Lucene search
K

1046 matches found

vulnersOsv
vulnersOsv
added 2026/02/27 10:9 p.m.6 views

ai.driftkit:driftkit-context-engineering-spring-ai-starter (>=0.6.0 <=0.8.7), ai.driftkit:driftkit-context-engineering-spring-boot-starter (>=0.5.0 <=0.8.7) +937 more potentially affected by CVE-2026-28208 via com.github.junrar:junrar (>=0.7 <=7.5.7)

com.github.junrar:junrar MAVEN version =0.7, =0.6.0, =0.5.0, =0.7.0, =0.7.0, =0.5.0, =0.8.3, =0.8.3, =0.8.3, =0.5.0, =0.5.0, =1.2.4, =1.2.0, =1.3.1 and more Source cves: CVE-2026-28208 Source advisory: OSV:GHSA-J273-M5QQ-6825...

5.9CVSS5.7AI score0.12038EPSS
Exploits1
vulnersOsv
vulnersOsv
added 2026/02/27 12:14 a.m.9 views

ai.driftkit:driftkit-context-engineering-spring-ai-starter (>=0.6.0 <=0.8.7), ai.driftkit:driftkit-context-engineering-spring-boot-starter (>=0.5.0 <=0.8.7) +509 more potentially affected by CVE-2026-28208 via com.github.junrar:junrar (>=7.4.0 <=7.5.7)

com.github.junrar:junrar MAVEN version =7.4.0, =0.6.0, =0.5.0, =0.7.0, =0.7.0, =0.5.0, =0.8.3, =0.8.3, =0.8.3, =0.5.0, =0.5.0, =1.2.4, =1.2.0, =25.4.0, =1.0.3.1-JDK21, =1.0.3.2-JDK21 and more Source cves: CVE-2026-28208 Source advisory: SNYK:JAVA-COMGITHUBJUNRAR-15360268...

5.9CVSS5.7AI score0.12038EPSS
Exploits1
OSV
OSV
added 2026/02/13 2:1 p.m.4 views

MAL-2026-889 Malicious code in responses-starter-app (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 83a4aedeb600114d998f8a0351978f589d1d3e9d55ebe061e7d25e95db19d2c7 The package responses-starter-app was found to contain malicious code. Source: ghsa-malware...

5.6AI score
Exploits0References1
Snyk
Snyk
added 2026/02/13 2:1 p.m.7 views

Malicious Package

Overview responses-starter-app is a malicious package. This package contains malicious code, and its content was removed from the official package manager. While this package might be attempting to impersonate a valid organization, there is no connection between that organization and this package...

9.8CVSS5.5AI score
Exploits0References2
OSSF Malicious Packages
OSSF Malicious Packages
added 2026/02/13 2:1 p.m.9 views

Malicious code in responses-starter-app (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 83a4aedeb600114d998f8a0351978f589d1d3e9d55ebe061e7d25e95db19d2c7 The package responses-starter-app was found to contain malicious code. Source: ghsa-malware...

5.6AI score
Exploits0References1
CVE
CVE
added 2026/02/11 9:27 a.m.28 views

CVE-2026-2295

CVE-2026-2295 affects the WordPress plugin “WPZOOM Addons for Elementor – Starter Templates & Widgets” up to version 1.3.2, exposing protected post titles and excerpts via an unauthenticated request to ajax_post_grid_load_more due to a missing capability check. Multiple sources (Wordfence, CVE en...

5.3CVSS5.5AI score0.00325EPSS
Exploits0References3
CNNVD
CNNVD
added 2026/02/11 12:0 a.m.7 views

WordPress plugin WPZOOM Addons for Elementor – Starter Templates & Widgets 信息泄露漏洞

WordPress and WordPress plugins are both products of the WordPress Foundation. WordPress is a blog platform developed using the PHP language. This platform allows users to create personal blog websites on servers based on PHP and MySQL. A WordPress plugin is an application that extends the...

5.3CVSS5.8AI score0.00325EPSS
Exploits0References4
Patchstack
Patchstack
added 2026/02/10 11:27 p.m.7 views

WordPress WPZOOM Addons for Elementor - Starter Templates & Widgets plugin <= 1.3.2 - Unauthenticated Protected Post Exposure via ajax_post_grid_load_more vulnerability

WordPress WPZOOM Addons for Elementor - Starter Templates & Widgets plugin = 1.3.2 - Unauthenticated Protected Post Exposure via ajaxpostgridloadmore vulnerability discovered by Webbernaut in WordPress Plugin WPZOOM Addons for Elementor versions = 1.3.2...

5.3CVSS5.5AI score0.00325EPSS
Exploits0References1Affected Software1
vulnersOsv
vulnersOsv
added 2026/02/09 9:26 a.m.7 views

ca.ibodrov.concord:testcontainers-concord-core (>=2.0.3 <=2.0.5), ca.ibodrov.mica.docker:mica-standalone (>=0.0.27 <=0.0.34) +273 more potentially affected by CVE-2026-23903 via org.apache.shiro:shiro-core (>=2.0.0-alpha-1 <=2.0.6)

org.apache.shiro:shiro-core MAVEN version =2.0.0-alpha-1, =2.0.3, =0.0.27, =0.0.27, =0.0.27, =6.0.0, =8.0.0, =8.0.0, =2.2.0, =1.0.2, =3.4.0, =3.3.0, =3.3.0, =3.3.0, =3.3.0, =3.8.0 and more Source cves: CVE-2026-23903 Source advisory: SNYK:JAVA-ORGAPACHESHIRO-15253617...

