Lucene search
K

1418 matches found

AlpineLinux
AlpineLinux
added 2026/04/18 1:24 a.m.6 views

CVE-2026-40489

editorconfig-core-c is an EditorConfig core library for use by plugins supporting EditorConfig parsing. Versions up to and including 0.12.10 have a stack-based buffer overflow in ecglob that allows an attacker to crash any application using libeditorconfig by providing a specially crafted directo...

8.6CVSS7.8AI score0.00965EPSS
Exploits1
OSV
OSV
added 2026/04/17 9:56 p.m.3 views

GHSA-C9H3-5P7R-MRJH OpenClaw: Discord event cover images bypassed sandbox media normalization

Summary Discord event cover images bypassed sandbox media normalization. Affected Packages / Versions - Package: openclaw - Ecosystem: npm - Affected versions: = 2026.4.7 = 2026.4.10 Impact Discord event cover image parameters could bypass the sandbox media normalization path used for outbound...

7.7CVSS5.7AI score0.00259EPSS
Exploits0References6
EUVD
EUVD
added 2026/04/17 9:5 p.m.8 views

EUVD-2026-23557

FastGPT is an AI Agent building platform. In versions prior to 4.14.9.5, the password-based login endpoint uses TypeScript type assertion without runtime validation, allowing an unauthenticated attacker to pass a MongoDB query operator object e.g., "$ne": "" as the password field. This NoSQL...

9.8CVSS5.7AI score0.00627EPSS
Exploits1References3
EUVD
EUVD
added 2026/04/16 9:8 p.m.6 views

EUVD-2026-23110

sanitize-html allowedTags Bypass via Entity-Decoded Text in nonTextTags Elements...

6.1CVSS5.8AI score0.00235EPSS
Exploits1References3
Vulnrichment
Vulnrichment
added 2026/04/15 7:38 p.m.6 views

CVE-2026-39857 Information Disclosure via `choices`/`counts` Query Parameters Bypassing publicApiProjection Field Restrictions

ApostropheCMS is an open-source Node.js content management system. Versions 4.28.0 and prior contain an authorization bypass vulnerability in the choices and counts query parameters of the REST API, where these query builders execute MongoDB distinct operations that bypass the publicApiProjection...

5.3CVSS5.8AI score0.00435EPSS
Exploits1References2
NVD
NVD
added 2026/04/15 4:17 a.m.12 views

CVE-2026-40091

SpiceDB is an open source database system for creating and managing security-critical application permissions. In versions 1.49.0 through 1.51.0, when SpiceDB starts with log level info, the startup "configuration" log will include the full datastore DSN, including the plaintext password, inside...

6CVSS0.00166EPSS
Exploits0References2
NVD
NVD
added 2026/04/14 9:16 p.m.7 views

CVE-2026-34160

Chamilo LMS is an open-source learning management system. In versions prior to 2.0.0-RC.3, the PENS Package Exchange Notification Services plugin endpoint at public/plugin/Pens/pens.php is accessible without authentication and accepts a user-controlled package-url parameter that the server fetche...

8.6CVSS0.00344EPSS
Exploits0References3
NVD
NVD
added 2026/04/14 9:16 a.m.18 views

CVE-2026-31924

Cleartext Transmission of Sensitive Information vulnerability in Apache APISIX. tencent-cloud-cls log export uses plaintext HTTP This issue affects Apache APISIX: from 2.99.0 through 3.15.0. Users are recommended to upgrade to version 3.16.0, which fixes the issue...

5.3CVSS0.00238EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2026/04/14 1:22 a.m.5 views

CVE-2026-40242

Arcane is an interface for managing Docker containers, images, networks, and volumes. Prior to 1.17.3, the /api/templates/fetch endpoint accepts a caller-supplied url parameter and performs a server-side HTTP GET request to that URL without authentication and without URL scheme or host validation...

7.2CVSS5.8AI score0.00621EPSS
Exploits1References1
Tenable Nessus
Tenable Nessus
added 2026/04/14 12:0 a.m.14 views

Linux Distros Unpatched Vulnerability : CVE-2026-40311

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - ImageMagick is free and open-source software used for editing and manipulating digital images. Versions below 7.1.2-19 and 6.9.13-44 contain a heap use-after-fr...

5.5CVSS5.8AI score0.00184EPSS
Exploits0References2
CVE
CVE
added 2026/04/13 9:43 p.m.25 views

CVE-2026-40312

ImageMagick (affected component: MSL decoder) is vulnerable to an off-by-one error that can cause a crash when processing a malformed MSL file in all versions below 7.1.2-19. The issue has been fixed in 7.1.2-19. Impact is a crash (availability). Remediation: upgrade to ImageMagick 7.1.2-19 or la...

