Lucene search
K

24 matches found

OSV
OSV
added 2026/02/02 8:19 p.m.4 views

GHSA-6JR7-99PF-8VGF @backstage/plugin-techdocs-node vulnerable to arbitrary code execution via MkDocs hooks

Impact When TechDocs is configured with runIn: local, a malicious actor who can submit or modify a repository's mkdocs.yml file can execute arbitrary Python code on the TechDocs build server via MkDocs hooks configuration. Patches Upgrade to @backstage/plugin-techdocs-node version 1.13.11, 1.14.1...

7.7CVSS6AI score0.00541EPSS
Exploits0References3
Github Security Blog
Github Security Blog
added 2026/02/02 2:36 p.m.9 views

@backstage/plugin-techdocs-node vulnerable to possible Path Traversal in TechDocs Local Generator

Impact A path traversal vulnerability in the TechDocs local generator allows attackers to read arbitrary files from the host filesystem when Backstage is configured with techdocs.generator.runIn: local. When processing documentation from untrusted sources, symlinks within the docs directory are...

6.5CVSS5.5AI score0.00387EPSS
Exploits0References4Affected Software1
NVD
NVD
added 2026/01/30 10:15 p.m.9 views

CVE-2026-25152

Backstage is an open framework for building developer portals, and @backstage/plugin-techdocs-node provides common node.js functionalities for TechDocs. In versions of @backstage/plugin-techdocs-node prior to 1.13.11 and 1.14.1, a path traversal vulnerability in the TechDocs local generator allow...

6.5CVSS0.00387EPSS
Exploits0References1
NVD
NVD
added 2026/01/30 10:15 p.m.6 views

CVE-2026-25153

Backstage is an open framework for building developer portals, and @backstage/plugin-techdocs-node provides common node.js functionalities for TechDocs. In versions of @backstage/plugin-techdocs-node prior to 1.13.11 and 1.14.1, when TechDocs is configured with runIn: local, a malicious actor who...

8.8CVSS0.00541EPSS
Exploits0References6
Cvelist
Cvelist
added 2026/01/30 9:31 p.m.19 views

CVE-2026-25153 @backstage/plugin-techdocs-node vulnerable to arbitrary code execution via MkDocs hooks

Backstage is an open framework for building developer portals, and @backstage/plugin-techdocs-node provides common node.js functionalities for TechDocs. In versions of @backstage/plugin-techdocs-node prior to 1.13.11 and 1.14.1, when TechDocs is configured with runIn: local, a malicious actor who...

7.7CVSS0.00541EPSS
Exploits0References1
EUVD
EUVD
added 2026/01/30 9:31 p.m.6 views

EUVD-2026-5004

Backstage is an open framework for building developer portals, and @backstage/plugin-techdocs-node provides common node.js functionalities for TechDocs. In versions of @backstage/plugin-techdocs-node prior to 1.13.11 and 1.14.1, when TechDocs is configured with runIn: local, a malicious actor who...

7.7CVSS6.2AI score0.00541EPSS
Exploits0References1
OSV
OSV
added 2026/01/30 9:31 p.m.9 views

CVE-2026-25153 @backstage/plugin-techdocs-node vulnerable to arbitrary code execution via MkDocs hooks

Backstage is an open framework for building developer portals, and @backstage/plugin-techdocs-node provides common node.js functionalities for TechDocs. In versions of @backstage/plugin-techdocs-node prior to 1.13.11 and 1.14.1, when TechDocs is configured with runIn: local, a malicious actor who...

7.7CVSS6.2AI score0.00541EPSS
Exploits0References8
CNNVD
CNNVD
added 2025/12/18 12:0 a.m.7 views

Ollama 安全漏洞

Ollama is a large language model that can be started and run locally from the Ollama open source. A security vulnerability exists in Ollama v0.12.3 and prior versions that stems from an authentication bypass that could lead to unauthorized model management operations...

9.8CVSS6.5AI score0.00632EPSS
Exploits0References2
EUVD
EUVD
added 2025/11/12 4:29 a.m.7 views

EUVD-2025-111618

Malicious code in local-run-script-ophiuchus-global npm...

6.6AI score
Exploits0
BDU FSTEC
BDU FSTEC
added 2022/08/24 12:0 a.m.8 views

The vulnerability of the Illumina Local Run Manager software lies in the absence of an authentication process, which allows attackers to infiltrate, replicate, modify, and/or intercept confidential data.

The vulnerability of the Illumina Local Run Manager software lies in the absence of an authentication process. Exploiting this vulnerability allows a malicious actor to remotely infiltrate, replicate, modify, and/or intercept sensitive data...

