Cacti Graph Template authenticated RCE versions prior to 1.2.29

This module exploits an authenticated remote code execution vulnerability in Cacti versions prior to 1.2.29. Authenticated users can upload a graph template through the /graphtemplates.php endpoint. The rightaxislabel parameter is vulnerable to code injection, allowing attackers to execute...

CVE-2025-71160

In the Linux kernel, the following vulnerability has been resolved: netfilter: nftables: avoid chain re-validation if possible Hamza Mahfooz reports cpu soft lock-ups in nftchainvalidate: watchdog: BUG: soft lockup - CPU1 stuck for 27s! iptables-nft-re:37547 .. RIP: 0010:nftchainvalidate+0xcb/0x1...

UBUNTU-CVE-2025-71160

In the Linux kernel, the following vulnerability has been resolved: netfilter: nftables: avoid chain re-validation if possible Hamza Mahfooz reports cpu soft lock-ups in nftchainvalidate: watchdog: BUG: soft lockup - CPU1 stuck for 27s! iptables-nft-re:37547 .. RIP: 0010:nftchainvalidate+0xcb/0x1...

TrojanGYM: A Detector-In-The-Loop LLM for Adaptive RTL Hardware Trojan Insertion

Hardware Trojans HTs remain a critical threat because learning-based detectors often overfit to narrow trigger/payload patterns and small, stylized benchmarks. We introduce TrojanGYM, an agentic, LLM-driven framework that automatically curates HT insertions to expose detector blind spots while...

Unity Linux 20.1050e Security Update: kernel (UTSA-2026-004920)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-004920 advisory. In the Linux kernel, the following vulnerability has been resolved: video: fbdev: amba-clcd: Fix refcount leak bugs In clcdfbofinitdisplay, we should call ofnodeput...

📄 Cacti Graph Template Authenticated Remote Code Execution

This Metasploit module exploits an authenticated remote code execution vulnerability in Cacti versions prior to 1.2.29. Authenticated users can upload a graph template through the /graphtemplates.php endpoint. The rightaxislabel parameter is vulnerable to code injection, allowing attackers to...

Azure Linux 3.0 Security Update: kernel (CVE-2024-39481)

The version of kernel installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-39481 advisory. - In the Linux kernel, the following vulnerability has been resolved: media: mc: Fix graph walk in...

Azure Linux 3.0 Security Update: kernel (CVE-2025-37940)

The version of kernel installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2025-37940 advisory. - In the Linux kernel, the following vulnerability has been resolved: ftrace: Add condresched to...

CVE-2021-47748

Hasura GraphQL 1.3.3 contains a remote code execution vulnerability that allows attackers to execute arbitrary shell commands through SQL query manipulation. Attackers can inject commands into the runsql endpoint by crafting malicious GraphQL queries that execute system commands through...

SAGA: Detecting Security Vulnerabilities Using Static Aspect Analysis

Python is one of the most popular programming languages; as such, projects written in Python involve an increasing number of diverse security vulnerabilities. However, existing state-of-the-art analysis tools for Python only support a few vulnerability types. Hence, there is a need to detect a...

CVE-2026-1172

A vulnerability has been found in birkir prime up to 0.4.0.beta.0. The affected element is an unknown function of the file /graphql of the component GraphQL Directive Handler. The manipulation leads to denial of service. Remote exploitation of the attack is possible. The exploit has been disclose...

Prime security vulnerabilities

Prime is a content management system developed by Birkir Gudjonsson. Versions of Prime prior to 0.4.0.beta.0 contained security vulnerabilities, which were caused by incorrect operations with files and GraphQL queries, potentially leading to resource consumption...

Prime security vulnerabilities

Prime is a content management system developed by Birkir Gudjonsson. Versions of Prime prior to 0.4.0.beta.0 contained security vulnerabilities, which were caused by improper handling of parameters in files and GraphQL requests. These vulnerabilities could lead to information leaks...

GHSA-HRVF-G648-RF3M PlantUML is vulnerable to Stored XSS due to insufficient sanitization of interactive attributes in GraphViz diagrams

Versions of the package net.sourceforge.plantuml:plantuml before 1.2026.0 are vulnerable to Stored XSS due to insufficient sanitization of interactive attributes in GraphViz diagrams. As a result, a crafted PlantUML diagram can inject malicious JavaScript into generated SVG output, leading to...

Unity Linux 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-002550)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-002550 advisory. The archtimerregreadstable macro in arch/arm64/include/asm/archtimer.h in the Linux kernel before 4.13 allows local users to cause a denial of service infinite...

Unity Linux 20.1060a / 20.1070a Security Update: kernel (UTSA-2026-002107)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-002107 advisory. The ftrace implementation in the Linux kernel before 3.8.8 allows local users to cause a denial of service NULL pointer dereference and system crash or possibly have...

@jamietanna/renovate-graph (=0.30.0), @secustor/backstage-plugin-renovate-backend-module-runtime-direct (>=0.5.3 <=1.0.1) potentially affected by unknown CVE via renovate (>=39.60.0 <=40.21.2)

renovate NPM version =39.60.0, =0.5.3, =1.0.1 Source cves: unknown CVE Source advisory: OSV:GHSA-XJR7-3C3G-M763...

@cenk1cenk2/renovate-config (>=2.3.132 <=2.3.148), @jamietanna/patch-testing (>=0.1.0 <=0.2.28) +7 more potentially affected by unknown CVE via renovate (>=36.109.4 <=40.21.2)

renovate NPM version =36.109.4, =2.3.132, =0.1.0, =0.14.0, =0.5.0, =0.1.0, =0.1.0, =0.0.1, =0.19.0 - @zotero-chinese/renovate-config =1.0.3 Source cves: unknown CVE Source advisory: OSV:GHSA-FR4J-65PV-GJJJ...

@jamietanna/renovate-graph (>=0.24.0 <=0.30.0), @secustor/backstage-plugin-renovate-backend-module-runtime-direct (>=0.5.1 <=1.0.1) potentially affected by unknown CVE via renovate (>=39.22.0 <=40.21.2)

renovate NPM version =39.22.0, =0.24.0, =0.5.1, =1.0.1 Source cves: unknown CVE Source advisory: OSV:GHSA-XV56-3WQ5-9997...

@jamietanna/renovate-graph (>=0.24.0 <=0.30.0), @secustor/backstage-plugin-renovate-backend-module-runtime-direct (>=0.5.1 <=1.0.1) potentially affected by unknown CVE via renovate (>=39.22.0 <=40.21.2)

renovate NPM version =39.22.0, =0.24.0, =0.5.1, =1.0.1 Source cves: unknown CVE Source advisory: SNYK:JS-RENOVATE-14927387...