Lucene search
K

4 matches found

Positive Technologies
Positive Technologies
added 2026/06/01 12:0 a.m.19 views

PT-2026-45661

A security flaw has been discovered in ggml-org whisper.cpp up to 1.8.2. This vulnerability affects the function whisper model load of the file ggml/src/ggml.c. The manipulation results in null pointer dereference. Attacking locally is a requirement. The exploit has been released to the public an...

4.8CVSS5.4AI score0.00112EPSS
Exploits0References7
NVD
NVD
added 2026/04/29 9:16 p.m.9 views

CVE-2026-7403

A security flaw has been discovered in geldata gel-mcp 0.1.0. This impacts the function listrules/fetchrule of the file src/gelmcp/server.py. The manipulation of the argument rulename results in path traversal. The attack may be performed from remote. The exploit has been released to the public a...

6.9CVSS0.00563EPSS
Exploits0References5
ATTACKERKB
ATTACKERKB
added 2026/04/28 8:45 p.m.3 views

CVE-2026-7318

A vulnerability was detected in elie mcp-project 0.1.0. The affected element is the function searchpapers of the file researchserver.py. The manipulation of the argument topic results in path traversal. Attacking locally is a requirement. The exploit is now public and may be used. The project was...

5.9CVSS5.6AI score0.00185EPSS
Exploits0References4Affected Software1
OSV
OSV
added 2026/04/27 9:31 p.m.5 views

GHSA-VMH7-9C7H-2PGG auto-favicon has a Server-Side Request Forgery issue

A vulnerability was found in dh1011 auto-favicon up to f189116a9259950c2393f114dbcb94dde0ad864b. This issue affects the function generatefaviconfromurl of the file src/autofavicon/server.py of the component MCP Tool. The manipulation of the argument imageurl results in server-side request forgery...

6.3CVSS6.2AI score0.00201EPSS
Exploits0References6
Rows per page
Query Builder