abc-network (>=0.1.0 <=0.1.3), accelerometry-annotator (>=3.2.0 <=3.4.2) +192 more potentially affected by CVE-2026-21883 via bokeh (>=3.0.0 <=3.8.1)

bokeh PYPI version =3.0.0, =0.1.0, =3.2.0, =0.2.1, =2.3.0, =1.0.0, =3.2.2, =0.3.1.1, =1.77.5, =0.2.0, =0.1.1, =0.1.0, =1.4.0, =1.0.1, =1.2.3 and more Source cves: CVE-2026-21883 Source advisory: SNYK:PYTHON-BOKEH-14894275...

EUVD-2020-30575

Malware in sbrugna...

EUVD-2025-14966

Malicious code in bioql PyPI...

MAL-2025-43841 Malicious code in coach-improve-screen (npm)

The package coach-improve-screen was found to contain malicious code...

Malicious code in coach-improve-screen (npm)

The package coach-improve-screen was found to contain malicious code...

CVE-2025-22501

Improper Neutralization of Script-Related HTML Tags in a Web Page Basic XSS vulnerability in Improve My City Improve My City improve-my-city allows Reflected XSS.This issue affects Improve My City: from n/a through = 1.6...

CVE-2025-22501

Improper Neutralization of Script-Related HTML Tags in a Web Page Basic XSS vulnerability in Improve My City Improve My City improve-my-city allows Reflected XSS.This issue affects Improve My City: from n/a through = 1.6...

CVE-2025-22501 WordPress Improve My City plugin <= 1.6 - Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Script-Related HTML Tags in a Web Page Basic XSS vulnerability in Improve My City Improve My City improve-my-city allows Reflected XSS.This issue affects Improve My City: from n/a through = 1.6...

CVE-2025-22501

CVE-2025-22501: WordPress plugin Improve My City

CVE-2025-22501 WordPress Improve My City plugin <= 1.6 - Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Script-Related HTML Tags in a Web Page Basic XSS vulnerability in Improve My City Improve My City allows Reflected XSS. This issue affects Improve My City: from n/a through 1.6...

WordPress plugin Improve My City 安全漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A security vulnerability...

WordPress Improve My City plugin <= 1.6 - Cross Site Scripting (XSS) vulnerability

Cross Site Scripting XSS vulnerability discovered by Trương Hữu Phúc truonghuuphuc in WordPress Plugin Improve My City versions = 1.6...

Upcoming CVE for End-of-Life Node.js Versions

Upcoming CVE for End-of-Life Node.js Versions The Node.js Project is committed to ensuring the security and reliability of applications built on Node.js. As part of this commitment, we regularly review measures to help our users stay informed about security risks. Announcement We will soon issue ...

CVE-2024-52959

A Improper Control of Generation of Code 'Code Injection' vulnerability in plugin management in iota C.ai Conversational Platform from 1.0.0 through 2.1.3 allows remote authenticated users to perform arbitrary system commands via a DLL file...

kernel: wireguard: netlink: access device through ctx instead of peer

In the Linux kernel, the following vulnerability has been resolved: wireguard: netlink: access device through ctx instead of peer The previous commit fixed a bug that led to a NULL peer-device being dereferenced. It's actually easier and faster performance-wise to instead get the device from...

Protect and Elevate Your DNS with Akamai Shield NS53

Learn how Akamai Shield NS53 can protect your capital investment into on-premises DNS infrastructure and significantly improve performance...

systemd security update

239-82.0.1 - Fixed deletion issue for symlink when device is opened Orabug: 36228608 - Fix local-fs and remote-fs targets during system boot replaces old Orabug: 25897792 Orabug: 35871376 - 1A Add 'systemd-fstab-generator-reload-targets.service' file Orabug: 35871376 - 1B Add required rpms for...

CVE-2024-4966

A vulnerability was found in SourceCodester SchoolWebTech 1.0. It has been classified as critical. Affected is an unknown function of the file /improve/home.php. The manipulation of the argument image leads to unrestricted upload. It is possible to launch the attack remotely. The exploit has been...

CVE-2021-47188 scsi: ufs: core: Improve SCSI abort handling

In the Linux kernel, the following vulnerability has been resolved: scsi: ufs: core: Improve SCSI abort handling The following has been observed on a test setup: WARNING: CPU: 4 PID: 250 at drivers/scsi/ufs/ufshcd.c:2737 ufshcdqueuecommand+0x468/0x65c Call trace: ufshcdqueuecommand+0x468/0x65c...

Input validation

An out-of-bounds read was addressed with improved input validation. This issue is fixed in macOS Ventura 13.3, tvOS 16.4, iOS 16.4 and iPadOS 16.4, watchOS 9.4. Processing an image may result in disclosure of process memory...