122 matches found
GHSA-23C5-XMQV-RM74 vulnerabilities
Vulnerabilities for packages: opensearch-dashboards, arangodb, kubeflow-centraldashboard, renovate, kibana, eslint, actions-runner, langfuse, prism, node-gyp, emscripten, npm, opensearch-dashboards-fips, vitess, argo-workflows, tileserver-gl, librechat, opentelemetry-auto-instrumentations-node,...
GHSA-7R86-CG39-JMMJ vulnerabilities
Vulnerabilities for packages: opensearch-dashboards, arangodb, renovate, kibana, eslint, actions-runner, langfuse, prism, node-gyp, emscripten, npm, opensearch-dashboards-fips, vitess, argo-workflows, tileserver-gl, librechat, opentelemetry-auto-instrumentations-node, tileserver-gl-fips, graalvm,...
GHSA-G9MF-H72J-4RW9 vulnerabilities
Vulnerabilities for packages: renovate, jitsucom-jitsu, langfuse, code-server...
CVE-2026-22036 vulnerabilities
Vulnerabilities for packages: renovate, jitsucom-jitsu, langfuse, code-server...
CVE-2026-22036 vulnerabilities
Vulnerabilities for packages: code-server, renovate, kibana, librechat, langfuse, jitsucom-jitsu, langfuse-fips...
GHSA-G9MF-H72J-4RW9 vulnerabilities
Vulnerabilities for packages: code-server, renovate, kibana, librechat, langfuse, jitsucom-jitsu, langfuse-fips...
CVE-2023-49788
Collabora Online is a collaborative online office suite based on LibreOffice technology. Unlike a standalone dedicated Collabora Online server, the Built-in CODE Server richdocumentscode is run without chroot sandboxing. Vulnerable versions of the richdocumentscode app can be susceptible to attac...
CVE-2025-66208
Collabora Online - Built-in CODE Server richdocumentscode provides a built-in server with all of the document editing features of Collabora Online. In versions prior to 25.04.702, Collabora Online has a Configuration-Dependent RCE OS Command Injection in richdocumentscode proxy. Users of Nextclou...
CVE-2025-66208 Configuration-Dependent RCE (OS Command Injection) in richdocumentscode proxy
Collabora Online - Built-in CODE Server richdocumentscode provides a built-in server with all of the document editing features of Collabora Online. In versions prior to 25.04.702, Collabora Online has a Configuration-Dependent RCE OS Command Injection in richdocumentscode proxy. Users of Nextclou...
CVE-2025-66208 Configuration-Dependent RCE (OS Command Injection) in richdocumentscode proxy
Collabora Online - Built-in CODE Server richdocumentscode provides a built-in server with all of the document editing features of Collabora Online. In versions prior to 25.04.702, Collabora Online has a Configuration-Dependent RCE OS Command Injection in richdocumentscode proxy. Users of Nextclou...
CVE-2025-66208
CVE-2025-66208 affects Collabora Online – Built-in CODE Server (richdocumentscode proxy). The vulnerability is a configuration-dependent OS command injection (RCE) in the richdocumentscode proxy present in versions prior to 25.04.702, exploitable by attackers via proxy.php and an intermediate rev...
CVE-2025-66208 Configuration-Dependent RCE (OS Command Injection) in richdocumentscode proxy
Collabora Online - Built-in CODE Server richdocumentscode provides a built-in server with all of the document editing features of Collabora Online. In versions prior to 25.04.702, Collabora Online has a Configuration-Dependent RCE OS Command Injection in richdocumentscode proxy. Users of Nextclou...
CVE-2025-64718 vulnerabilities
Vulnerabilities for packages: eslint, pulumi, argo-workflows, prism, opensearch-dashboards, tileserver-gl, lerna, renovate, jitsucom-jitsu, vitess, thingsboard, kubeflow-pipelines, saf, langfuse, code-server...
GHSA-MH29-5H37-FV8M vulnerabilities
Vulnerabilities for packages: eslint, pulumi, argo-workflows, prism, opensearch-dashboards, tileserver-gl, lerna, renovate, jitsucom-jitsu, vitess, thingsboard, kubeflow-pipelines, saf, langfuse, code-server...
GHSA-MH29-5H37-FV8M vulnerabilities
Vulnerabilities for packages: opensearch-dashboards, arangodb, renovate, kibana, eslint, langfuse, prism, redisinsight, opensearch-dashboards-fips, vitess, jitsucom-jitsu, argo-workflows, tileserver-gl, librechat, tileserver-gl-fips, saf, kubeflow-pipelines, code-server, pulumi, lerna, thingsboar...
CVE-2025-64718 vulnerabilities
Vulnerabilities for packages: opensearch-dashboards, arangodb, renovate, kibana, eslint, langfuse, prism, redisinsight, opensearch-dashboards-fips, vitess, jitsucom-jitsu, argo-workflows, tileserver-gl, librechat, tileserver-gl-fips, saf, kubeflow-pipelines, code-server, pulumi, lerna, thingsboar...
EUVD-2021-1971
Malware in sbrugna...
EUVD-2023-1003
Malicious code in bioql PyPI...
EUVD-2023-52370
Malicious code in bioql PyPI...
EUVD-2025-14189
Malicious code in bioql PyPI...