6.2CVSS5.8AI score0.00177EPSS
Exploits0References4Affected Software1
Positive Technologies
Positive Technologies
added 2026/04/13 12:0 a.m.5 views

PT-2026-32427

Helm is a package manager for Charts for Kubernetes. From 4.0.0 to 4.1.3, Helm will install plugins missing provenance .prov file when signature verification is required. This vulnerability is fixed in 4.1.4...

8.4CVSS5.8AI score0.00178EPSS
Exploits0References6
Github Security Blog
Github Security Blog
added 2026/04/10 8:18 p.m.17 views

LangSmith Client SDKs has Prototype Pollution in langsmith-sdk via Incomplete `__proto__` Guard in Internal lodash `set()`

GHSA-fw9q-39r9-c252: Prototype Pollution via Incomplete Lodash set Guard in langsmith-sdk Severity: Medium CVSS 5.6 Status: Fixed in 0.5.18 --- Summary The LangSmith JavaScript/TypeScript SDK langsmith contains an incomplete prototype pollution fix in its internally vendored lodash set utility. T...

9.8CVSS5.8AI score0.00313EPSS
Exploits1References5Affected Software1
Cvelist
Cvelist
added 2026/04/10 7:30 p.m.20 views

CVE-2026-40178 ajenti.plugin.core has a race conditions in 2FA

ajenti.plugin.core defines all necessary core elements to allow Ajenti to run properly. Prior to 0.112, if the 2FA was activated, it was possible during a short moment after the authentication of an user to bypass its authentication. This vulnerability is fixed in 0.112...

9.1CVSS0.00232EPSS
Exploits0References1
Cvelist
Cvelist
added 2026/04/10 4:34 p.m.34 views

CVE-2026-40097 Step CA affected by an index out of bounds panic in TPM attestation EKU validation

Step CA is an online certificate authority for secure, automated certificate management for DevOps. From 0.24.0 to before 0.30.0-rc3, an attacker can trigger an index out-of-bounds panic in Step CA by sending a crafted attestation key AK certificate with an empty Extended Key Usage EKU extension...

3.7CVSS0.00181EPSS
Exploits0References4
EUVD
EUVD
added 2026/04/09 4:41 p.m.4 views

EUVD-2026-20899

fast-jwt has a ReDoS when using RegExp in allowed leading to CPU exhaustion during token verification...

4.2CVSS5.9AI score0.00262EPSS
Exploits1References4
Positive Technologies
Positive Technologies
added 2026/04/09 12:0 a.m.4 views

PT-2026-31689

Wasmtime is a runtime for WebAssembly. In 43.0.0, cloning a wasmtime::Linker is unsound and can result in use-after-free bugs. This bug is not controllable by guest Wasm programs. It can only be triggered by a specific sequence of embedder API calls made by the host. Specifically, the following...

1CVSS5.9AI score0.00117EPSS
Exploits0References2
CVE
CVE
added 2026/04/08 7:26 p.m.12 views

CVE-2026-35476

Summary : InvenTree (Open Source Inventory Management System) contains a privilege escalation flaw present before versions 1.2.7 and 1.3.0. A non-staff authenticated user can raise their account to staff level by sending a POST request to their user account endpoint because the API endpoint’s wri...

7.2CVSS6AI score0.00145EPSS
Exploits0References2Affected Software1
CVE
CVE
added 2026/04/08 5:7 p.m.17 views

CVE-2026-33756

CVE-2026-33756 affects Saleor (e-commerce platform). The vulnerability lies in unbounded GraphQL query batching: from 2.0.0 up to just before 3.23.0a3, 3.22.47, 3.21.54, and 3.20.118, the service allowed multiple GraphQL operations in a single HTTP request without an upper limit, bypassing per-qu...

7.5CVSS5.9AI score0.00435EPSS
Exploits0References6Affected Software1
Debian CVE
Debian CVE
added 2026/04/07 7:35 p.m.3 views

CVE-2026-39373

JWCrypto implements JWK, JWS, and JWE specifications using python-cryptography. Prior to 1.5.7, an unauthenticated attacker can exhaust server memory by sending crafted JWE tokens with ZIP compression. The existing patch for CVE-2024-28102 limits input token size to 250KB but does not validate th...

5.3CVSS5.4AI score0.00294EPSS
Exploits1
Rows per page
Query Builder