Lucene search
+L

37249 matches found

OSV
OSV
added 2026/06/27 12:0 a.m.3 views

OPENSUSE-SU-2026:11137-1 python311-jupyter-ydoc-3.5.0-1.1 on GA media

These are all security issues fixed in the python311-jupyter-ydoc-3.5.0-1.1 package on the GA media of openSUSE Tumbleweed...

7.5CVSS5.8AI score0.00782EPSS
Exploits1References1
OSV
OSV
added 2026/06/27 12:0 a.m.4 views

OPENSUSE-SU-2026:11134-1 libslirp-devel-4.9.3+4-1.1 on GA media

These are all security issues fixed in the libslirp-devel-4.9.3+4-1.1 package on the GA media of openSUSE Tumbleweed...

6.5CVSS5.8AI score0.00106EPSS
Exploits0References1
OSV
OSV
added 2026/06/27 12:0 a.m.3 views

OPENSUSE-SU-2026:11138-1 jupyter-jupyterlab-templates-0.5.3-2.1 on GA media

These are all security issues fixed in the jupyter-jupyterlab-templates-0.5.3-2.1 package on the GA media of openSUSE Tumbleweed...

7.5CVSS5.8AI score0.00782EPSS
Exploits1References1
OSV
OSV
added 2026/06/27 12:0 a.m.4 views

OPENSUSE-SU-2026:11132-1 jackson-databind-2.18.8-2.1 on GA media

These are all security issues fixed in the jackson-databind-2.18.8-2.1 package on the GA media of openSUSE Tumbleweed...

8.1CVSS5.8AI score0.00617EPSS
Exploits1References1
OSV
OSV
added 2026/06/27 12:0 a.m.3 views

OPENSUSE-SU-2026:11135-1 logback-1.5.36-1.1 on GA media

These are all security issues fixed in the logback-1.5.36-1.1 package on the GA media of openSUSE Tumbleweed...

7CVSS5.8AI score0.00122EPSS
Exploits0References1
OSV
OSV
added 2026/06/26 7:58 a.m.3 views

OPENSUSE-SU-2026:21066-1 Security update for python-python-multipart

This update for python-python-multipart fixes the following issues - CVE-2026-53537: multipart/form-data with extended parameters can lead to file or parameter smuggling bsc1268506. - CVE-2026-53538: urlencoded requests containing semicolons can lead to form field smuggling bsc1268496. -...

7.5CVSS5.8AI score0.00263EPSS
Exploits0References8
OSV
OSV
added 2026/06/26 7:58 a.m.3 views

SUSE-SU-2026:22372-1 Security update for python-python-multipart

This update for python-python-multipart fixes the following issues - CVE-2026-53537: multipart/form-data with extended parameters can lead to file or parameter smuggling bsc1268506. - CVE-2026-53538: urlencoded requests containing semicolons can lead to form field smuggling bsc1268496. -...

7.5CVSS5.8AI score0.00263EPSS
Exploits0References9
RedhatCVE
RedhatCVE
added 2026/06/26 12:8 a.m.5 views

CVE-2026-10804

A flaw was found in Streamlit, within its Palette Handler component. This vulnerability stems from the use of a weak hashing algorithm. A local attacker could exploit this flaw, though it requires a high level of technical complexity. Successful exploitation may lead to a low impact on the...

4.7CVSS5.8AI score0.00083EPSS
Exploits0References10
NVD
NVD
added 2026/06/25 4:16 p.m.11 views

CVE-2026-9717

CWE-78 Neutralization of Special Elements used in an OS Command 'OS Command Injection' vulnerability exists that could allow unauthorized execution of commands with elevated privileges, impacting system integrity, confidentiality, and availability when a privileged authenticated user interacts wi...

8.6CVSS0.01191EPSS
Exploits0References1
EUVD
EUVD
added 2026/06/25 3:5 p.m.6 views

EUVD-2026-39434

CWE-78 Neutralization of Special Elements used in an OS Command 'OS Command Injection' vulnerability exists that could allow unauthorized execution of commands with elevated privileges, impacting system integrity, confidentiality, and availability when a privileged authenticated user interacts wi...

