CVE-2026-45670

Nuxt is an open-source web development framework for Vue.js. In @nuxt/rspack-builder and @nuxt/webpack-builder versions 3.15.4 to before 3.21.6, and 4.0.0-alpha.1 to before 4.4.6, there is an incomplete fix for GHSA-4gf7-ff8x-hq99. Source code may be stolen during dev when using the webpack /...

CVE-2025-68155 @vitejs/plugin-rsc has Arbitrary File Read via `/__vite_rsc_findSourceMapURL` Endpoint on Development

@vitejs/plugin-rs provides React Server Components RSC support for Vite. Prior to version 0.5.8, the /viterscfindSourceMapURL endpoint in @vitejs/plugin-rsc allows unauthenticated arbitrary file read during development mode. An attacker can read any file accessible to the Node.js process by sendi...

PT-2025-34031 · Jetbrains · Intellij Idea

Name of the Vulnerable Software and Affected Versions: JetBrains IntelliJ IDEA versions prior to 2025.2 Description: A HTML injection issue was possible through the Remote Development feature. Recommendations: Update JetBrains IntelliJ IDEA to version 2025.2 or later...

OpenJS Electron Security Bypass Vulnerability (CNVD-2021-21922)

OpenJS Electron is the OpenJS Foundation of an open source framework for desktop GUI application development . A security vulnerability exists in the contextIsolation module in OpenJS Electron versions prior to 7.2.4, prior to 8.2.4, and prior to 9.0.0-beta21. An attacker can exploit the...

Netwide Assembler Code Issue Vulnerability

Netwide Assembler NASM is a Linux-based assembler. The product is capable of creating binaries and writing bootloaders. A code issue vulnerability exists in Netwide Assembler. The vulnerability stems from an improperly designed or implemented code development process for a networked system or...

Directory Traversal in tmock

tmock is a static file server. tmock is vulnerable to a directory traversal issue, giving an attacker access to the filesystem by placing "../" in the url. Example request: http GET /../../../../../../../../../../etc/passwd HTTP/1.1 host: localhost and server Response: http HTTP/1.1 200 OK Date:...

The vulnerability of the CentOS operating system allows a malicious attacker to compromise the confidentiality, integrity, and accessibility of protected information.

The vulnerability of the libxslt-devel-1.1.11 package on the CentOS operating system can lead to violations of confidentiality, integrity, and accessibility of protected information. This vulnerability can be exploited remotely...

Mozilla/5.0 (X11; U; Linux i686; en-US; rv:1.6b) Gecko/20040101

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - Gentoo Linux Security Advisory GLSA 200402-01 - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - http://security.gentoo.org - - - - - - - - - - - - - - - ...