12174 matches found
GHSA-W75W-9QV4-J5XJ dbt-common's commonprefix() doesn't protect against path traversal
Impact What kind of vulnerability is it? Who is impacted? A path traversal vulnerability exists in dbt-common's safeextract function used when extracting tarball archives. The function uses os.path.commonprefix to validate that extracted files remain within the intended destination directory...
WordPress plugin Royal Elementor Addons 安全漏洞
WordPress and WordPress plugins are both products of the WordPress Foundation. WordPress is a blog platform developed using the PHP language. This platform allows for the creation of personal blog websites on servers based on PHP and MySQL. A WordPress plugin is an application that can be install...
PT-2026-23610
Name of the Vulnerable Software and Affected Versions dbt-common versions prior to 1.34.2 dbt-common versions prior to 1.37.3 Description A path traversal issue exists in the safe extract function of dbt-common when extracting tarball archives. The function uses os.path.commonprefix to validate...
CVE-2026-2835
creationtimestamp| type| source ---|---|--- 2026-03-04 23:55:38+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mgbibcch662u 2026-03-05 00:00:42+00:00| seen| https://infosec.exchange/users/offseq/statuses/116173625220062897 2026-03-05 00:00:48+00:00| seen|...
CVE-2026-27887
Spin is an open source developer tool for building and running serverless applications powered by WebAssembly. When Spin is configured to allow connections to a database or web server which could return responses of unbounded size e.g. tables with many rows or large content bodies, Spin may in so...
CVE-2026-29074
creationtimestamp| type| source ---|---|--- 2026-03-04 14:54:15+00:00| published-proof-of-concept| https://github.com/svg/svgo/security/advisories/GHSA-xpqw-6gx7-v673 2026-03-06 08:23:49+00:00| seen| https://bsky.app/profile/thehackerwire.bsky.social/post/3mgev4vowdk26 2026-03-06 08:34:09+00:00|...
CVE-2026-27446
A flaw was found in Apache Artemis and Apache ActiveMQ Artemis. An unauthenticated remote attacker can exploit a missing authentication for critical function vulnerability by using the Core protocol. This allows the attacker to force a target broker to establish an outbound Core federation...
Exploit for SQL Injection in Dbgpt Db-Gpt
DBGPT Unauthenticated Information Disclosure & SQL Execution P...
CVE-2026-3224
creationtimestamp| type| source ---|---|--- 2026-03-04 00:00:42+00:00| seen| https://infosec.exchange/users/offseq/statuses/116167962878815008 2026-03-04 00:00:44+00:00| seen| https://bsky.app/profile/offseq.bsky.social/post/3mg6y3hgi2i2u 2026-03-04 00:03:54+00:00| seen|...
SEPPmail Secure Email Gateway 安全漏洞
SEPPmail Secure Email Gateway is an email security gateway developed by the German company SEPPmail. Versions of SEPPmail Secure Email Gateway prior to version 15.0.1 contained security vulnerabilities. These vulnerabilities stemmed from incorrect interpretation of email addresses in email header...
CVE-2026-27750
creationtimestamp| type| source ---|---|--- 2026-03-03 15:37:09+00:00| seen| https://infosec.exchange/users/quarkslab/statuses/116165982849269143 2026-03-03 15:37:37+00:00| seen| https://bsky.app/profile/quarkslab.bsky.social/post/3mg63xocxwc2l 2026-03-05 17:59:26+00:00| seen|...
CVE-2026-20777
creationtimestamp| type| source ---|---|--- 2026-03-03 15:30:06+00:00| seen| https://infosec.place/objects/920ca239-3e6d-45b4-bc4a-e5c1b5040806 2026-03-03 15:37:30+00:00| seen| https://bsky.app/profile/thehackerwire.bsky.social/post/3mg63xlwitz26 2026-03-03 16:24:45+00:00| seen|...
CVE-2026-22891
creationtimestamp| type| source ---|---|--- 2026-03-03 15:00:13+00:00| seen| https://infosec.place/objects/803e77b0-7328-44f5-a9a0-6ad0500f3be7 2026-03-03 15:37:38+00:00| seen| https://bsky.app/profile/thehackerwire.bsky.social/post/3mg63xtkbeq2d 2026-03-03 16:03:21+00:00| seen|...
CVE-2026-22886
creationtimestamp| type| source ---|---|--- 2026-03-03 10:30:30+00:00| seen| https://infosec.exchange/users/offseq/statuses/116164777052678463 2026-03-03 10:30:32+00:00| seen| https://bsky.app/profile/offseq.bsky.social/post/3mg5kspip6z2p 2026-03-03 10:31:29+00:00| seen|...
CVE-2026-1875
creationtimestamp| type| source ---|---|--- 2026-03-03 07:30:30+00:00| seen| https://infosec.exchange/users/offseq/statuses/116164069291017489 2026-03-03 07:30:32+00:00| seen| https://bsky.app/profile/offseq.bsky.social/post/3mg5aqudf2t2n 2026-03-03 07:56:32+00:00| seen|...
CVE-2026-1492
creationtimestamp| type| source ---|---|--- 2026-03-03 06:00:27+00:00| seen| https://infosec.exchange/users/offseq/statuses/116163715191061674 2026-03-03 06:00:29+00:00| seen| https://bsky.app/profile/offseq.bsky.social/post/3mg53ptextu2u 2026-03-03 07:26:16+00:00| seen|...
CVE-2026-2628
creationtimestamp| type| source ---|---|--- 2026-03-03 03:00:30+00:00| seen| https://infosec.exchange/users/offseq/statuses/116163007541407871 2026-03-03 03:00:31+00:00| seen| https://bsky.app/profile/offseq.bsky.social/post/3mg4rnzuy6n2u 2026-03-03 03:52:21+00:00| seen|...
CVE-2026-0031
creationtimestamp| type| source ---|---|--- 2026-03-02 20:08:50+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mg42nvioda2x 2026-03-02 21:20:19+00:00| seen| https://bsky.app/profile/thehackerwire.bsky.social/post/3mg46np5woe2f...
CVE-2026-0030
creationtimestamp| type| source ---|---|--- 2026-03-02 20:07:06+00:00| seen| https://infosec.exchange/users/vuldb/statuses/116161382085572122 2026-03-02 20:38:15+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mg44cikf3k2k 2026-03-02 21:20:12+00:00| seen|...
CVE-2026-0028
creationtimestamp| type| source ---|---|--- 2026-03-02 19:57:07+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mg3zytp27q2e 2026-03-02 21:20:04+00:00| seen| https://bsky.app/profile/thehackerwire.bsky.social/post/3mg46naifqq2v...