PT-2026-6466

Due to an error in command parsing, it was possible to bypass the Claude Code confirmation prompt to trigger execution of untrusted commands through the find command. Reliably exploiting this required the ability to add untrusted content into a Claude Code context window. Users on standard Claude...

CVE-2025-66032 Claude Code Command Validation Bypass Allows Arbitrary Code Execution

Claude Code is an agentic coding tool. Prior to 1.0.93, Due to errors in parsing shell commands related to $IFS and short CLI flags, it was possible to bypass the Claude Code read-only validation and trigger arbitrary code execution. Reliably exploiting this requires the ability to add untrusted...

Improper Input Validation

@anthropic-ai/claude-code is vulnerable to Improper Input Validation. The vulnerability is due to an error in command parsing that allows an attacker to bypass the confirmation prompt and trigger execution of untrusted commands by injecting malicious content into a Claude Code context window...

EUVD-2021-7909

Malicious code in bioql PyPI...

EUVD-2025-23573

Malicious code in bioql PyPI...

IBM Spectrum Protect Server Stack Buffer Overflow Vulnerability

IBM Spectrum Protect is a data protection platform that provides organizations with a single point of control and management for backup and recovery.IBM Spectrum Protect Server is the server of the... A stack buffer overflow vulnerability exists in IBM Spectrum Protect Server versions 7.1 and 8.1...