CVE-2026-32282 vulnerabilities

Vulnerabilities for packages: aactl, kine, spire-server, snyk-cli, k8s-device-plugin, cert-manager, cloud-provider-aws, grafana, istio, aws-flb-cloudwatch, runc, telegraf, zot, argo-cd, nerdctl, kube-arangodb, hubble, k3s, knative-serving, redka, newrelic-fluent-bit-output, falco-no-driver,...

Malicious code in @zalastax/nolb-_kaf (npm)

The package @zalastax/nolb-kaf was found to contain malicious code...

MAL-2025-10162 Malicious code in @zalastax/nolb-_kaf (npm)

The package @zalastax/nolb-kaf was found to contain malicious code...

GHSA-8R3F-844C-MC37 vulnerabilities

Vulnerabilities for packages: spire-server, pgpool2exporter, terragrunt, temporal-ui-server, secrets-store-csi-driver-provider-azure, buildkitd, crossplane-provider-aws-lambda, cosign, falcosidekick, policy-controller, thanos-operator, stakater-reloader, crossplane-provider-aws-ec2,...

CVE-2024-24786 vulnerabilities

Vulnerabilities for packages: supercronic, hugo, newrelic-infrastructure-agent, eksctl, tigera-operator-fips, kubernetes, crossplane-provider-aws-s3, chartmuseum, crossplane-provider-aws-lambda, spire-server-fips, nri-discovery-kubernetes, kubernetes-dashboard-fips, protoc-gen-go-grpc, buf,...

GHSA-4374-P667-P6C8 vulnerabilities

Vulnerabilities for packages: cosign, external-dns-fips, yq, hugo, kubernetes-ingress-defaultbackend, atlantis-fips, ollama, hey, newrelic-infrastructure-agent, k3d, azure-aad-pod-identity-mic, thanos-operator, prometheus-statsd-exporter-fips, helm, prometheus-pushgateway, trust-manager,...

GHSA-QPPJ-FM5R-HXR3 vulnerabilities

Vulnerabilities for packages: buildkitd, cosign, stakater-reloader, envoy-ratelimit, gomplate, kubeflow, bom, memcached-exporter, mc, secrets-store-csi-driver, amass, gobuster, ollama, gitness, git-lfs, ko, kots, weaviate, frp, flux-helm-controller, nri-prometheus, flux-kustomize-controller,...

phpsource.traverse.txt

--SLDf9lqlvOQaIe6s Content-Type: text/plain; charset=us-ascii Content-Disposition: inline Content-Transfer-Encoding: quoted-printable =3D=3D Vendor: Kaf Oseo =3D=3D Product: http://guff.szub.net/quick-dirty-phpsource-printer/ =3D=3D Version: 1.0 =3D=3D Vulnerability: Filtering "../" to "" allowed...

[Full-disclosure] Directory traversal vulnerability in "Quick & Dirty PHPSource Printer" 1.0

== Vendor: Kaf Oseo == Product: http://guff.szub.net/quick-dirty-phpsource-printer/ == Version: 1.0 == Vulnerability: Filtering "../" to "" allowed use of ".../...//" to be inserted and changed to "../" allowing directory traversal. == Fix: Use the following line instead: $file = strstr$fileget,...