5.3CVSS7.2AI score0.00363EPSS
Exploits0
OSV
OSV
added 2026/02/05 2:3 a.m.7 views

MAL-2026-758 Malicious code in tailwindcss-forms-starter (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 91e47d3466ef7beca3f6d4cc16c77c91c52a3d29dbbe4d484fcf3e2397f18d2c The package tailwindcss-forms-starter was found to contain malicious code. Source: ghsa-malware...

5.5AI score
Exploits0References1
Snyk
Snyk
added 2026/02/05 2:3 a.m.6 views

Malicious Package

Overview tailwindcss-forms-starter is a malicious package. This package contains malicious code, and its content was removed from the official package manager. While this package might be attempting to impersonate a valid organization, there is no connection between that organization and this...

9.8CVSS5.4AI score
Exploits0References2
The Hacker News
The Hacker News
added 2026/01/28 10:30 a.m.7 views

Password Reuse in Disguise: An Often-Missed Risky Workaround

When security teams discuss credential-related risk, the focus typically falls on threats such as phishing, malware, or ransomware. These attack methods continue to evolve and rightly command attention. However, one of the most persistent and underestimated risks to organizational security remain...

5.9AI score
Exploits0
RedhatCVE
RedhatCVE
added 2026/01/24 9:15 a.m.9 views

CVE-2026-0759

Katana Network Development Starter Kit executeCommand Command Injection Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of Katana Network Development Starter Kit. Authentication is not required to exploit this...

9.8CVSS6.5AI score0.01715EPSS
Exploits0References1
NVD
NVD
added 2026/01/23 4:16 a.m.12 views

CVE-2026-0759

Katana Network Development Starter Kit executeCommand Command Injection Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of Katana Network Development Starter Kit. Authentication is not required to exploit this...

9.8CVSS0.01715EPSS
Exploits0References1
Cvelist
Cvelist
added 2026/01/23 3:28 a.m.34 views

CVE-2026-0759 Katana Network Development Starter Kit executeCommand Command Injection Remote Code Execution Vulnerability

Katana Network Development Starter Kit executeCommand Command Injection Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of Katana Network Development Starter Kit. Authentication is not required to exploit this...

9.8CVSS0.01715EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2026/01/23 3:28 a.m.6 views

CVE-2026-0759 Katana Network Development Starter Kit executeCommand Command Injection Remote Code Execution Vulnerability

Katana Network Development Starter Kit executeCommand Command Injection Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of Katana Network Development Starter Kit. Authentication is not required to exploit this...

9.8CVSS6.5AI score0.01715EPSS
Exploits0References1
vulnersOsv
vulnersOsv
added 2026/01/14 12:49 p.m.8 views

org.apache.camel.springboot:camel-neo4j-starter (>=4.14.0 <=4.14.2) potentially affected by CVE-2025-66169 via org.apache.camel:camel-neo4j (>=4.14.0 <=4.14.2)

org.apache.camel:camel-neo4j MAVEN version =4.14.0, =4.14.0, =4.14.2 Source cves: CVE-2025-66169 Source advisory: SNYK:JAVA-ORGAPACHECAMEL-14930769...

5.3CVSS5.8AI score0.00613EPSS
Exploits0
vulnersOsv
vulnersOsv
added 2026/01/14 12:49 p.m.7 views

org.apache.camel.karaf:camel-neo4j (>=4.10.3 <=4.10.7), org.apache.camel.springboot:camel-neo4j-starter (>=4.10.0 <=4.10.7) potentially affected by CVE-2025-66169 via org.apache.camel:camel-neo4j (>=4.10.0 <=4.10.7)

org.apache.camel:camel-neo4j MAVEN version =4.10.0, =4.10.3, =4.10.0, =4.10.7 Source cves: CVE-2025-66169 Source advisory: SNYK:JAVA-ORGAPACHECAMEL-14930769...

5.3CVSS5.8AI score0.00613EPSS
Exploits0
vulnersOsv
vulnersOsv
added 2026/01/14 12:49 p.m.8 views

org.apache.camel.springboot:camel-neo4j-starter (>=4.15.0 <=4.16.0) potentially affected by CVE-2025-66169 via org.apache.camel:camel-neo4j (>=4.15.0 <=4.16.0)

org.apache.camel:camel-neo4j MAVEN version =4.15.0, =4.15.0, =4.16.0 Source cves: CVE-2025-66169 Source advisory: SNYK:JAVA-ORGAPACHECAMEL-14930769...

5.3CVSS5.8AI score0.00613EPSS
Exploits0
vulnersOsv
vulnersOsv
added 2026/01/14 12:31 p.m.6 views

org.apache.camel.springboot:camel-neo4j-starter (>=4.15.0 <=4.16.0) potentially affected by CVE-2025-66169 via org.apache.camel:camel-neo4j (>=4.15.0 <=4.16.0)

org.apache.camel:camel-neo4j MAVEN version =4.15.0, =4.15.0, =4.16.0 Source cves: CVE-2025-66169 Source advisory: OSV:GHSA-4JRW-64VR-7G8M...

5.3CVSS5.8AI score0.00613EPSS
Exploits0
Rows per page
Query Builder