197 matches found
CKAN 安全漏洞
CKAN is an open-source data management system developed by CKAN itself. It is used to power data centers and data portals. Versions of CKAN prior to 2.10.10 and 2.11.5 contained security vulnerabilities. These vulnerabilities stemmed from a vulnerability in datastoresearchsql, which allowed...
CVE-2026-1896
A vulnerability has been found in WeKan up to 8.20. Affected by this vulnerability is the function ComprehensiveBoardMigration of the file server/migrations/comprehensiveBoardMigration.js of the component Migration Operation Handler. The manipulation of the argument boardId leads to improper acce...
WeKan 访问控制错误漏洞
WeKan is an open-source dashboard application developed by WeKan. Versions of WeKan prior to 8.20 contained a security vulnerability related to access control. This vulnerability stemmed from improper handling of parameters in the file server/migrations/comprehensiveBoardMigration.js, leading to...
CVE-2026-1896 WeKan Migration Operation comprehensiveBoardMigration.js ComprehensiveBoardMigration MigrationBleed access control
A vulnerability has been found in WeKan up to 8.20. Affected by this vulnerability is the function ComprehensiveBoardMigration of the file server/migrations/comprehensiveBoardMigration.js of the component Migration Operation Handler. The manipulation of the argument boardId leads to improper acce...
CVE-2026-1896
A vulnerability has been found in WeKan up to 8.20. Affected by this vulnerability is the function ComprehensiveBoardMigration of the file server/migrations/comprehensiveBoardMigration.js of the component Migration Operation Handler. The manipulation of the argument boardId leads to improper acce...
CVE-2026-1896
WeKan up to version 8.20 is affected by a vulnerability in ComprehensiveBoardMigration (server/migrations/comprehensiveBoardMigration.js) where manipulating the boardId argument leads to improper access controls. The issue is remote in nature. A fix is available in WeKan 8.21, with patch identifi...
CVE-2026-1896 WeKan Migration Operation comprehensiveBoardMigration.js ComprehensiveBoardMigration MigrationBleed access control
A vulnerability has been found in WeKan up to 8.20. Affected by this vulnerability is the function ComprehensiveBoardMigration of the file server/migrations/comprehensiveBoardMigration.js of the component Migration Operation Handler. The manipulation of the argument boardId leads to improper acce...
PT-2026-6075
Name of the Vulnerable Software and Affected Versions WeKan versions prior to 8.21 Description A flaw exists in WeKan that allows for improper access controls. This is due to the manipulation of the boardId argument within the ComprehensiveBoardMigration function located in the file...
Rockwell Automation ArmorStart LT Denial of Service Vulnerability (CNVD-2026-10851)
Rockwell Automation ArmorStart LT is a distributed motor controller from Rockwell Automation. A denial of service vulnerability exists in the Rockwell Automation ArmorStart LT, which originates from a device reboot during execution of the Achilles Comprehensive step limit storm test, and can be...
CVE-2025-9281 ArmorStart® LT - Multiple Denial-of-Service Vulnerabilities
A security issue exists within ArmorStart® LT that can result in a denial-of-service condition. During execution of the Achilles Comprehensive step limit storm tests, the device reboots...
CVE-2025-9281
ArmorStart® LT is affected by multiple denial-of-service vulnerabilities triggered during Achilles Comprehensive step limit storm tests and related fuzzing/grammar tests (e.g., step limit storms, comprehensive storm tests, and related CIP/EtherNet/IP fuzzing). The issues, observed as device reboo...
Rockwell Automation ArmorStart LT 安全漏洞
Rockwell Automation ArmorStart LT is a distributed motor controller from Rockwell Automation. A denial of service vulnerability exists in the Rockwell Automation ArmorStart LT, which originates from an unexpected device reboot during the execution of the Achilles Comprehensive limited storm test,...
ntree
NTREE v2.0 - Neural Tactical Red-Team Exploitation Engine C...
Can AI Models Be Jailbroken to Phish Elderly Victims? an End-To-End Evaluation
We present an end-to-end demonstration of how attackers can exploit AI safety failures to harm vulnerable populations: from jailbreaking LLMs to generate phishing content, to deploying those messages against real targets, to successfully compromising elderly victims. We systematically evaluated...
EUVD-2025-120025
Malicious code in comprehensive-silver-penguin npm...
MAL-2025-140999 Malicious code in comprehensive-silver-penguin (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 541381bb28bd073e81cf15b74de3bbb8a6a48a612c12ddd4b7fe62a524767fe5 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
EUVD-2025-117475
Malicious code in comprehensive-scarlet-bear npm...
EUVD-2025-100292
Malicious code in comprehensivelungfishz3n npm...
EUVD-2025-100294
Malicious code in comprehensiveladybugz3n npm...
EUVD-2025-92686
Malicious code in comprehensivesmeltz3n npm...