Lucene search
+L

5736 matches found

Github Security Blog
Github Security Blog
added yesterday4 views

Prompty: Arbitrary code execution via JavaScript frontmatter in TypeScript loader

Summary The TypeScript Prompty loader used gray-matter without overriding executable frontmatter engines. gray-matter supports JavaScript frontmatter blocks such as ---js and evaluates them while parsing. An attacker-controlled .prompty file could therefore execute arbitrary JavaScript during...

8.7CVSS5.7AI score0.0093EPSS
Exploits0References4Affected Software1
Nuclei
Nuclei
added yesterday16 views

WordPress Contact Form by Supsystic - Server-Side Template Injection

Contact Form by Supsystic WordPress plugin = 1.7.36 contains a server-side template injection caused by unsandboxed TwigLoaderString and cfsPreFill functionality, letting unauthenticated attackers execute arbitrary code remotely via GET parameters. id: CVE-2026-4257 info: name: WordPress Contact...

9.8CVSS5.9AI score0.41475EPSS
Exploits9References3
NVD
NVD
added 2 days ago7 views

CVE-2026-53597

Prompty is a markdown file format .prompty for LLM prompts. From 2.0.0-alpha.1 until 2.0.0-beta.3, the @prompty/core TypeScript loader in runtime/typescript/packages/core/src/core/loader.ts used gray-matter without overriding executable js and javascript frontmatter engines, allowing an...

8.7CVSS0.0093EPSS
Exploits0References2
OSV
OSV
added 2 days ago3 views

CVE-2026-53597 Prompty: Arbitrary code execution via JavaScript frontmatter in TypeScript loader

Prompty is a markdown file format .prompty for LLM prompts. From 2.0.0-alpha.1 until 2.0.0-beta.3, the @prompty/core TypeScript loader in runtime/typescript/packages/core/src/core/loader.ts used gray-matter without overriding executable js and javascript frontmatter engines, allowing an...

8.7CVSS6.3AI score0.0093EPSS
Exploits0References4
CVE
CVE
added 2 days ago8 views

CVE-2026-53597

CVE-2026-53597 affects the Prompty markdown format loader: for versions 2.0.0-alpha.1 through 2.0.0-beta.3, the @prompty/core TypeScript loader in runtime/typescript/packages/core/src/core/loader.ts did not override executable engines for js/frontmatter, allowing attacker-controlled .prompty file...

8.7CVSS6.3AI score0.0093EPSS
Exploits0References2
Cvelist
Cvelist
added 2 days ago33 views

CVE-2026-53597 Prompty: Arbitrary code execution via JavaScript frontmatter in TypeScript loader

Prompty is a markdown file format .prompty for LLM prompts. From 2.0.0-alpha.1 until 2.0.0-beta.3, the @prompty/core TypeScript loader in runtime/typescript/packages/core/src/core/loader.ts used gray-matter without overriding executable js and javascript frontmatter engines, allowing an...

8.7CVSS0.0093EPSS
Exploits0References2
ATTACKERKB
ATTACKERKB
added 2 days ago5 views

CVE-2026-53597

Prompty is a markdown file format .prompty for LLM prompts. From 2.0.0-alpha.1 until 2.0.0-beta.3, the @prompty/core TypeScript loader in runtime/typescript/packages/core/src/core/loader.ts used gray-matter without overriding executable js and javascript frontmatter engines, allowing an...

8.7CVSS6.3AI score0.0093EPSS
Exploits0References3Affected Software1
CVE
CVE
added 2 days ago7 views

CVE-2026-59867

CVE-2026-59867 affects Kiota, an OpenAPI-based HTTP client code generator. Before 1.32.5, Kiota’s OpenAPI $ref resolution could fetch remote http(s) URLs or read local absolute/out-of-tree file paths, enabling build‑time SSRF, remote file inclusion, and local file inclusion when generating client...

7.1CVSS6.2AI score0.01921EPSS
Exploits0References4
Securelist
Securelist
added 2 days ago12 views

HelloNet campaign — new malicious modules launched through the ViPNet update system

UPD 16.07.2026: Added rules to protect companies using our SIEM system Kaspersky SIEM, and listed events for developing custom detection rules or conducting Threat hunting. UPD 16.07.2026: Added detection of the malicious activity using Kaspersky Managed Detection and Response. UPD 16.07.2026:...

