GHSA-8JXR-PR72-R468 vulnerabilities

Vulnerabilities for packages: nacos, nacos-docker...

CVE-2026-35568 vulnerabilities

Vulnerabilities for packages: nacos, nacos-docker...

Security Bulletin: IBM Planning Analytics Cartridge has addressed a security vulnerability in Docker CLI (CVE-2025-15558)

Summary IBM Planning Analytics Cartridge is considered affected by a vulnerability in Docker CLI Vulnerability Details CVEID:CVE-2025-15558 DESCRIPTION: Docker CLI for Windows searches for plugin binaries in C:\ProgramData\Docker\cli-plugins, a directory that does not exist by default. A...

Decepticon

⚡ Decepticon — Autonomous Multi-Agent Offensive Security !L...

blind-sqli-lab

🔬 Blind SQL Injection Lab — Time-Based PostgreSQL + FastAPI...

SUSE: Security Advisory (SUSE-SU-2026:20976-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2026 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Medium: docker

Issue Overview: url.Parse insufficiently validated the host/authority component and accepted some invalid URLs. CVE-2026-25679 On Unix platforms, when listing the contents of a directory using File.ReadDir or File.Readdir the returned FileInfo could reference a file outside of the Root in which t...

infosec-notebook

infosec-notebook Personal cybersecurity notes and references...

Exploit for Improper Handling of Exceptional Conditions in Apache Struts

Attacker Lab: CVE-2017-5638 & CVE-2021-41773 A 7-host Docker-...

GHSA-7MR4-XJXG-34G6 vulnerabilities

Vulnerabilities for packages: kube-arangodb, grafana-rollout-operator, oauth2-proxy, ko, chartmuseum, istio, kubernetes-dashboard-api, yunikorn-k8shim, k8ssandra-operator, bank-vaults, nginx-prometheus-exporter, cilium-cli, kubernetes-dashboard-auth, gitlab-kas, kube-state-metrics, snyk-cli,...

CVE-2026-32289 vulnerabilities

Vulnerabilities for packages: kube-arangodb, grafana-rollout-operator, oauth2-proxy, ko, chartmuseum, istio, kubernetes-dashboard-api, yunikorn-k8shim, k8ssandra-operator, bank-vaults, nginx-prometheus-exporter, cilium-cli, kubernetes-dashboard-auth, gitlab-kas, kube-state-metrics, snyk-cli,...

CVE-2026-32281 vulnerabilities

Vulnerabilities for packages: kube-arangodb, minio-operator, oauth2-proxy, chartmuseum, nfs-subdir-external-provisioner, istio, kubernetes-dashboard-api, nri-consul, kubernetes-dashboard-auth, gitlab-kas, kube-state-metrics, neuvector-dbgen, snyk-cli, argo-events, splunk-otel-collector, nsc,...

GHSA-X4JJ-H2V8-HQQV vulnerabilities

Vulnerabilities for packages: trivy, datadog-agent, influxd, caddy, commercial-chainloop-backend, ingress-nginx-controller, elastic-agent, rabbitmq-messaging-topology-operator, kube-state-metrics, rclone-fips, snyk-cli, gatekeeper-fips, ko-fips, gitaly, juicefs, rke2-runtime, sonobuoy, kyverno,...

GHSA-7MR4-XJXG-34G6 vulnerabilities

Vulnerabilities for packages: trivy, knative-net-istio-fips, datadog-agent, influxd, caddy, commercial-chainloop-backend, crossplane-provider-azure-managedidentity, gatus-fips, ingress-nginx-controller, docker-machine-driver-harvester, eks-node-monitoring-agent, terraform-provider-azuread,...

CVE-2026-32288 vulnerabilities

Vulnerabilities for packages: trivy, datadog-agent, influxd, caddy, commercial-chainloop-backend, ingress-nginx-controller, elastic-agent, rabbitmq-messaging-topology-operator, kube-state-metrics, rclone-fips, snyk-cli, gatekeeper-fips, ko-fips, gitaly, juicefs, rke2-runtime, sonobuoy, kyverno,...

CVE-2026-32289 vulnerabilities

Vulnerabilities for packages: trivy, knative-net-istio-fips, datadog-agent, influxd, caddy, commercial-chainloop-backend, crossplane-provider-azure-managedidentity, gatus-fips, ingress-nginx-controller, docker-machine-driver-harvester, eks-node-monitoring-agent, terraform-provider-azuread,...

GHSA-JRG3-GFJW-HM96 vulnerabilities

Vulnerabilities for packages: trivy, knative-net-istio-fips, kapp, datadog-agent, influxd, caddy, commercial-chainloop-backend, crossplane-provider-azure-managedidentity, prometheus-pushgateway-fips, http-echo, gatus-fips, kube-bench, custom-pod-autoscaler-fips, ingress-nginx-controller,...

GHSA-5W89-2C2X-6X66 vulnerabilities

Vulnerabilities for packages: crossplane-provider-azure-managedidentity, custom-pod-autoscaler-fips, ingress-nginx-controller, crossplane-provider-aws-sqs-fips, rabbitmq-messaging-topology-operator, goose, git-lfs, pvc-autoresizer, newrelic-nri-statsd, gitaly, thanos-receive-controller-fips,...

CVE-2026-32283 vulnerabilities

Vulnerabilities for packages: trivy, knative-net-istio-fips, kapp, datadog-agent, influxd, caddy, commercial-chainloop-backend, crossplane-provider-azure-managedidentity, prometheus-pushgateway-fips, http-echo, gatus-fips, kube-bench, custom-pod-autoscaler-fips, ingress-nginx-controller,...

CVE-2026-32281 vulnerabilities

Vulnerabilities for packages: trivy, knative-net-istio-fips, kapp, datadog-agent, influxd, caddy, commercial-chainloop-backend, crossplane-provider-azure-managedidentity, prometheus-pushgateway-fips, http-echo, gatus-fips, kube-bench, custom-pod-autoscaler-fips, ingress-nginx-controller,...