CLEANSTART-2026-MW24969 Security fixes for CVE-2025-61732, CVE-2025-68121, CVE-2026-24051, CVE-2026-25679, CVE-2026-27139, CVE-2026-27142, CVE-2026-32280, CVE-2026-32281, CVE-2026-32282, CVE-2026-32283, CVE-2026-32289, CVE-2026-33186, CVE-2026-33810, CVE-2026-39883, ghsa-9h8m-3fm2-qjrq, ghsa-p77j-4mvh-x3m3 applied in versions: 1.28.1-r0, 1.28.1-r1, 1.28.1-r2

Multiple security vulnerabilities affect the cass-operator package. These issues are resolved in later releases. See references for individual vulnerability details...

CLEANSTART-2026-BA09462 OpenTelemetry-Go is the Go implementation of OpenTelemetry

Multiple security vulnerabilities affect the cass-operator-fips package. OpenTelemetry-Go is the Go implementation of OpenTelemetry. See references for individual vulnerability details...

CLEANSTART-2026-AR56257 Security fixes for ghsa-72hv-8253-57qq applied in versions: 1.0.16-r0

Security vulnerability affects the cass-config-builder package. This issue is resolved in later releases. See references for vulnerability details...

CLEANSTART-2026-BF73214 Security fixes for ghsa-72hv-8253-57qq applied in versions: 1.0.17-r0

Security vulnerability affects the cass-config-builder package. This issue is resolved in later releases. See references for vulnerability details...

CLEANSTART-2026-FZ71456 Security fixes for ghsa-72hv-8253-57qq applied in versions: 1.0.18-r0

Security vulnerability affects the cass-config-builder package. This issue is resolved in later releases. See references for vulnerability details...

CLEANSTART-2026-CP95927 Security fixes for CVE-2025-61732, CVE-2025-68121, CVE-2026-24051, CVE-2026-25679, CVE-2026-27139, CVE-2026-27142, CVE-2026-33186, ghsa-9h8m-3fm2-qjrq, ghsa-p77j-4mvh-x3m3 applied in versions: 1.28.1-r0, 1.28.1-r1

Multiple security vulnerabilities affect the cass-operator package. These issues are resolved in later releases. See references for individual vulnerability details...

EUVD-2022-3048

Malicious code in bioql PyPI...

SewKinect 代码问题漏洞

SewKinect is a paper pattern drawing software by the individual developer Cass Malloy. SewKinect suffers from a code issue vulnerability that stems from incorrect manipulation of the parameter bodyparts/pointcloud in the file/calculate, which could lead to a deserialization attack...

CVE-2022-29229

CaSS is a Competency and Skills System. CaSS Library, npm:cassproject has a missing cryptographic step when storing cryptographic keys that can allow a server administrator access to an account’s cryptographic keys. This affects CaSS servers using standalone username/password authentication, whic...

CVE-2025-22871 vulnerabilities

Vulnerabilities for packages: wire-go, helm-operator, velero-plugin-for-microsoft-azure, velero-plugin-for-csi, cloudnative-pg, cert-manager-istio-csr, opensearch-k8s-operator, crossplane-provider-azure-managedidentity, kubescape, consul-k8s, spire-server, ini-file, step-issuer, openbao-k8s,...

GHSA-G9PC-8G42-G6VQ vulnerabilities

Vulnerabilities for packages: wire-go, helm-operator, velero-plugin-for-microsoft-azure, velero-plugin-for-csi, cloudnative-pg, cert-manager-istio-csr, opensearch-k8s-operator, crossplane-provider-azure-managedidentity, kubescape, consul-k8s, spire-server, ini-file, step-issuer, openbao-k8s,...

CVE-2025-22871 vulnerabilities

Vulnerabilities for packages: step-fips, falcoctl-fips, wire-go, helm-operator, rabbitmq-cluster-operator-fips, velero-plugin-for-microsoft-azure, velero-plugin-for-csi, kyverno-fips, request-1279-14, prometheus-podman-exporter, secrets-store-csi-driver-provider-aws-fips, cloudnative-pg,...

GHSA-7WRW-R4P8-38RX vulnerabilities

Vulnerabilities for packages: wire-go, helm-operator, velero-plugin-for-microsoft-azure, velero-plugin-for-csi, cloudnative-pg, opensearch-k8s-operator, flannel, kube-state-metrics, sftpgo-plugin-pubsub, consul-k8s, spire-server, harbor-cli, ini-file, sftpgo-plugin-eventsearch,...

CVE-2024-8395 FlyCASS Cockpit Access Security System (CASS) SQL Injection

FlyCASS CASS and KCM systems did not correctly filter SQL queries, which made them vulnerable to attack by outside attackers with no authentication...

CVE-2024-8395 FlyCASS Cockpit Access Security System (CASS) SQL Injection

FlyCASS CASS and KCM systems did not correctly filter SQL queries, which made them vulnerable to attack by outside attackers with no authentication...

SQL Injection Attack on Airport Security

Interesting vulnerability: …a special lane at airport security called Known Crewmember KCM. KCM is a TSA program that allows pilots and flight attendants to bypass security screening, even when flying on domestic personal trips. The KCM process is fairly simple: the employee uses the dedicated la...

GHSA-VR64-R9QJ-H27F vulnerabilities

Vulnerabilities for packages: cass-config-builder...

CVE-2024-22871 vulnerabilities

Vulnerabilities for packages: cass-config-builder...

CVE-2024-22871 vulnerabilities

Vulnerabilities for packages: cass-config-builder...

cass-abogados.com Cross Site Scripting vulnerability OBB-2964423

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...