EUVD-2026-34044

LibreChat is an enhanced ChatGPT clone that supports multiple AI providers. In versions up to and including 0.7.6, an Insecure Direct Object Reference IDOR vulnerability exists in the API keys management endpoint PUT /api/keys. Due to the use of the JavaScript object spread operator after setting...

Chamilo LMS 安全特征问题漏洞

Chamilo LMS is an open-source online learning and collaboration system developed by Chamilo. This system supports the creation of teaching content, remote training, and online quizzes. Versions of Chamilo LMS prior to 1.11.38 and 2.0.0-RC.3 contained security vulnerabilities. These vulnerabilitie...

MOCK Business::OnlinePayment::StoredTransaction 安全漏洞

MOCK Business::OnlinePayment::StoredTransaction is a module of MOCK Corporation designed for processing stored transaction data and executing online payment processes. Versions of Business::OnlinePayment::StoredTransaction prior to 0.01 contain security vulnerabilities. These vulnerabilities stem...

AIX : Multiple Vulnerabilities (IJ55968)

The version of AIX installed on the remote host is prior to APAR IJ55968. It is, therefore, affected by multiple vulnerabilities as referenced in the IJ55968 advisory. - IBM AIX 7.2, and 7.3 and IBM VIOS 3.1, and 4.1 nimsh service SSL/TLS implementations could allow a remote attacker to execute...

AIX : Multiple Vulnerabilities (IJ56230)

The version of AIX installed on the remote host is prior to APAR IJ56230. It is, therefore, affected by multiple vulnerabilities as referenced in the IJ56230 advisory. - IBM AIX 7.2, and 7.3 and IBM VIOS 3.1, and 4.1 nimsh service SSL/TLS implementations could allow a remote attacker to execute...

EUVD-2020-27071

Malware in sbrugna...

CVE-2020-5917

In BIG-IP versions 15.1.0-15.1.0.4, 15.0.0-15.0.1.3, 14.1.0-14.1.2.3, 13.1.0-13.1.3.4, 12.1.0-12.1.5.1, and 11.6.1-11.6.5.2 and BIG-IQ versions 5.2.0-7.0.0, the host OpenSSH servers utilize keys of less than 2048 bits which are no longer considered secure...

PT-2024-12298 · Suse · Suse Manager Server Module +1

Name of the Vulnerable Software and Affected Versions: SUSE Manager Server Module version 4.3 Description: The issue is related to insecure handling of ssh keys used to bootstrap clients, allowing local attackers to potentially gain access to the keys. This could lead to unauthorized access...

jsonwebtoken 加密问题漏洞

jsonwebtoken is a JSON Web token implementation from Auth0 Open Source. A cryptographic issue vulnerability exists in jsonwebtoken version 8.5.1 and prior versions, which stems from old, insecure key types used for signature verification...

Cisco Unified Communications Domain Manager Remote Code Execution Vulnerability

Cisco Unified Communications Domain Manager CUCDM is the United States Cisco Cisco company developed a dedicated unified communications solutions in the call processing components. The component has scalable, distributable, highly available enterprise voice-over-IP call processing capabilities. A...