4 matches found
MCP Server Kubernetes 命令注入漏洞
MCP Server Kubernetes is an MCP server for kubernetes management by Suyog Sonwalkar individual developer. A command injection vulnerability exists in MCP Server Kubernetes versions prior to 2.9.8, which stems from the execinpod tool failing to validate user input, which could lead to a command...
SUSE CVE-2025-23391
A Incorrect Privilege Assignment vulnerability in SUSE rancher allows a Restricted Administrator to change the password of Administrators and take over their accounts. This issue affects rancher: from 2.8.0 before 2.8.14, from 2.9.0 before 2.9.8, from 2.10.0 before 2.10.4...
WordPress plugin Shortcodes and extra features for Phlox 跨站脚本漏洞
WordPress and WordPress plugin are both products of the WordPress Foundation. WordPress is a set of blogging platforms developed using the PHP language. The WordPress plugin is an application plugin. WordPress Shortcodes and extra features for Phlox plugin versions prior to 2.9.8 contain a...
DEBIAN-CVE-2018-19362
FasterXML jackson-databind 2.x before 2.9.8 might allow attackers to have unspecified impact by leveraging failure to block the jboss-common-core class from polymorphic deserialization...