kernel for versions less than 6.6.143.1-1

CVE-2026-52963 affecting package kernel for versions less than 6.6.143.1-1. An upgraded version of the package is available that resolves this issue...

5.5CVSS6.1AI score0.00128EPSS
Exploits0
CBLMariner
CBLMariner
added 2026/07/08 4:2 p.m.7 views

CVE-2026-52985 affecting package kernel for versions less than 6.6.143.1-1

CVE-2026-52985 affecting package kernel for versions less than 6.6.143.1-1. An upgraded version of the package is available that resolves this issue...

5.5CVSS6.1AI score0.00122EPSS
Exploits0
CBLMariner
CBLMariner
added 2026/07/08 4:2 p.m.6 views

CVE-2026-53037 affecting package kernel for versions less than 6.6.143.1-1

CVE-2026-53037 affecting package kernel for versions less than 6.6.143.1-1. An upgraded version of the package is available that resolves this issue...

5.5CVSS6.1AI score0.00095EPSS
Exploits0
CBLMariner
CBLMariner
added 2026/07/08 4:2 p.m.5 views

CVE-2026-53022 affecting package kernel for versions less than 6.6.143.1-1

CVE-2026-53022 affecting package kernel for versions less than 6.6.143.1-1. An upgraded version of the package is available that resolves this issue...

5.5CVSS6.1AI score0.00122EPSS
Exploits0
CBLMariner
CBLMariner
added 2026/07/08 4:2 p.m.6 views

CVE-2026-53001 affecting package kernel for versions less than 6.6.143.1-1

CVE-2026-53001 affecting package kernel for versions less than 6.6.143.1-1. An upgraded version of the package is available that resolves this issue...

5.5CVSS6.1AI score0.00122EPSS
Exploits0
CBLMariner
CBLMariner
added 2026/07/08 4:2 p.m.5 views

CVE-2026-52962 affecting package kernel for versions less than 6.6.143.1-1

CVE-2026-52962 affecting package kernel for versions less than 6.6.143.1-1. A patched version of the package is available...

7.8CVSS5.9AI score0.00138EPSS
Exploits0
CBLMariner
CBLMariner
added 2026/07/08 4:2 p.m.5 views

CVE-2026-53004 affecting package kernel for versions less than 6.6.143.1-1

CVE-2026-53004 affecting package kernel for versions less than 6.6.143.1-1. An upgraded version of the package is available that resolves this issue...

7.8CVSS6.1AI score0.00129EPSS
Exploits0
CBLMariner
CBLMariner
added 2026/07/08 4:2 p.m.5 views

CVE-2026-53356 affecting package kernel for versions less than 6.6.143.1-1

CVE-2026-53356 affecting package kernel for versions less than 6.6.143.1-1. An upgraded version of the package is available that resolves this issue...

7.8CVSS6.1AI score0.00164EPSS
Exploits0
CBLMariner
CBLMariner
added 2026/07/08 4:2 p.m.5 views

CVE-2026-53329 affecting package kernel for versions less than 6.6.143.1-1

CVE-2026-53329 affecting package kernel for versions less than 6.6.143.1-1. An upgraded version of the package is available that resolves this issue...

7CVSS6.1AI score0.00195EPSS
Exploits0
CBLMariner
CBLMariner
added 2026/07/08 4:2 p.m.6 views

CVE-2026-53355 affecting package kernel for versions less than 6.6.143.1-1

CVE-2026-53355 affecting package kernel for versions less than 6.6.143.1-1. An upgraded version of the package is available that resolves this issue...

9.8CVSS6.1AI score0.00164EPSS
Exploits0
CVE
CVE
added 2026/07/08 2:16 p.m.11 views

CVE-2026-10698

CVE-2026-10698 is an Improper Neutralization of Special Elements in Data Query Logic vulnerability in Progress MOVEit Transfer, specifically affecting the Custom Reports module . Affected versions are MOVEit Transfer 2025.0.0–before 2025.0.8, 2025.1.0–before 2025.1.4, and 2026.0.0–before 2026.0.1...

7.2CVSS5.9AI score0.00442EPSS
Exploits0References1Affected Software1
Rows per page
Query Builder