Lucene search
K

2245 matches found

Fedora
Fedora
added 2026/05/15 3:7 a.m.10 views

[SECURITY] Fedora 43 Update: firefox-150.0.3-1.fc43

Mozilla Firefox is an open-source web browser, designed for standards compliance, performance and portability...

5.8AI score
Exploits0
Fedora
Fedora
added 2026/05/14 12:26 a.m.12 views

[SECURITY] Fedora 44 Update: firefox-150.0.3-1.fc44

Mozilla Firefox is an open-source web browser, designed for standards compliance, performance and portability...

5.8AI score
Exploits0
Fedora
Fedora
added 2026/05/12 12:49 a.m.16 views

[SECURITY] Fedora 44 Update: nss-3.122.2-1.fc44

Network Security Services NSS is a set of libraries designed to support cross-platform development of security-enabled client and server applications. Applications built with NSS can support SSL v2 and v3, TLS, PKCS 5, PKCS 7, PKCS 11, PKCS 12, S/MIME, X.509 v3 certificates, and other security...

5.8AI score
Exploits0
Fedora
Fedora
added 2026/05/12 12:49 a.m.15 views

[SECURITY] Fedora 44 Update: firefox-150.0.1-1.fc44

Mozilla Firefox is an open-source web browser, designed for standards compliance, performance and portability...

5.8AI score
Exploits0
Packet Storm News
Packet Storm News
added 2026/05/08 12:0 a.m.8 views

An Automated Framework for Cybersecurity Policy Compliance Assessment against Security Control Standards

Organizational cybersecurity policies are often examined to determine whether they adequately comply standard security controls. This task is difficult because control statements are abstract, whereas policy documents describe governance practices in varied natural language. As a result,...

5.8AI score
Exploits0
hivepro
hivepro
added 2026/05/07 4:45 a.m.9 views

Cyber Insurance Requirements for Cybersecurity

Cyber Insurance Requirements for Cybersecurity Cyber insurance requirements cybersecurity teams face today are stricter than they were even a few years ago. Underwriters no longer accept a simple security questionnaire and a list of tools. They want evidence that your organization can identify...

5.9AI score
Exploits0
Debian CVE
Debian CVE
added 2026/05/07 3:49 a.m.9 views

CVE-2026-41675

xmldom is a pure JavaScript W3C standard-based XML DOM Level 2 Core DOMParser and XMLSerializer module. In @xmldom/xmldom prior to versions 0.9.10 and 0.8.13 and xmldom version 0.6.0 and prior, the package allows attacker-controlled processing instruction data to be serialized into XML without...

8.7CVSS5.8AI score0.00408EPSS
Exploits0
Debian CVE
Debian CVE
added 2026/05/07 3:40 a.m.9 views

CVE-2026-41673

xmldom is a pure JavaScript W3C standard-based XML DOM Level 2 Core DOMParser and XMLSerializer module. In @xmldom/xmldom prior to versions 0.9.10 and 0.8.13 and xmldom version 0.6.0 and prior, seven recursive traversals in lib/dom.js operate without a depth limit. A sufficiently deeply nested DO...

8.7CVSS5.7AI score0.00643EPSS
Exploits0
Chainguard
Chainguard
added 2026/05/07 1:17 a.m.13 views

GHSA-98QH-XJC8-98PQ vulnerabilities

Vulnerabilities for packages: apache-hop-fips, geoserver, nacos-docker, ghidra, apache-hop, nuxeo, hono, dependency-track, druid, sonarqube, keycloak, debezium, camunda-zeebe, thingsboard, camunda, keycloak-fips, nacos, flyway-fips, guacamole-client, kayenta-fips, kayenta,...

6.1AI score
Exploits0
Chainguard
Chainguard
added 2026/05/06 7:17 p.m.15 views

GHSA-FPJQ-C37H-CQCV vulnerabilities

Vulnerabilities for packages: kyverno-notation-aws, kyverno, kyverno-notation-aws-fips, kyverno-fips...