8.6CVSS6AI score0.01191EPSS
Exploits0References1
EUVD
EUVD
added 2026/06/25 9:31 a.m.9 views

EUVD-2026-39189

The Tourfic – AI Powered Travel Booking, Hotel Booking & Car Rental WordPress Plugin plugin for WordPress is vulnerable to generic SQL Injection via the 'postid' parameter in all versions up to, and including, 2.22.7 due to insufficient escaping on the user supplied parameter and lack of sufficie...

7.5CVSS6AI score0.00304EPSS
Exploits0References6
EUVD
EUVD
added 2026/06/25 4:48 a.m.7 views

EUVD-2026-39180

shell-quote prior to 1.8.5 finalizes parsed tokens in parse using Array.prototype.concat as a reduce accumulator, which reallocates and copies the entire growing array on every iteration. As a result parse runs in On^2 time relative to the number of input tokens. An attacker who can supply an...

8.7CVSS6.3AI score0.0036EPSS
Exploits0References2
OSV
OSV
added 2026/06/25 12:0 a.m.2 views

OPENSUSE-SU-2026:11117-1 giflib-devel-32bit-5.2.2-4.1 on GA media

These are all security issues fixed in the giflib-devel-32bit-5.2.2-4.1 package on the GA media of openSUSE Tumbleweed...

8.2CVSS5.8AI score0.00618EPSS
Exploits1References1
OSV
OSV
added 2026/06/25 12:0 a.m.2 views

OPENSUSE-SU-2026:11125-1 tar-1.35-8.1 on GA media

These are all security issues fixed in the tar-1.35-8.1 package on the GA media of openSUSE Tumbleweed...

5.5CVSS5.8AI score0.0043EPSS
Exploits1References1
OSV
OSV
added 2026/06/25 12:0 a.m.3 views

OPENSUSE-SU-2026:11118-1 jackson-databind-2.18.8-1.1 on GA media

These are all security issues fixed in the jackson-databind-2.18.8-1.1 package on the GA media of openSUSE Tumbleweed...

8.1CVSS5.8AI score0.00695EPSS
Exploits0References3
OSV
OSV
added 2026/06/25 12:0 a.m.3 views

OPENSUSE-SU-2026:11121-1 corepack24-24.17.0-1.1 on GA media

These are all security issues fixed in the corepack24-24.17.0-1.1 package on the GA media of openSUSE Tumbleweed...

9.8CVSS5.8AI score0.02806EPSS
Exploits3References21
OSV
OSV
added 2026/06/25 12:0 a.m.3 views

OPENSUSE-SU-2026:11116-1 dnsmasq-2.93-1.1 on GA media

These are all security issues fixed in the dnsmasq-2.93-1.1 package on the GA media of openSUSE Tumbleweed...

5.9CVSS5.8AI score0.00403EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/06/24 8:38 p.m.8 views

CVE-2026-12770

A flaw was found in BerriAI litellm. A remote attacker could exploit an improper authorization vulnerability within the Admin Key Handler component. This could allow the attacker to perform unauthorized actions, leading to limited impacts on data integrity and service availability...

8.8CVSS5.9AI score0.00337EPSS
Exploits1References8
RedhatCVE
RedhatCVE
added 2026/06/24 3:36 p.m.5 views

CVE-2025-61025

A flaw was found in virtuoso-opensource. Attackers can exploit this vulnerability by sending specially crafted SQL statements, which can lead to a Denial of Service DoS. This issue impacts the availability of the affected system...

7.5CVSS5.8AI score0.0035EPSS
Exploits0References4
Vulnrichment
Vulnrichment
added 2026/06/23 12:13 p.m.11 views

CVE-2026-56762 Hono - Missing Cookie Name Validation in setCookie()

Hono before 4.12.12 does not validate cookie names on the write path in the setCookie, serialize, and serializeSigned functions, allowing invalid characters such as control characters e.g. \r or \n when an application passes a user-controlled cookie name. This can produce malformed Set-Cookie...

6.9CVSS5.9AI score0.00247EPSS
Exploits0References2
Rows per page
Query Builder