Lucene search
K

98200 matches found

GithubExploit
GithubExploit
added 1 hour ago6 views

terasploit

Terasploit Framework An opensource python exploitation fram...

6AI score
Exploits0
HashiCorp Security Advisories
HashiCorp Security Advisories
added 1 hour ago3 views

Nomad Docker driver vulnerable to host namespace bypass on Linux

HashiCorp Nomad and Nomad Enterprise did not enforce the allowprivileged restriction for the Docker task driver’s host namespace mode options. This may allow an authenticated job submitter to run a container in a host namespace and access information belonging to the host or to other workloads on...

6AI score
Exploits0Affected Software1
NVD
NVD
added 1 hour ago4 views

CVE-2026-59926

Mistune is a Python Markdown parser with renderers and plugins. Prior to 3.2.1, renderadmonition in src/mistune/directives/admonition.py concatenates the Admonition directive :class: option into the HTML class attribute without escaping, allowing attribute injection and cross-site scripting even...

5.3CVSS
Exploits0References3
OSSF Malicious Packages
OSSF Malicious Packages
added 2 hours ago3 views

Malicious code in ec-checker (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector dc8245936c8beb04bdb2bfe31a8117133823e3ffd6ed3e165d89b822dfab4a9c package.json declares a preinstall script that runs npm install @sentry/node && node examples/verify.js. examples/verify.js initializes the package's...

5.9AI score
Exploits0References1
NVD
NVD
added 2 hours ago6 views

CVE-2026-59877

protobufjs compiles protobuf definitions into JavaScript JS functions. Prior to 7.6.5 and 8.6.6, protobufjs parsed option names by advancing through schema tokens until reaching an = token without checking for end of input, so a crafted .proto schema that opens an option declaration and ends...

5.3CVSS
Exploits0References6
Cvelist
Cvelist
added 2 hours ago2 views

CVE-2026-59926 Mistune: XSS via unescaped class option in Admonition directive

Mistune is a Python Markdown parser with renderers and plugins. Prior to 3.2.1, renderadmonition in src/mistune/directives/admonition.py concatenates the Admonition directive :class: option into the HTML class attribute without escaping, allowing attribute injection and cross-site scripting even...

5.3CVSS
Exploits0References3
ATTACKERKB
ATTACKERKB
added 2 hours ago2 views

CVE-2026-59926

Mistune is a Python Markdown parser with renderers and plugins. Prior to 3.2.1, renderadmonition in src/mistune/directives/admonition.py concatenates the Admonition directive :class: option into the HTML class attribute without escaping, allowing attribute injection and cross-site scripting even...

5.3CVSS5.8AI score
Exploits0References4Affected Software1
CVE
CVE
added 2 hours ago6 views

CVE-2026-59926

CVE-2026-59926 : Mistune (Python Markdown parser) contains an XSS due to render_admonition() in src/mistune/directives/admonition.py failing to escape the Admonition directive :class: option when constructing the HTML class attribute. This allows attribute injection and cross-site scripting even ...

5.3CVSS5.8AI score
Exploits0References3
EUVD
EUVD
added 2 hours ago3 views

EUVD-2026-42334

Mistune is a Python Markdown parser with renderers and plugins. Prior to 3.2.1, renderadmonition in src/mistune/directives/admonition.py concatenates the Admonition directive :class: option into the HTML class attribute without escaping, allowing attribute injection and cross-site scripting even...

5.3CVSS5.8AI score
Exploits0References3
Vulnrichment
Vulnrichment
added 3 hours ago3 views

CVE-2026-59877 protobufjs: Denial of Service via infinite loop in .proto option parsing

protobufjs compiles protobuf definitions into JavaScript JS functions. Prior to 7.6.5 and 8.6.6, protobufjs parsed option names by advancing through schema tokens until reaching an = token without checking for end of input, so a crafted .proto schema that opens an option declaration and ends...

