544 matches found
free5GC 安全漏洞
free5GC is an open-source project for the 5th generation 5G mobile core network. Versions of free5GC prior to 4.2.2 contained security vulnerabilities. These vulnerabilities stemmed from the lack of inbound OAuth2/bearer-token authorization when the NEF module mounted the nnef-oam routing group...
Drupal to Release Urgent Core Security Updates on May 20, Sites Told to Prepare
Drupal has issued an alert stating that it intends to release a "core security release" for all supported branches on May 20, 2026, from 5-9 p.m. UTC. "The Drupal Security Team urges you to reserve time for core updates at that time because exploits might be developed within hours or days," the...
CVE-2026-42551
creationtimestamp| type| source ---|---|--- 2026-04-29 13:03:34+00:00| published-proof-of-concept| https://github.com/flightphp/core/security/advisories/GHSA-vxrr-w42w-w76g...
free5GC 代码问题漏洞
free5GC is an open-source project for the 5th generation 5G mobile core network. Versions of free5GC SMF 1.4.1 and earlier contain code vulnerabilities. These vulnerabilities arise from kernel crashes when processing malformed PFCP SessionReportRequest messages, which may lead to process...
The security implementation gap: Why Microsoft is supporting Operation Winter SHIELD
Every conversation I have with information security leaders tends to land in the same place. People understand what matters. They know the frameworks, the controls, and the guidance. They can explain why identity security, patching, and access control are critical. And yet incidents keep happenin...
CVE-2026-0895
The extension extends TYPO3’ FileSpool component, which was vulnerable to Insecure Deserialization prior to TYPO3-CORE-SA-2026-004 https://typo3.org/security/advisory/typo3-core-sa-2026-004 . Since the related fix is overwritten by the extension, using the extension with a patched TYPO3 core...
CVE-2025-23204
API Platform Core is a system to create hypermedia-driven REST and GraphQL APIs. Starting in version 3.3.8, a security check that gets called after GraphQl resolvers is always replaced by another one as there's no break in a clause. As this falls back to security, the impact is there only when...
org.apache.causeway.core:causeway-core-config (=4.0.0-M1), org.apache.causeway.core:causeway-core-interaction (=4.0.0-M1) +105 more potentially affected by CVE-2025-64408 via org.apache.causeway.core:causeway-applib (=4.0.0-M1)
org.apache.causeway.core:causeway-applib MAVEN version =4.0.0-M1 is affected by a known vulnerability. The following packages have a transitive dependency on org.apache.causeway.core:causeway-applib and may be impacted: - org.apache.causeway.core:causeway-core-config =4.0.0-M1 -...
jackson-annotations, jackson-core, jackson-databind, jackson-jaxrs-providers, and jackson-modules-base security update
An update is available for jackson-core, jackson-jaxrs-providers, jackson-databind, jackson-modules-base, jackson-annotations. This update affects Rocky Linux 9. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from...
EUVD-2021-21877
Malware in sbrugna...
EUVD-2017-9205
Malware in sbrugna...
EUVD-2018-3361
Malware in sbrugna...
EUVD-2019-0782
Malware in sbrugna...
EUVD-2021-18751
Malware in sbrugna...
EUVD-2019-6848
Malware in sbrugna...
EUVD-2022-27217
Malicious code in bioql PyPI...
EUVD-2023-0129
Malicious code in bioql PyPI...
EUVD-2025-17136
Malicious code in bioql PyPI...
EUVD-2023-2544
Malicious code in bioql PyPI...
CVE-2025-58674
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in WordPress allows Stored XSS. WordPress core security team is aware of the issue and working on a fix. This is low severity vulnerability that requires an attacker to have Author or higher user...