973 matches found
@cenk1cenk2/renovate-config (>=2.0.0 <=2.3.148), @jamietanna/patch-testing (>=0.1.0 <=0.2.28) +8 more potentially affected by unknown CVE via renovate (>=32.241.11 <=42.66.1)
renovate NPM version =32.241.11, =2.0.0, =0.1.0, =0.1.0, =0.5.0, =0.1.0, =0.1.0, =0.0.1, =0.19.0 - @zotero-chinese/renovate-config =1.0.3 Source cves: unknown CVE Source advisory: OSV:GHSA-PFQ2-HH62-7M96...
GHSA-MQW7-C5GG-XQ97
creationtimestamp| type| source ---|---|--- 2026-01-13 14:36:18+00:00| seen| https://infosec.exchange/users/cR0w/statuses/115888290409404878...
GHSA-527X-5WRF-22M2 vulnerabilities
Vulnerabilities for packages: cloudflared...
GHSA-74P9-4V44-WWX5 vulnerabilities
Vulnerabilities for packages: python...
GHSA-9WX5-5C3V-3QMX vulnerabilities
Vulnerabilities for packages: linux-vmware, linux-qemu, linux-qemu-melange...
GHSA-G7MW-CR59-R458 vulnerabilities
Vulnerabilities for packages: linux-vmware, linux-qemu, linux-qemu-melange...
CVE-2022-31524
The PureStorage-OpenConnect/swagger repository through 1.1.5 on GitHub allows absolute path traversal because the Flask sendfile function is used unsafely...
CVE-2022-31529
The cinemaproject/monorepo repository through 2021-03-03 on GitHub allows absolute path traversal because the Flask sendfile function is used unsafely...
CVE-2021-41188
Shopware is open source e-commerce software. Versions prior to 5.7.6 contain a cross-site scripting vulnerability. This issue is patched in version 5.7.6. Two workarounds are available. Using the security plugin or adding a particular following config to the .htaccess file will protect against...
CVE-2023-25560
DataHub is an open-source metadata platform. The AuthServiceClient which is responsible for creation of new accounts, verifying credentials, resetting them or requesting access tokens, crafts multiple JSON strings using format strings with user-controlled data. This means that an attacker may be...
GHSA-36HM-QXXP-PG3M vulnerabilities
Vulnerabilities for packages: langfuse...
GHSA-5FP7-G646-CCF4
creationtimestamp| type| source ---|---|--- 2026-01-08 21:31:12+00:00| seen| https://infosec.exchange/users/cR0w/statuses/115861610292219134 2026-01-10 04:02:47+00:00| published-proof-of-concept| Telegram/xCOXvC0nHIdc2RZU8QnHf4AhOuGrMPNqhpiQVHQJKZvyIjM...
@agent-native/core (>=0.4.2 <=0.14.6), @akrc/fnpm (=1.13.1) +111 more potentially affected by CVE-2025-61686 via @react-router/node (>=7.0.0 <=7.9.4-pre.0)
@react-router/node NPM version =7.0.0, =0.4.2, =0.2.3, =7.8.3-alpha.1, =0.9.1, =0.7.1, =0.1.0, =0.1.0, =0.0.1-dev.8, =0.0.1-0, =0.0.1-alpha.6, =3.8.8, =0.3.1, =0.0.13, =0.0.53 and more Source cves: CVE-2025-61686 Source advisory: OSV:GHSA-9583-H5HC-X8CW...
GHSA-3C6G-7V4G-5XCM vulnerabilities
Vulnerabilities for packages: postgresql...
GHSA-JF52-3F2H-H9J5
creationtimestamp| type| source ---|---|--- 2026-01-08 11:01:23+00:00| published-proof-of-concept| Telegram/2H0tuRFHJAYb3wZdMSBr18E38TWvMjuQyl8zYKGkwJ2kf8 2026-01-24 21:26:43+00:00| seen| https://gist.github.com/alon710/b58086582ecd8cde824806d1ad4c5b1c 2026-01-24 22:42:07+00:00| seen|...
GHSA-36HM-QXXP-PG3M
creationtimestamp| type| source ---|---|--- 2026-01-08 01:59:08+00:00| seen| https://bsky.app/profile/azu.bsky.social/post/3mbuv2h3plo2x 2026-01-08 16:03:29+00:00| seen| Telegram/eK7Ikx8B4zhc3RXJcMY-EZtQzuwPO0YG4YMu0LZCUnsVEJo 2026-01-24 21:26:46+00:00| seen|...
GHSA-7VHP-VF5G-R2FW
creationtimestamp| type| source ---|---|--- 2026-01-07 23:09:29+00:00| seen| Telegram/FpDGAESLT2b6cAqL19jI0amMTjRd3R14Wu3P5pTmHCNxdqI...
GHSA-QPXX-2FWX-F5QJ vulnerabilities
Vulnerabilities for packages: pgbouncer...
GHSA-F7VH-QWP3-X37M vulnerabilities
Vulnerabilities for packages: druid...
GHSA-G23H-7VF9-XC25 vulnerabilities
Vulnerabilities for packages: difftastic...