908 matches found
CVE-2026-36340
An issue in Krayin CRM v.2.1.5 and fixed in v.2.1.6 allows a remote attacker to execute arbitrary code via the compose email function...
CVE-2026-6093
Corteza contains a SQL injection vulnerability in its Microsoft SQL Server MSSQL backend when filtering Compose records by the meta field.This issue affects corteza: 2024.9.8...
CVE-2026-42869
SOCFortress CoPilot focuses on providing a single pane of glass for all your security operations needs. Prior to 0.1.57, SOCFortress CoPilot ships a hardcoded JWT signing secret as a fallback value in backend/app/auth/utils.py:28 and ships it verbatim in .env.example. Any deployment where JWTSECR...
CVE-2026-21826
HCL Digital Experience and HCL Digital Experience Compose could be susceptible to Host header injection. An attacker can manipulate the Host header and cause the application to behave in unexpected ways...
EUVD-2026-34788
HCL Digital Experience Compose is affected by a reflected cross-site scripting XSS vulnerability in the search center. An attacker could execute arbitrary JavaScript in the victim's browser...
CVE-2026-21825
HCL Digital Experience Compose is affected by a reflected cross-site scripting XSS vulnerability in the search center. An attacker could execute arbitrary JavaScript in the victim's browser...
EUVD-2026-34787
HCL Digital Experience and HCL Digital Experience Compose could be susceptible to Host header injection. An attacker can manipulate the Host header and cause the application to behave in unexpected ways...
CVE-2026-21826 HCL Digital Experience and HCL Digital Experience Compose could be susceptible to Host header injection
HCL Digital Experience and HCL Digital Experience Compose could be susceptible to Host header injection. An attacker can manipulate the Host header and cause the application to behave in unexpected ways...
CVE-2026-21826
HCL Digital Experience and HCL Digital Experience Compose could be susceptible to Host header injection. An attacker can manipulate the Host header and cause the application to behave in unexpected ways...
CVE-2026-21826
CVE-2026-21826 affects HCL Digital Experience and HCL Digital Experience Compose. The root cause is likely improper handling of the Host header, enabling an attacker to manipulate the Host header and cause the application to behave in unexpected ways. The CVSS 3.1 vector indicates: Network attack...
PT-2026-46904
HCL Digital Experience Compose is affected by a reflected cross-site scripting XSS vulnerability in the search center. An attacker could execute arbitrary JavaScript in the victim's browser...
Security Bulletin: IBM Verify Antenna is affected by multiple vulnerabilities (CVE-2026-33815, CVE-2026-33816, CVE-2026-41889)
Summary IBM Verify Antenna has addressed these vulnerabilities in an update. Vulnerability Details CVEID:CVE-2026-41889 DESCRIPTION: pgx is a PostgreSQL driver and toolkit for Go. Prior to version 5.9.2, SQL injection can occur when the non-default simple protocol is used, a dollar quoted string...
CVE-2026-47179
Arcane is an interface for managing Docker containers, images, networks, and volumes. Prior to 1.19.4, ProjectService.GetProjectFileContent returns the contents of any Docker Compose include directive declared in a project's compose file before any path-traversal validation runs. Because...
hermes-sidecar-poc
Hermes PoC — Pod + Nacos + Math microservice Dubbo Triple S...
[SECURITY] Fedora 43 Update: docker-compose-5.1.4-1.fc43
Define and run multi-container applications with Docker...
[SECURITY] Fedora 44 Update: docker-compose-5.1.4-1.fc44
Define and run multi-container applications with Docker...
CVE-2026-39830 affecting package docker-compose for versions less than 2.27.0-11
CVE-2026-39830 affecting package docker-compose for versions less than 2.27.0-11. A patched version of the package is available...
CVE-2026-39832 affecting package docker-compose for versions less than 2.27.0-11
CVE-2026-39832 affecting package docker-compose for versions less than 2.27.0-11. A patched version of the package is available...
CVE-2026-39834 affecting package docker-compose for versions less than 2.27.0-11
CVE-2026-39834 affecting package docker-compose for versions less than 2.27.0-11. A patched version of the package is available...
CVE-2026-46597 affecting package docker-compose for versions less than 2.27.0-11
CVE-2026-46597 affecting package docker-compose for versions less than 2.27.0-11. A patched version of the package is available...