Lucene search
K

1514 matches found

RedHat Linux
RedHat Linux
added 2026/05/01 2:5 p.m.11 views

Moderate: Red Hat Security Advisory: Red Hat Hardened Images RPMs bug fix and enhancement update

An update for Red Hat Hardened Images RPMs is now available. This update includes the following RPMs: glibc: compat-libpthread-nonshared-2.42-12.hum1 aarch64, x8664 glibc-2.42-12.hum1 aarch64, x8664 glibc-all-langpacks-2.42-12.hum1 aarch64, x8664 glibc-benchtests-2.42-12.hum1 aarch64, x8664...

9.8CVSS5.8AI score0.00451EPSS
Exploits3References7
EUVD
EUVD
added 2026/04/29 3:39 p.m.6 views

EUVD-2026-26245

Helpy contains a stored cross-site scripting vulnerability in the knowledge base Doc rendering logic. An authenticated attacker with admin or agent editor privileges can persist arbitrary HTML or JavaScript in the body field of a knowledge base Doc.This issue affects helpy: 2.8.0...

4.8CVSS5AI score0.00178EPSS
Exploits1References2
CVE
CVE
added 2026/04/29 3:39 p.m.9 views

CVE-2026-40230

CVE-2026-40230 (Helpy 2.8.0) : A stored cross-site scripting vulnerability exists in the knowledge base Doc rendering logic. An authenticated attacker with admin or agent editor privileges can persist arbitrary HTML or JavaScript in the body field of a knowledge base Doc. This is tied to Helpy ve...

5.4CVSS5.1AI score0.00178EPSS
Exploits1References2Affected Software1
NVD
NVD
added 2026/04/28 10:16 p.m.12 views

CVE-2026-7314

A vulnerability was detected in eiceblue spire-doc-mcp-server 1.0.0. This affects the function getdocpath of the file src/spiredocmcp/api/base.py. Performing a manipulation of the argument documentname results in path traversal. The attack can be initiated remotely. The exploit is now public and...

7.5CVSS0.0041EPSS
Exploits0References5
Cvelist
Cvelist
added 2026/04/28 7:45 p.m.31 views

CVE-2026-7314 eiceblue spire-doc-mcp-server base.py get_doc_path path traversal

A vulnerability was detected in eiceblue spire-doc-mcp-server 1.0.0. This affects the function getdocpath of the file src/spiredocmcp/api/base.py. Performing a manipulation of the argument documentname results in path traversal. The attack can be initiated remotely. The exploit is now public and...

7.5CVSS0.0041EPSS
Exploits0References5
Vulnrichment
Vulnrichment
added 2026/04/28 7:45 p.m.5 views

CVE-2026-7314 eiceblue spire-doc-mcp-server base.py get_doc_path path traversal

A vulnerability was detected in eiceblue spire-doc-mcp-server 1.0.0. This affects the function getdocpath of the file src/spiredocmcp/api/base.py. Performing a manipulation of the argument documentname results in path traversal. The attack can be initiated remotely. The exploit is now public and...

7.5CVSS7.2AI score0.0041EPSS
Exploits0References5
ATTACKERKB
ATTACKERKB
added 2026/04/28 7:45 p.m.4 views

CVE-2026-7314

A vulnerability was detected in eiceblue spire-doc-mcp-server 1.0.0. This affects the function getdocpath of the file src/spiredocmcp/api/base.py. Performing a manipulation of the argument documentname results in path traversal. The attack can be initiated remotely. The exploit is now public and...

7.5CVSS7.2AI score0.0041EPSS
Exploits0References5Affected Software1
EUVD
EUVD
added 2026/04/28 7:45 p.m.4 views

EUVD-2026-26151

A vulnerability was detected in eiceblue spire-doc-mcp-server 1.0.0. This affects the function getdocpath of the file src/spiredocmcp/api/base.py. Performing a manipulation of the argument documentname results in path traversal. The attack can be initiated remotely. The exploit is now public and...

7.5CVSS7.2AI score0.0041EPSS
Exploits0References5
CVE
CVE
added 2026/04/28 7:45 p.m.22 views

CVE-2026-7314

The CVE-2026-7314 vulnerability affects eiceblue spire-doc-mcp-server 1.0.0. It targets the function get_doc_path in src/spire_doc_mcp/api/base.py, where manipulating the document_name argument enables path traversal. The issue can be exploited remotely; the public exploit is available, and the p...

7.5CVSS7.2AI score0.0041EPSS
Exploits0References5
CNNVD
CNNVD
added 2026/04/28 12:0 a.m.12 views

Spire.Doc MCP Server 路径遍历漏洞

Spire.Doc MCP Server is a tool provided by E-iceblue Product Family for individual developers, allowing them to work with Word documents without using Microsoft Word. Version 1.0.0 of Spire.Doc MCP Server contains a path traversal vulnerability. This vulnerability arises from the operation of the...

