CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

7731 matches found

Positive Technologies•added 2026/04/09 12:0 a.m.•2 views

PT-2026-31782

PraisonAI is a multi-agent teams system. Prior to 4.5.128, deploy.py constructs a single comma-delimited string for the gcloud run deploy --set-env-vars argument by directly interpolating openai model, openai key, and openai base without validating that these values do not contain commas. gcloud...

8.4CVSS6AI score0.00035EPSS

Exploits1References4

Positive Technologies•added 2026/04/09 12:0 a.m.•4 views

PT-2026-31792

Name of the Vulnerable Software and Affected Versions PraisonAIAgents versions prior to 1.5.128 Description PraisonAIAgents is a multi-agent teams system. The execute command function in shell tools.py calls os.path.expandvars on every command argument, allowing exfiltration of secrets stored in...

7.4CVSS5.8AI score0.00049EPSS

Exploits1References5

CNNVD•added 2026/04/09 12:0 a.m.•3 views

PraisonAI 安全漏洞

PraisonAI is a low-code multi-agent collaboration framework developed by Mervin Praison. Versions of PraisonAI prior to 1.5.128 contained security vulnerabilities. These vulnerabilities stemmed from the executecommand function manually expanding environment variables, which could lead to the...

7.4CVSS5.8AI score0.00049EPSS

Exploits1References1

RedHat Linux•added 2026/04/08 4:43 p.m.•5 views

openssh: OpenSSH GSSAPI: Information disclosure or denial of service due to uninitialized variables

A flaw was found in the OpenSSH GSSAPI Generic Security Service Application Program Interface delta patches, as included in various Linux distributions. A remote attacker could exploit this by sending an unexpected GSSAPI message type during the key exchange process. This occurs because the...

7.5CVSS6AI score0.00101EPSS

Exploits0References6

Github Security Blog•added 2026/04/08 3:31 p.m.•6 views

Duplicate Advisory: Eclipse Jetty: Early return from the JASPIAuthenticator code can potentially no clear ThreadLocal variables

Duplicate Advisory This advisory has been withdrawn because it is a duplicate of GHSA-r7p8-xq5m-436c. This link is maintained to preserve external references. Original Description In Eclipse Jetty, the class JASPIAuthenticator initiates the authentication checks, which set two ThreadLocal variabl...

7.4CVSS5.8AI score0.00031EPSS

Exploits0References4Affected Software1

UbuntuCve•added 2026/04/08 2:16 p.m.•0 views

CVE-2026-5795

In Eclipse Jetty, the class JASPIAuthenticator initiates the authentication checks, which set two ThreadLocal variable. Upon returning from the initial checks, there are conditions that cause an early return from the JASPIAuthenticator code without clearing those ThreadLocals. A subsequent reques...

7.4CVSS5.8AI score0.00031EPSS

Exploits0References3

Debian CVE•added 2026/04/08 1:32 p.m.•3 views

CVE-2026-5795

7.4CVSS5.4AI score0.00031EPSS

Exploits0

Snyk•added 2026/04/08 6:27 a.m.•0 views

Embedded Malicious Code

Overview @fairwords/websocket is a WebSocket Client & Server Implementation for Node. Affected versions of this package are vulnerable to Embedded Malicious Code that mirrors the TeamPCP LiteLLM technique. What the postinstall payload does: - Harvests environment variables matching 40+ patterns...

9.8CVSS5.8AI score

Exploits0References2

Snyk•added 2026/04/08 6:27 a.m.•1 views

Embedded Malicious Code

Overview Affected versions of this package are vulnerable to Embedded Malicious Code that mirrors the TeamPCP LiteLLM technique. What the postinstall payload does: - Harvests environment variables matching 40+ patterns AWS, GCP, Azure, GitHub, OpenAI, Stripe, etc. - Reads SSH keys, .npmrc,...

9.8CVSS5.8AI score

Exploits0References2

Snyk•added 2026/04/08 6:27 a.m.•1 views

Embedded Malicious Code

Overview @fairwords/loopback-connector-es is a Basic Elasticsearch datasource connector for Loopback. Affected versions of this package are vulnerable to Embedded Malicious Code that mirrors the TeamPCP LiteLLM technique. What the postinstall payload does: - Harvests environment variables matchin...

9.8CVSS5.8AI score

Exploits0References2

OSV•added 2026/04/08 4:19 a.m.•2 views

MAL-2026-2506 Malicious code in @fairwords/encryption (npm)

The @fairwords/encryption package was compromised as part of the TeamPCP/CanisterWorm campaign. A postinstall hook executes node scripts/check-env.js || true which performs multi-stage credential harvesting, encrypted exfiltration, and self-propagation. The payload harvests 40+ environment variab...

5.9AI score

Exploits0References2

OSSF Malicious Packages•added 2026/04/08 4:19 a.m.•6 views

Malicious code in @fairwords/loopback-connector-es (npm)

The @fairwords/loopback-connector-es package was compromised as part of the TeamPCP/CanisterWorm campaign. A postinstall hook executes node scripts/check-env.js || true which performs multi-stage credential harvesting, encrypted exfiltration, and self-propagation. The payload harvests 40+...

5.8AI score

Exploits0References1

OSV•added 2026/04/08 4:19 a.m.•0 views

MAL-2026-2507 Malicious code in @fairwords/loopback-connector-es (npm)

5.8AI score

Exploits0References1

OSSF Malicious Packages•added 2026/04/08 4:18 a.m.•5 views

Malicious code in @fairwords/websocket (npm)

The @fairwords/websocket package was compromised as part of the TeamPCP/CanisterWorm campaign. A postinstall hook executes node scripts/check-env.js || true which performs multi-stage credential harvesting, encrypted exfiltration, and self-propagation. The payload harvests 40+ environment variabl...

5.9AI score

Exploits0References2

OSV•added 2026/04/08 4:18 a.m.•2 views

MAL-2026-2508 Malicious code in @fairwords/websocket (npm)

5.9AI score

Exploits0References2

EUVD•added 2026/04/08 3:32 a.m.•2 views

EUVD-2026-20004

Arithmetic over induction variables in loops were not correctly checked for underflow or overflow. As a result, the compiler would allow for invalid indexing to occur at runtime, potentially leading to memory corruption...

6AI score0.00022EPSS

Exploits0References5