9.1CVSS8AI score0.01024EPSS
Exploits0References3Affected Software1
BDU FSTEC
BDU FSTEC
added 2022/08/24 12:0 a.m.6 views

The vulnerability of the TLS protocol implementation in the Illumina Local Run Manager software allows a perpetrator to compromise the confidentiality of protected information, including login credentials.

The vulnerability of the TLS protocol implementation in the Illumina Local Run Manager lies in the transmission of data in an open manner. Exploiting this vulnerability allows a malicious actor to compromise the confidentiality of protected information, including login credentials...

7.4CVSS6.5AI score0.0029EPSS
Exploits0References3Affected Software1
BDU FSTEC
BDU FSTEC
added 2022/08/04 12:0 a.m.8 views

The vulnerability of the Illumina Local Run Manager software, related to improper code generation management, allows a malicious actor to execute arbitrary code, modify settings, configurations, software, or gain access to confidential data of the affected product.

The vulnerability of the Illumina Local Run Manager software is related to improper code generation management. Exploiting this vulnerability allows a remote attacker to execute arbitrary code, modify settings, configurations, software, or gain access to confidential data of the affected product...

10CVSS8.4AI score0.01633EPSS
Exploits0References3Affected Software1
BDU FSTEC
BDU FSTEC
added 2022/08/01 12:0 a.m.8 views

The vulnerability of the Illumina Local Run Manager software lies in the lack of restrictions on file downloads, which allows a hacker to execute arbitrary code.

The vulnerability of the Illumina Local Run Manager software lies in the lack of restrictions on file downloads. Exploiting this vulnerability allows a remote attacker to execute arbitrary code...

10CVSS8.4AI score0.01257EPSS
Exploits0References3Affected Software1
CNVD
CNVD
added 2022/06/05 12:0 a.m.20 views

Illumina Local Run Manager Information Disclosure Vulnerability

Illumina Local Run Manager is an integrated solution from Illumina, Inc. Designed to create sequencing runs, monitor run status, analyze sequencing data, and view results, Illumina Local Run Manager contains an information disclosure vulnerability that could be exploited by remote attackers to...

7.4CVSS2.1AI score0.0029EPSS
Exploits0References1
CNVD
CNVD
added 2022/06/05 12:0 a.m.22 views

Illumina Local Run Manager Path Traversal Vulnerability

Illumina Local Run Manager is an integrated solution from Illumina, Inc. Designed to create sequencing runs, monitor run status, analyze sequencing data, and view results, Illumina Local Run Manager is vulnerable to a path traversal vulnerability that stems from an input validation error when...

10CVSS3.2AI score0.01496EPSS
Exploits0References1
CNVD
CNVD
added 2022/06/05 12:0 a.m.19 views

Illumina Local Run Manager File Upload Vulnerability

Illumina Local Run Manager is an integrated solution from Illumina, Inc. Designed to create sequencing runs, monitor run status, analyze sequencing data, and view results, Illumina Local Run Manager contains a file upload vulnerability that could be exploited by an attacker to upload any file typ...

10CVSS3.1AI score0.01257EPSS
Exploits0References1
CISA
CISA
added 2022/06/02 12:0 a.m.8 views

CISA Releases Security Advisory on Illumina Local Run Manager

CISA has released an Industrial Controls Systems Advisory ICSA detailing multiple vulnerabilities in Illumina Local Run Manager. Successful exploitation of these vulnerabilities may allow an unauthenticated malicious actor to take control of the affected product remotely and take any action at th...

1.4AI score
Exploits0References2
CNNVD
CNNVD
added 2022/06/02 12:0 a.m.19 views

Illumina Local Run Manager 安全漏洞

Illumina Local Run Manager is an integrated solution from Illumina, Inc. Designed to create sequencing runs, monitor run status, analyze sequencing data, and view results, Illumina Local Run Manager contains an information disclosure vulnerability that could be exploited by remote attackers to...

7.4CVSS5.6AI score0.0029EPSS
Exploits0References4
CNNVD
CNNVD
added 2022/06/02 12:0 a.m.12 views

Illumina Local Run Manager 代码问题漏洞

Illumina Local Run Manager is an integrated solution from Illumina, Inc. Designed to create sequencing runs, monitor run status, analyze sequencing data, and view results, Illumina Local Run Manager contains a file upload vulnerability that could be exploited by an attacker to upload any file typ...

10CVSS6.1AI score0.01257EPSS
Exploits0References4
CNNVD
CNNVD
added 2022/06/02 12:0 a.m.19 views

Illumina Local Run Manager 代码注入漏洞

Illumina Local Run Manager is an integrated solution from Illumina, Inc. Illumina Local Run Manager is vulnerable to code injection, which could be exploited by attackers to remotely upload and execute code at the operating system level...

10CVSS5.9AI score0.01633EPSS
Exploits0References4
Rows per page
Query Builder