africa.absa:inception-test (>=1.0.0 <=1.2.0), ai.dstack:server-base-local (>=0.0.12 <=0.1.15) +5233 more potentially affected by CVE-2026-0603 via org.hibernate:hibernate-core (>=5.2.8.Final <=5.6.14.Final)

org.hibernate:hibernate-core MAVEN version =5.2.8.Final, =1.0.0, =0.0.12, =0.5.0, =0.5.0, =0.1.0, =0.1.3-20210127.1838-76ab4fc, =0.1.3-20210127.1838-76ab4fc, =0.1.0, =2023.06.07.114626-93b9d6f, =0.1.0, =0.1.4-20220614.0152-5ae0eef, =1.1.0, =0.7, =0.9 and more Source cves: CVE-2026-0603 Source...

Django vulnerable to SQL injection via _connector keyword argument in QuerySet and Q objects.

An issue was discovered in 5.1 before 5.1.14, 4.2 before 4.2.26, and 5.2 before 5.2.8. The methods QuerySet.filter, QuerySet.exclude, and QuerySet.get, and the class Q, are subject to SQL injection when using a suitably crafted dictionary, with dictionary expansion, as the connector argument...

WordPress plugin Advanced File Manager 代码问题漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports personal blog sites on servers running PHP and MySQL.WordPress plugin is an application plugin. A code issue vulnerability exists i...