CVE-2026-26016

Summary: CVE-2026-26016 affects Pterodactyl Panel (Wings) prior to 1.12.1 due to missing authorization checks across multiple controllers/endpoints. An authenticated Wings node with a node secret token can access and disclose information about servers on other nodes, retrieve server installation ...

CVE-2025-36160

IBM Concert 1.0.0 through 2.0.0 could disclose sensitive server information from HTTP response headers that could aid in further attacks against the system...

EUVD-2024-49638

Malicious code in bioql PyPI...

CVE-2025-2988

Summary: CVE-2025-2988 affects IBM Sterling B2B Integrator and IBM Sterling File Gateway. The vulnerability allows an unauthorized user to disclose sensitive server information, potentially enabling further attacks. Affected versions are 6.0.0.0–6.1.2.7, 6.2.0.0–6.2.0.4, and 6.2.1.0. The root cau...

Pagure 安全漏洞

Pagure is a Pagure open source Git repository written in Python that provides web services. A security vulnerability exists in the Pagure server that originates from a malicious user committing a specially crafted git repository, which could lead to the disclosure of sensitive information on the...

wildfly: Information disclosure due to publicly accessible privileged actions in JBoss EJB Client

A flaw was found in wildfly. The JBoss EJB client has publicly accessible privileged actions which may lead to information disclosure on the server it is deployed on. The highest threat from this vulnerability is to data confidentiality...

Arbitrary File Read Vulnerability in Zendo Project Management System

Zendo project management system developed by Qingdao Easoft Tianchuang Network Technology Co., Ltd, domestic open source project management software. It integrates product management, project management, quality management, document management, organizational management and transaction management...