59 matches found
CVE-2026-48731 Warp: Linux external editor command injection
Warp is an agentic development environment. From 0.2024.02.20.08.01.stable01 until 0.2026.05.06.15.42.stable01, Warp contains a command injection issue in the Linux external editor launcher. Warp expanded freedesktop .desktop Exec templates for affected editor integrations and executed the expand...
Astra Linux – Vulnerability in hsqldb1.8.0, hsqldb
A flaw was discovered in the Libreoffice package. An attacker can create an odb file that contains a “database/script” file with a SCRIPT command. The contents of this file can then be written into a new file, whose location is determined by the attacker...
MGASA-2026-0221 Updated libcap packages fix security vulnerabilities
CVE-2026-4878. A flaw was found in libcap. A local unprivileged user can exploit a Time-of-check-to-time-of-use TOCTOU race condition in the capsetfile function. This allows an attacker with write access to a parent directory to redirect file capability updates to an attacker-controlled file. By...
EUVD-2026-36265
tmp: Type-confusion bypass of assertPath allows path traversal via non-string prefix/postfix/template...
EulerOS 2.0 SP13 : libcap (EulerOS-SA-2026-2338)
According to the versions of the libcap packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : A flaw was found in libcap. A local unprivileged user can exploit a Time-of-check-to-time-of-use TOCTOU race condition in the capsetfile function...
libcap: libcap: Privilege escalation via TOCTOU race condition in cap_set_file()
A flaw was found in libcap. A local unprivileged user can exploit a Time-of-check-to-time-of-use TOCTOU race condition in the capsetfile function. This allows an attacker with write access to a parent directory to redirect file capability updates to an attacker-controlled file. By doing so,...
ALPINE-CVE-2026-4878
A flaw was found in libcap. A local unprivileged user can exploit a Time-of-check-to-time-of-use TOCTOU race condition in the capsetfile function. This allows an attacker with write access to a parent directory to redirect file capability updates to an attacker-controlled file. By doing so,...
CVE-2026-4878
A flaw was found in libcap. A local unprivileged user can exploit a Time-of-check-to-time-of-use TOCTOU race condition in the capsetfile function. This allows an attacker with write access to a parent directory to redirect file capability updates to an attacker-controlled file. By doing so,...
CVE-2023-45554
File Upload vulnerability in zzzCMS v.2.1.9 allows a remote attacker to execute arbitrary code via modification of the imageext parameter from jpg, jpeg,gif, and png to jpg, jpeg,gif, png, pphphp...
CVE-1999-0490
MSHTML.DLL in Internet Explorer 5.0 allows a remote attacker to learn information about a local user's files via an IMG SRC tag...
EUVD-2018-10953
Malware in sbrugna...
EUVD-2006-1032
Malware in sbrugna...
EUVD-2020-7106
Malware in sbrugna...
EUVD-2019-2644
Malware in sbrugna...
EUVD-2013-7212
Malware in sbrugna...
EUVD-2020-13687
Malware in sbrugna...
EUVD-2020-25077
Malware in sbrugna...
EUVD-2022-48024
Malicious code in bioql PyPI...
EUVD-2022-25233
Malicious code in bioql PyPI...
EUVD-2025-24871
Malicious code in bioql PyPI...