16694 matches found
CVE-2026-54617
creationtimestamp| type| source ---|---|--- 2026-07-02 22:35:04+00:00| published-proof-of-concept| https://github.com/GravitLauncher/Launcher/security/advisories/GHSA-5g75-477j-2c2f 2026-07-03 21:56:06+00:00| seen| https://bsky.app/profile/stackflag.bsky.social/post/3mprjywsdgq2e...
CVE-2026-49352
creationtimestamp| type| source ---|---|--- 2026-07-02 22:35:02+00:00| published-proof-of-concept| https://github.com/decolua/9router/security/advisories/GHSA-jphh-m39h-6gwx 2026-07-03 21:58:06+00:00| seen| https://bsky.app/profile/stackflag.bsky.social/post/3mprk4i62nu2j...
CVE-2026-50027
creationtimestamp| type| source ---|---|--- 2026-07-02 16:35:08+00:00| published-proof-of-concept| https://github.com/advisories/GHSA-84hp-mqvj-3p8h 2026-07-03 03:00:27+00:00| seen| https://infosec.exchange/users/offseq/statuses/116853809243699371 2026-07-03 21:40:08+00:00| seen|...
PYSEC-2026-477 PraisonAI has critical RCE via `type: job` workflow YAML
praisonai workflow run loads untrusted YAML and if type: job executes steps through JobWorkflowExecutor in jobworkflow.py. This supports: - run: → shell command execution via subprocess.run - script: → inline Python execution via exec - python: → arbitrary Python script execution A malicious YAML...
CVE-2026-48755
creationtimestamp| type| source ---|---|--- 2026-06-26 20:35:12+00:00| published-proof-of-concept| https://github.com/lxc/incus/security/advisories/GHSA-v6mj-8pf4-hhw4 2026-07-01 02:15:18+00:00| seen| https://bsky.app/profile/securityonline.bsky.social/post/3mpkh3n7jjr2b 2026-07-01 02:31:46+00:00...
CVE-2026-48769
creationtimestamp| type| source ---|---|--- 2026-06-26 20:35:07+00:00| published-proof-of-concept| https://github.com/lxc/incus/security/advisories/GHSA-f6m5-xw2g-xc4x 2026-07-01 02:15:18+00:00| seen| https://bsky.app/profile/securityonline.bsky.social/post/3mpkh3n7jjr2b 2026-07-01 02:31:46+00:00...
CVE-2026-48529
creationtimestamp| type| source ---|---|--- 2026-06-25 22:35:05+00:00| published-proof-of-concept| https://github.com/github/github-mcp-server/security/advisories/GHSA-pjp5-fpmr-3349 2026-06-26 18:26:46+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mp7l26lvbx2l...
CVE-2026-48708
creationtimestamp| type| source ---|---|--- 2026-06-24 18:35:07+00:00| published-proof-of-concept| https://github.com/OliveTin/OliveTin/security/advisories/GHSA-7fq5-7wr8-rjwj 2026-06-24 19:54:03+00:00| seen| https://gist.github.com/alon710/cb59405487e5944ed006860e5bc630ab 2026-06-24...
CVE-2026-48709
creationtimestamp| type| source ---|---|--- 2026-06-24 18:35:05+00:00| published-proof-of-concept| https://github.com/OliveTin/OliveTin/security/advisories/GHSA-f637-w7p2-m7fx 2026-06-24 18:43:21+00:00| seen| https://gist.github.com/alon710/f2b2f51072808beda8e52a43b0bdd064 2026-06-24...
CVE-2026-53541
creationtimestamp| type| source ---|---|--- 2026-06-24 18:35:02+00:00| published-proof-of-concept| https://github.com/OliveTin/OliveTin/security/advisories/GHSA-prj9-97mp-mwh2...
GHSA-WMFG-5P4H-5FW3 Gogs allows users to write to readonly repositories using receive-pack + service=git-upload-pack confusion
Summary Git smart HTTP authorizes POST …/git-receive-pack using the client-supplied service query string so ?service=git-upload-pack is evaluated as read access while routing still runs git receive-pack, allowing push where only read should be allowed. Details Gogs' Git Smart HTTP handler for...
CVE-2026-55555
creationtimestamp| type| source ---|---|--- 2026-06-23 14:34:07+00:00| published-proof-of-concept| https://hakaisecurity.io/explorando-geradores-de-pdf-0-days-em-90-milhoes-de-alvos-por-mes/research-blog 2026-06-23 14:34:07+00:00| published-proof-of-concept|...
CVE-2026-33731
creationtimestamp| type| source ---|---|--- 2026-06-22 14:00:57+00:00| published-proof-of-concept| https://github.com/WWBN/AVideo/security/advisories/GHSA-95jh-7r58-xmxw...
CVE-2026-33684
creationtimestamp| type| source ---|---|--- 2026-06-22 14:00:15+00:00| published-proof-of-concept| https://github.com/WWBN/AVideo/security/advisories/GHSA-8j8m-p79x-g4jm...
CVE-2026-44179
creationtimestamp| type| source ---|---|--- 2026-06-21 19:03:12+00:00| published-proof-of-concept| https://github.com/xwikisas/xwiki-pro-macros/security/advisories/GHSA-w56x-9778-rppx...
CVE-2026-12787
Technical details (affected product/version, root cause, remediation) are not provided in the supplied documents; monitor for updates.
CVE-2026-46488
creationtimestamp| type| source ---|---|--- 2026-06-20 16:48:06+00:00| published-proof-of-concept| https://github.com/motioneye-project/motioneye/security/advisories/GHSA-r3cw-c95m-wfh9...
CVE-2026-31978
creationtimestamp| type| source ---|---|--- 2026-06-20 16:47:55+00:00| published-proof-of-concept| https://github.com/motioneye-project/motioneye/security/advisories/GHSA-g9fx-5r4h-pcw3...
CVE-2026-32315
creationtimestamp| type| source ---|---|--- 2026-06-20 16:47:31+00:00| published-proof-of-concept| https://github.com/motioneye-project/motioneye/security/advisories/GHSA-rhgp-6wq6-9j67 2026-06-24 23:13:15+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mp324me4xg2i...
CVE-2026-55488
creationtimestamp| type| source ---|---|--- 2026-06-20 16:47:06+00:00| published-proof-of-concept| https://github.com/motioneye-project/motioneye/security/advisories/GHSA-rw9q-97r9-8gvh...