CVE-2026-35599

creationtimestamp| type| source ---|---|--- 2026-04-10 15:34:41+00:00| published-proof-of-concept| https://github.com/advisories/GHSA-r4fg-73rc-hhh7...

Use After Free

Overview Affected versions of this package are vulnerable to Use After Free in the response file processing due to a dangling pointer to freed memory being stored in the global dependfile and later dereferenced after the response-file buffer is freed. An attacker can cause data corruption or...

GHSA-3P68-RC4W-QGX5 vulnerabilities

Vulnerabilities for packages: kubeflow-pipelines, opensearch-dashboards, lerna, saf, langfuse, kubeflow-centraldashboard, prism, jitsucom-jitsu...

GHSA-P9FF-H696-F583 vulnerabilities

Vulnerabilities for packages: vitess, langfuse, langfuse-fips, vite...

GHSA-V7PX-3835-7GJX

creationtimestamp| type| source ---|---|--- 2026-04-09 23:30:43+00:00| seen| Telegram/1cCualjPQDoYUsDnolnQpk7NGC4b1xwJPWps9hRWMxLLCE...

GHSA-JHXM-H53P-JM7W

creationtimestamp| type| source ---|---|--- 2026-04-09 21:22:00+00:00| seen| Telegram/6RgwCZFc4Ae1eVERGO141ZaFCzdAoL4kSRzFJKo9cZLKyo...

GHSA-XRW6-GWF8-VVR9

creationtimestamp| type| source ---|---|--- 2026-04-09 19:22:33+00:00| seen| Telegram/HFSRmPQIuJm0mhlgKTjgnUZc9IKWtHrGIbUWbiDZawdQwcQ...

CVE-2026-40077

creationtimestamp| type| source ---|---|--- 2026-04-09 17:40:19+00:00| published-proof-of-concept| https://github.com/henrygd/beszel/security/advisories/GHSA-5f5r-95pg-xrpm...

CVE-2026-35040

creationtimestamp| type| source ---|---|--- 2026-04-09 12:50:48+00:00| published-proof-of-concept| https://github.com/nearform/fast-jwt/security/advisories/GHSA-3j8v-cgw4-2g6q...

Wasmtime with Winch compiler backend may allow a sandbox-escaping memory access

This is an entry in the RustSec database for the Wasmtime security advisory located at https://github.com/bytecodealliance/wasmtime/security/advisories/GHSA-xx5w-cvp6-jv83 For more information see the GitHub-hosted security advisory...

Panic when lifting `flags` component value

This is an entry in the RustSec database for the Wasmtime security advisory located at https://github.com/bytecodealliance/wasmtime/security/advisories/GHSA-m758-wjhj-p3jq For more information see the GitHub-hosted security advisory...

CVE-2026-40152

creationtimestamp| type| source ---|---|--- 2026-04-09 10:01:49+00:00| published-proof-of-concept| https://github.com/MervinPraison/PraisonAI/security/advisories/GHSA-7j2f-xc8p-fjmq...

The long road to your crypto: ClipBanker and its marathon infection chain

At the start of the year, a certain Trojan caught our eye due to its incredibly long infection chain. In most cases, it kicks off with a web search for "Proxifier". Proxifiers are speciaized software designed to tunnel traffic for programs that do not natively support proxy servers. They are a...

Exploit for CVE-2026-40271

Lazarus Group: 19-Day A/B Test Campaign Analysis TLP:CLEA...

GHSA-479C-33WC-G2PG

creationtimestamp| type| source ---|---|--- 2026-04-09 01:27:07+00:00| seen| Telegram/CihYo3BrEf6YGxiGwCEATnWAB3StjZgrXU02lSezsa6vAg...

Security Concerns in Generative AI Coding Assistants: Insights from Online Discussions on GitHub Copilot

Generative Artificial Intelligence GenAI has become a central component of many development tools e.g., GitHub Copilot that support software practitioners across multiple programming tasks, including code completion, documentation, and bug detection. However, current research has identified...

GHSA-53MR-6C8Q-9789 vulnerabilities

Vulnerabilities for packages: litellm, airflow...

GHSA-G7C4-WV7Q-GCC6 vulnerabilities

Vulnerabilities for packages: glibc...

CVE-2026-34166

creationtimestamp| type| source ---|---|--- 2026-04-08 13:25:28+00:00| published-proof-of-concept| https://github.com/harttle/liquidjs/security/advisories/GHSA-mmg9-6m6j-jqqx...

H4C-WEB

H4C-WEB !/bin/bash =======================================...