6.1AI score
Exploits0
Packet Storm News
Packet Storm News
added 2026/05/06 12:0 a.m.13 views

Age Verification in the Web -- Holy Grail to Control Access to Restricted Content

Age verification before accessing restricted content is critical to protecting minors from exposure to harmful material such as pornography, gambling, violence, hateful speech, and substance purchases like alcohol and tobacco. Currently, the absence of reliable age-checking mechanisms allows...

5.8AI score
Exploits0
Packet Storm News
Packet Storm News
added 2026/05/06 12:0 a.m.12 views

Beyond Collection: Measuring the Detection Efficacy of Modern Security Logging Standards

Effective security logging is crucial for the timely and accurate detection of cyber threats; however, the relative effectiveness of various industry-standard logging frameworks remains understudied. This paper addresses this critical gap by presenting the first systematic evaluation of modern...

6.5AI score
Exploits0
Fedora
Fedora
added 2026/05/03 1:18 a.m.10 views

[SECURITY] Fedora 43 Update: nss-3.122.1-1.fc43

Network Security Services NSS is a set of libraries designed to support cross-platform development of security-enabled client and server applications. Applications built with NSS can support SSL v2 and v3, TLS, PKCS 5, PKCS 7, PKCS 11, PKCS 12, S/MIME, X.509 v3 certificates, and other security...

5.8AI score
Exploits0
CVE
CVE
added 2026/05/01 5:45 p.m.16 views

CVE-2026-7588

Summary (CVE-2026-7588) : In the ggerve coding-standards-mcp project, the vulnerability affects the get_style_guide/get_best_practices function in server.py. The issue arises from manipulating the Language argument, which enables a path traversal condition. This can be exploited remotely over a n...

6.9CVSS5.8AI score0.00449EPSS
Exploits0References5
EUVD
EUVD
added 2026/05/01 5:45 p.m.7 views

EUVD-2026-26704

A vulnerability was found in ggerve coding-standards-mcp. This issue affects the function getstyleguide/getbestpractices of the file server.py. The manipulation of the argument Language results in path traversal. It is possible to launch the attack remotely. The exploit has been made public and...

6.9CVSS5.8AI score0.00449EPSS
Exploits0References5
Cvelist
Cvelist
added 2026/05/01 5:45 p.m.30 views

CVE-2026-7588 ggerve coding-standards-mcp server.py get_best_practices path traversal

A vulnerability was found in ggerve coding-standards-mcp. This issue affects the function getstyleguide/getbestpractices of the file server.py. The manipulation of the argument Language results in path traversal. It is possible to launch the attack remotely. The exploit has been made public and...

6.9CVSS0.00449EPSS
Exploits0References5
CNNVD
CNNVD
added 2026/05/01 12:0 a.m.10 views

Coding Standards MCP Server 路径遍历漏洞

Coding Standards MCP Server is a coding specifications and best practices query tool for gerve individual developers. A path traversal vulnerability exists in Coding Standards MCP Server, which stems from a misbehavior of the getstyleguide/getbestpractices function with the parameter Language in...

6.9CVSS6AI score0.00449EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2026/05/01 12:0 a.m.7 views

PT-2026-36531

A vulnerability was found in ggerve coding-standards-mcp. This issue affects the function get style guide/get best practices of the file server.py. The manipulation of the argument Language results in path traversal. It is possible to launch the attack remotely. The exploit has been made public a...

6.9CVSS5.5AI score0.00449EPSS
Exploits0References6
Fedora
Fedora
added 2026/04/30 12:54 a.m.9 views

[SECURITY] Fedora 44 Update: dokuwiki-20250514b-5.fc44

DokuWiki is a standards compliant, simple to use Wiki, mainly aimed at creati ng documentation of any kind. It has a simple but powerful syntax which makes su re the data-files remain readable outside the Wiki and eases the creation of structured texts. All data is stored in plain text files no...

7.5CVSS5.3AI score0.00452EPSS
Exploits1
hivepro
hivepro
added 2026/04/29 11:38 p.m.6 views

CTEM for Financial Services: Protect What Matters Most

Financial institutions process trillions of dollars in transactions every day. One exploited vulnerability can freeze operations, trigger regulatory penalties, and erode customer trust overnight. Traditional vulnerability management, which scans, scores, and queues patches, cannot keep pace with...

5.7AI score
Exploits0
Rows per page
Query Builder