ROOT-APP-PYPI-CVE-2026-27962 CVE-2026-27962 in rootio-Authlib - Patched by Root

Root has patched CVE-2026-27962 in the rootio-Authlib package for Root:PyPI. Multiple fixed versions available...

Debian dla-4579 : python-authlib-doc - security update

The remote Debian 11 host has packages installed that are affected by multiple vulnerabilities as referenced in the dla-4579 advisory. ------------------------------------------------------------------------- Debian LTS Advisory DLA-4579-1 [email protected]...

openSUSE Security Advisory (SUSE-SU-2026:0975-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2026 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

SUSE: Security Advisory (SUSE-SU-2026:0975-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2026 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

SUSE SLED15 / SLES15 / openSUSE 15 Security Update : python-Authlib (SUSE-SU-2026:0975-1)

The remote SUSE Linux SLED15 / SLEDSAP15 / SLES15 / SLESSAP15 / openSUSE 15 host has a package installed that is affected by multiple vulnerabilities as referenced in the SUSE-SU-2026:0975-1 advisory. - CVE-2026-27962: JWS deserializecompact allows for signature bypass by accepting user-controlle...

Security update for python-Authlib

This update for python-Authlib fixes the following issues: CVE-2026-27962: JWS deserializecompact allows for signature bypass by accepting user-controlled embedded JWK as verification key bsc1259738. CVE-2026-28490: cryptographic padding oracle in JWE RSA15 key management algorithm bsc1259736...

aad-fastapi-dl37 (>=1.0.0 <=1.0.2), agentiq (>=1.2.0a20250730 <=1.2.0rc4) +220 more potentially affected by CVE-2026-27962 via authlib (>=1.0.0 <=1.6.8)

authlib PYPI version =1.0.0, =1.0.0, =1.2.0a20250730, =1.1.0, =1.2.0a20250730, =0.4.0, =0.1.0, =0.5.0, =0.1.0a1, =1.2.0, =1.2.0a20250730, =1.2.0a20250730, =1.2.0a20250730, =1.2.0, =1.2.0a20250730, =1.2.0a20250730, =1.2.0rc4 and more Source cves: CVE-2026-27962 Source advisory:...

CVE-2026-27962

creationtimestamp| type| source ---|---|--- 2026-03-15 17:47:59+00:00| published-proof-of-concept| https://github.com/authlib/authlib/security/advisories/GHSA-wvwj-cvrp-7pv5 2026-03-22 07:00:13+00:00| seen| https://bsky.app/profile/cyberhub.blog/post/3mhmxw5omiy2w...

CVE-2023-27962

A logic issue was addressed with improved checks. This issue is fixed in macOS Ventura 13.3, macOS Monterey 12.6.4, macOS Big Sur 11.7.5. An app may be able to modify protected parts of the file system...

CVE-2024-27962

creationtimestamp| type| source ---|---|--- 2025-02-14 17:39:47+00:00| seen| Telegram/rlbnNF-jij67DefhaWE2LbN5fl2EUUZ-rkEH-Fpnh2-vyvll 2025-02-14 21:08:31+00:00| seen| Telegram/Zy9FksuivDt43U9DSOvQcHwg19HmjThfQmk1O5GtdjrBsaM...

CVE-2024-27962 WordPress wp-mpdf plugin <= 3.7.1 - Reflected Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Florian 'fkrauthan' Krauthan allows Reflected XSS.This issue affects wp-mpdf: from n/a through 3.7.1...

CVE-2024-27962 WordPress wp-mpdf plugin <= 3.7.1 - Reflected Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Florian 'fkrauthan' Krauthan allows Reflected XSS.This issue affects wp-mpdf: from n/a through 3.7.1...

CVE-2024-27962

CVE-2024-27962 is a Reflected XSS in the WordPress plugin wp-mpdf (author Florian ‘fkrauthan’ Krauthan). The issue arises from improper neutralization of input during web page generation, enabling reflected cross-site scripting. Affected range: wp-mpdf from n/a up to and including 3.7.1. The Conn...

CVE-2023-27962

A logic issue was addressed with improved checks. This issue is fixed in macOS Ventura 13.3, macOS Monterey 12.6.4, macOS Big Sur 11.7.5. An app may be able to modify protected parts of the file system...

CVE-2023-27962

A logic issue was addressed with improved checks. This issue is fixed in macOS Ventura 13.3, macOS Monterey 12.6.4, macOS Big Sur 11.7.5. An app may be able to modify protected parts of the file system...

CVE-2023-27962

CVE-2023-27962 refers to a logic issue in macOS PackageKit where an app may be able to modify protected parts of the file system. The referenced Apple advisories indicate the fix is included in macOS Big Sur 11.7.5, macOS Monterey 12.6.4, and macOS Ventura 13.3. Affected products are macOS versio...

macOS 12.x < 12.6.4 Multiple Vulnerabilities (HT213677)

The remote host is running a version of macOS / Mac OS X that is 12.x prior to 12.6.4. It is, therefore, affected by multiple vulnerabilities: - Heap-based Buffer Overflow in GitHub repository vim/vim prior to 9.0.1225. CVE-2023-0433 - Divide By Zero in GitHub repository vim/vim prior to 9.0.1247...

CVE-2022-27962

creationtimestamp| type| source ---|---|--- 2022-05-03 20:33:51+00:00| seen| https://t.me/cibsecurity/41822...

CVE-2022-27962

Bluecms 1.6 has a SQL injection vulnerability at cooike...

openSUSE 15 Security Update : SUSE Manager Client Tools (openSUSE-SU-2021:1162-1)

The remote SUSE Linux SUSE15 host has packages installed that are affected by multiple vulnerabilities as referenced in the openSUSE-SU-2021:1162-1 advisory. - Grafana Enterprise 7.2.x and 7.3.x before 7.3.10 and 7.4.x before 7.4.5 allows a dashboard editor to bypass a permission check concerning...