7.5CVSS7.2AI score0.0041EPSS
Exploits0References1
CNNVD
CNNVD
added 2026/04/28 12:0 a.m.11 views

Spire.Doc MCP Server 路径遍历漏洞

Spire.Doc MCP Server is a tool provided by E-iceblue Product Family for individual developers, allowing them to work with Word documents without the need for Microsoft Word. Version 0.1.1 of Spire.Doc MCP Server contains a path traversal vulnerability. This vulnerability stems from the getpdfpath...

7.5CVSS7.2AI score0.0041EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2026/04/28 12:0 a.m.10 views

PT-2026-35827

A vulnerability was detected in eiceblue spire-doc-mcp-server 1.0.0. This affects the function get doc path of the file src/spire doc mcp/api/base.py. Performing a manipulation of the argument document name results in path traversal. The attack can be initiated remotely. The exploit is now public...

7.5CVSS7.2AI score0.0041EPSS
Exploits0References9
Positive Technologies
Positive Technologies
added 2026/04/21 12:0 a.m.40 views

PT-2026-34182

A vulnerability was identified in Sanluan PublicCMS up to 6.202506.d. Affected by this vulnerability is the function ZipSecureFile.setMinflateRatio of the file common/src/main/java/com/publiccms/common/tools/DocToHtmlUtils.java. Such manipulation leads to resource consumption. It is possible to...

5.3CVSS5.4AI score0.00267EPSS
Exploits0References6
OSV
OSV
added 2026/04/21 12:0 a.m.4 views

OPENSUSE-SU-2026:10596-1 python-lxml-doc-6.1.0-1.1 on GA media

These are all security issues fixed in the python-lxml-doc-6.1.0-1.1 package on the GA media of openSUSE Tumbleweed...

7.5CVSS5.8AI score0.00324EPSS
Exploits1References1
OSSF Malicious Packages
OSSF Malicious Packages
added 2026/04/20 6:34 a.m.7 views

Malicious code in npm-doc-deploy (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 8a8ae6448e13630c5243e98e1794e9b2f57b0e999d4c31687f0db0f1665496f9 The package npm-doc-deploy was found to contain malicious code. Source: ghsa-malware f7938c30cf6da645723648c4c43979c97d7c006933fb24ccab60154f1cc5d084...

5.7AI score
Exploits0References1
RedHat Linux
RedHat Linux
added 2026/04/17 11:29 a.m.6 views

Important: Red Hat Security Advisory: Red Hat Hardened Images RPMs bug fix and enhancement update

An update for Red Hat Hardened Images RPMs is now available. This update includes the following RPMs: valkey: valkey-9.0.3-1.2.hum1 aarch64, x8664 valkey-compat-redis-9.0.3-1.2.hum1 noarch valkey-compat-redis-devel-9.0.3-1.2.hum1 noarch valkey-devel-9.0.3-1.2.hum1 aarch64, x8664...

7.5CVSS5.8AI score0.00552EPSS
Exploits0References3
Vulnrichment
Vulnrichment
added 2026/04/13 12:0 a.m.3 views

CVE-2025-69627

Nitro PDF Pro for Windows 14.41.1.4 contains a heap use-after-free vulnerability in the implementation of the JavaScript method this.mailDoc. During execution, an internal XID object is allocated and then freed prematurely, after which the freed pointer is still passed into UI and logging helper...

5.8AI score0.00199EPSS
Exploits0References1
Cvelist
Cvelist
added 2026/04/13 12:0 a.m.30 views

CVE-2025-69627

Nitro PDF Pro for Windows 14.41.1.4 contains a heap use-after-free vulnerability in the implementation of the JavaScript method this.mailDoc. During execution, an internal XID object is allocated and then freed prematurely, after which the freed pointer is still passed into UI and logging helper...

0.00199EPSS
Exploits0References1
RedHat Linux
RedHat Linux
added 2026/04/11 12:22 a.m.8 views

Low: Red Hat Security Advisory: Red Hat Hardened Images RPMs bug fix and enhancement update

An update for Red Hat Hardened Images RPMs is now available. This update includes the following RPMs: uriparser: mingw32-uriparser-1.0.0-2.1.hum1 noarch mingw64-uriparser-1.0.0-2.1.hum1 noarch uriparser-1.0.0-2.1.hum1 aarch64, x8664 uriparser-devel-1.0.0-2.1.hum1 aarch64, x8664...

2.9CVSS5.8AI score0.0012EPSS
Exploits0References3
RedHat Linux
RedHat Linux
added 2026/04/10 7:54 p.m.9 views

Moderate: Red Hat Security Advisory: Red Hat Hardened Images RPMs bug fix and enhancement update

An update for Red Hat Hardened Images RPMs is now available. This update includes the following RPMs: glib2: glib2-2.88.0-1.1.hum1 aarch64, x8664 glib2-devel-2.88.0-1.1.hum1 aarch64, x8664 glib2-doc-2.88.0-1.1.hum1 aarch64, x8664 glib2-static-2.88.0-1.1.hum1 aarch64, x8664...

9.8CVSS6.6AI score0.00754EPSS
Exploits1References7
Rows per page
Query Builder