@kimuson/claude-code-viewer (>=0.4.2 <=0.5.9), @netlify/agent-runner-cli (>=1.0.0-broken <=1.58.3) +16 more potentially affected by CVE-2026-24887 via @anthropic-ai/claude-code (>=2.0.0 <=2.0.69)

@anthropic-ai/claude-code NPM version =2.0.0, =0.4.2, =1.0.0-broken, =0.0.1-rc.1, =0.12.0, =0.5.2, =0.12.1, =1.1.43, =0.0.0, =0.1.2, =0.11.1, =0.11.0, =0.11.2 - happyzebra-cli =0.11.2 and more Source cves: CVE-2026-24887 Source advisory: SNYK:JS-ANTHROPICAICLAUDECODE-15202067...

PT-2025-51841

Name of the Vulnerable Software and Affected Versions ITSourcecode COVID Tracking System Using QR-Code version 1.0 Description A SQL injection issue exists in the '/cts/admin/?page=zone' file. The issue occurs because malicious code can be injected through the id parameter and directly used in SQ...

CVE-2019-10667

An issue was discovered in LibreNMS through 1.47. Information disclosure can occur: an attacker can fingerprint the exact code version installed and disclose local file paths...

Security Bulletin: A vulnerability in OpenSLP affects the IBM FlashSystem models 840 and 900

Summary There are vulnerabilities in OpenSLP to which the IBM FlashSystem™ 840 and FlashSystem 900 are susceptible. An exploit of this vulnerability CVE-2017-17833 could make the system susceptible to a denial of service due to a corruption of heap memory by a remote attacker. Vulnerability Detai...

Null pointer dereference

TightVNC code version 1.3.10 contains null pointer dereference in HandleZlibBPP function, which results Denial of System DoS. This attack appear to be exploitable via network connectivity...

CVE-2019-15680

CVE-2019-15680 affects TightVNC 1.3.10 and is described in connected advisories as a NULL pointer dereference in HandleZlibBPP, leading to Denial of System (DoS) with network-access exploitability. The EU/CISA/Nessus/Ubuntu/SUSE/Debian entries confirm the issue across multiple Linux distributions...

CVE-2019-15679

TightVNC code version 1.3.10 contains heap buffer overflow in InitialiseRFBConnection function, which can potentially result code execution. This attack appear to be exploitable via network connectivity...

LibreNMS Information Disclosure Vulnerability

LibreNMS is a PHP/MYSQL/SNMP-based open source monitoring tool . An information disclosure vulnerability exists in LibreNMS 1.47 and earlier versions, which can be exploited by an attacker to identify the exact code version installed and obtain local file paths...

CVE-2019-10667

An issue was discovered in LibreNMS through 1.47. Information disclosure can occur: an attacker can fingerprint the exact code version installed and disclose local file paths...

CVE-2019-10667

An issue was discovered in LibreNMS through 1.47. Information disclosure can occur: an attacker can fingerprint the exact code version installed and disclose local file paths...

Information disclosure

An issue was discovered in LibreNMS through 1.47. Information disclosure can occur: an attacker can fingerprint the exact code version installed and disclose local file paths...

CVE-2019-10667

An issue was discovered in LibreNMS through 1.47. Information disclosure can occur: an attacker can fingerprint the exact code version installed and disclose local file paths...

CVE-2018-17230

Exiv2::ul2Data in types.cpp in Exiv2 v0.26 allows remote attackers to cause a denial of service heap-based buffer overflow via a crafted image file...

Security Bulletin: A vulnerability affects the IBM FlashSystem model V840

Summary There is a vulnerability which the IBM FlashSystem™ V840 is susceptible. An exploit of this vulnerability CVE-2018-1495 could make the system susceptible to attacks which could allow an attacker to overwrite arbitrary files. Vulnerability Details CVEID: CVE-2018-1495 DESCRIPTION: IBM...

Lutron Quantum 3.2.243 Information Disclosure

Exploit Title: Login bypass and data leak - Lutron Quantum 2.0 - 3.2.243 firmware Date: 20-03-2018 Exploit Author: David Castro Contact: https://twitter.com/SadFud75 Vendor Homepage: http://www.lutron.com Software Link:...

CVE-2016-2334

Heap-based buffer overflow in the NArchive::NHfs::CHandler::ExtractZlibFile method in 7zip before 16.00 and p7zip allows remote attackers to execute arbitrary code via a crafted HFS+ image...