3 matches found
PT-2026-54868
Name of the Vulnerable Software and Affected Versions OPNsense versions prior to 26.1.11 OPNsense versions prior to 26.4.1p1 Description An arbitrary file write flaw allows for remote code execution with root privileges. Recommendations Update to version 26.1.11. Update to version 26.4.1p1...
PT-2026-42767
Name of the Vulnerable Software and Affected Versions DOMPurify version 3.4.4 Description DOMPurify allows the element by default, which enables a bypass of the sanitization process. This occurs because browsers may re-clone an XSS payload after the sanitizer has already processed the subtree...
PT-2026-39464
soundcloud-rpc is a SoundCloud Client with Discord Rich Presence, Dark Mode, Last.fm and AdBlock support. Prior to 0.1.8, a track title containing an HTML payload executed locally in the Electron app. This means attacker-controlled SoundCloud track metadata can lead to local command execution on...