5.3CVSS6AI score
Exploits0References6
Cvelist
Cvelist
added 3 hours ago5 views

CVE-2026-59877 protobufjs: Denial of Service via infinite loop in .proto option parsing

protobufjs compiles protobuf definitions into JavaScript JS functions. Prior to 7.6.5 and 8.6.6, protobufjs parsed option names by advancing through schema tokens until reaching an = token without checking for end of input, so a crafted .proto schema that opens an option declaration and ends...

5.3CVSS
Exploits0References6
ATTACKERKB
ATTACKERKB
added 3 hours ago1 views

CVE-2026-59877

protobufjs compiles protobuf definitions into JavaScript JS functions. Prior to 7.6.5 and 8.6.6, protobufjs parsed option names by advancing through schema tokens until reaching an = token without checking for end of input, so a crafted .proto schema that opens an option declaration and ends...

5.3CVSS6AI score
Exploits0References7Affected Software1
CVE
CVE
added 3 hours ago5 views

CVE-2026-59877

CVE-2026-59877 affects protobufjs versions prior to 7.6.5 and 8.6.6, where parsing of .proto option declarations can loop indefinitely when the input ends prematurely. The issue occurs during the parsing of option names and may affect Root.load and Root.loadSync, potentially causing a Denial of S...

5.3CVSS6AI score
Exploits0References6
EUVD
EUVD
added 3 hours ago2 views

EUVD-2026-42310

protobufjs compiles protobuf definitions into JavaScript JS functions. Prior to 7.6.5 and 8.6.6, protobufjs parsed option names by advancing through schema tokens until reaching an = token without checking for end of input, so a crafted .proto schema that opens an option declaration and ends...

5.3CVSS6AI score
Exploits0References6
NVD
NVD
added 3 hours ago3 views

CVE-2026-49145

App::Ack versions through 3.10.0 for Perl read arbitrary files via --files-from in a project .ackrc. ack searches up the directory hierarchy from the current directory for a project .ackrc and loads its options. The project-source option blocklist in App::Ack::ConfigLoader does not include...

7.5CVSS
Exploits0References1
AlpineLinux
AlpineLinux
added 4 hours ago9 views

CVE-2026-49145

App::Ack versions through 3.10.0 for Perl read arbitrary files via --files-from in a project .ackrc. ack searches up the directory hierarchy from the current directory for a project .ackrc and loads its options. The project-source option blocklist in App::Ack::ConfigLoader does not include...

7.5CVSS6AI score
Exploits0
Vulnrichment
Vulnrichment
added 4 hours ago2 views

CVE-2026-49145 App::Ack versions through 3.10.0 for Perl read arbitrary files via --files-from in a project .ackrc

App::Ack versions through 3.10.0 for Perl read arbitrary files via --files-from in a project .ackrc. ack searches up the directory hierarchy from the current directory for a project .ackrc and loads its options. The project-source option blocklist in App::Ack::ConfigLoader does not include...

6AI score
Exploits0References1
ATTACKERKB
ATTACKERKB
added 4 hours ago2 views

CVE-2026-49145

App::Ack versions through 3.10.0 for Perl read arbitrary files via --files-from in a project .ackrc. ack searches up the directory hierarchy from the current directory for a project .ackrc and loads its options. The project-source option blocklist in App::Ack::ConfigLoader does not include...

7.5CVSS6AI score
Exploits0References2
Cvelist
Cvelist
added 4 hours ago6 views

CVE-2026-49145 App::Ack versions through 3.10.0 for Perl read arbitrary files via --files-from in a project .ackrc

App::Ack versions through 3.10.0 for Perl read arbitrary files via --files-from in a project .ackrc. ack searches up the directory hierarchy from the current directory for a project .ackrc and loads its options. The project-source option blocklist in App::Ack::ConfigLoader does not include...

Exploits0References1
EUVD
EUVD
added 4 hours ago2 views

EUVD-2026-42288

App::Ack versions through 3.10.0 for Perl read arbitrary files via --files-from in a project .ackrc. ack searches up the directory hierarchy from the current directory for a project .ackrc and loads its options. The project-source option blocklist in App::Ack::ConfigLoader does not include...

7.5CVSS6AI score
Exploits0References1
Rows per page
Query Builder