6.5AI score
Exploits0
Positive Technologies
Positive Technologies
added 2 days ago9 views

PT-2026-60484

Prompty is a markdown file format .prompty for LLM prompts. From 2.0.0-alpha.1 until 2.0.0-beta.3, the @prompty/core TypeScript loader in runtime/typescript/packages/core/src/core/loader.ts used gray-matter without overriding executable js and javascript frontmatter engines, allowing an...

8.7CVSS6.3AI score0.0093EPSS
Exploits0References3
NVD
NVD
added 3 days ago10 views

CVE-2026-43637

Cornac before 2.6.0 contains a path traversal Tar Slip vulnerability that allows attackers to write arbitrary files outside the intended cache directory by supplying a crafted TAR archive containing ../ sequences, absolute paths, or symlink/hardlink entries to the extractarchive function in...

9.1CVSS0.00425EPSS
Exploits0References4
OSV
OSV
added 3 days ago4 views

RLSA-2026:39297 Moderate: edk2 security, bug fix, and enhancement update

EDK Embedded Development Kit is a project to enable UEFI support for Virtual Machines. This package contains a sample 64-bit UEFI firmware for QEMU and KVM. Security Fixes: openssl: openssl: Information Disclosure from Uninitialized Memory via Invalid RSA Public Key CVE-2026-31790 openssl: OpenSS...

7.5CVSS7AI score0.00981EPSS
Exploits0References3
Rockylinux
Rockylinux
added 3 days ago4 views

edk2 security, bug fix, and enhancement update

An update is available for edk2. This update affects Rocky Linux 10. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list EDK Embedded Development Kit is a project to enable UEFI support for Virtual...

7.5CVSS7AI score0.00981EPSS
Exploits0
The Hacker News
The Hacker News
added 3 days ago10 views

Compromised AsyncAPI npm Packages Deliver Multi-Stage Botnet Malware

Four compromised npm packages in the @asyncapi namespace have been observed distributing a multi-stage botnet loader, according to findings from OX Security, SafeDep, Socket, and StepSecurity. The affected packages are listed below - @asyncapi/[email protected]...

6.3AI score
Exploits0
NVD
NVD
added 4 days ago8 views

CVE-2026-54684

jadx is a Dex to Java decompiler. From 1.5.2 to 1.5.5, a malicious .xapk file can cause jadx to write attacker-controlled archive entry contents outside the intended XAPK plugin temporary unpack directory because XApkLoader resolves each entry name directly with tmpDir.resolvefileName after a...

7CVSS0.00133EPSS
Exploits0References3
RedHat Linux
RedHat Linux
added 4 days ago5 views

Moderate: Red Hat Security Advisory: edk2 security, bug fix, and enhancement update

An update for edk2 is now available for Red Hat Enterprise Linux 10. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the...

7.5CVSS7.1AI score0.00981EPSS
Exploits0References3
NVD
NVD
added 4 days ago11 views

CVE-2026-58638

Missing cryptographic step in Windows Boot Loader allows an authorized attacker to bypass a security feature locally...

6CVSS0.00229EPSS
Exploits0References1
Cvelist
Cvelist
added 4 days ago33 views

CVE-2026-58638 Windows Boot Loader Security Feature Bypass Vulnerability

...

6CVSS0.00229EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 4 days ago3 views

CVE-2026-58638 Windows Boot Loader Security Feature Bypass Vulnerability

...

6CVSS6.1AI score0.00229EPSS
Exploits0References1
CVE
CVE
added 4 days ago7 views

CVE-2026-58638

CVE-2026-58638 is a Windows Boot Loader security feature bypass caused by a missing cryptographic step. The vulnerability allows a locally authenticated attacker to bypass a security feature. Public material in connected sources attributes the issue to Windows Boot Loader behavior and notes Micro...

6CVSS6AI score0.00229EPSS
Exploits0References1Affected Software12
Rows per page
Query Builder