Lucene search
K

5 matches found

Cvelist
Cvelist
added 5 days ago27 views

CVE-2026-38976

mrubyc through 3.4.1 was found to contain a NULL pointer dereference in src/vm.c in opsuper / OPSUPER due to a missing runtime guard for top-level super...

0.00339EPSS
Exploits0References3
OSV
OSV
added 2026/05/20 12:0 a.m.10 views

UBUNTU-CVE-2026-43620

Rsync version 3.4.2 and prior contain a receiver-side out-of-bounds array read vulnerability in recvfiles in receiver.c that allows a malicious rsync server to crash the rsync client process. Attackers can exploit the vulnerability by setting CFINCRECURSE in compatibility flags and sending a...

6.9CVSS5.8AI score0.00503EPSS
Exploits0References7
Hacker One
Hacker One
added 2026/05/13 9:50 p.m.24 views

curl: CURLOPT_HSTS_CTRL disables shared HSTS without share guard — use-after-free and double-free

Hi all, CURLOPTHSTSCTRL set to a value without CURLHSTSENABLE unconditionally frees the easy's HSTS object — even when that object is shared via a CURLSH. The result is a use-after-free and a double-free on the shared 48-byte struct hsts block when the share or any other linked easy is later torn...

9.8CVSS6.7AI score0.03398EPSS
Exploits1
ATTACKERKB
ATTACKERKB
added 2026/03/31 8:51 p.m.2 views

CVE-2026-34732

WWBN AVideo is an open source video platform. In versions 26.0 and prior, the AVideo CreatePlugin template for list.json.php does not include any authentication or authorization check. While the companion templates add.json.php and delete.json.php both require admin privileges, the list.json.php...

5.3CVSS5.9AI score0.00376EPSS
Exploits1References2Affected Software1
CVE
CVE
added 2026/02/26 10:36 p.m.14 views

CVE-2026-28216

CVE-2026-28216 affects Hoppscotch before 2026.2.0. The issue is an improper authorization check in the user environments flow: the updateUserEnvironment mutation uses GqlAuthGuard but lacks a @GqlUser() decorator, so the service can process only the environment ID (no ownership filter) and execut...

8.3CVSS5.6AI score0.00394EPSS
Exploits1References2Affected Software1
Rows per page
Query Builder