Lucene search
K

2278288 matches found

Packet Storm News
Packet Storm News
added 2026/12/29 12:0 a.m.254 views

GNUnet P2P Framework 0.26.2

GNUnet is a peer-to-peer framework with focus on providing security. All peer-to-peer messages in the network are confidential and authenticated. The framework provides a transport abstraction layer and can currently encapsulate the network traffic in UDP IPv4 and IPv6, TCP IPv4 and IPv6, HTTP, o...

6.8AI score
Exploits0
Github Security Blog
Github Security Blog
added 30 minutes ago2 views

flyto-core has Unauthenticated Command Execution via HTTP MCP `execute_module`

Unauthenticated Command Execution via HTTP MCP executemodule Summary The HTTP MCP endpoint POST /mcp in flyto-core accepts unauthenticated JSON-RPC tools/call requests and dispatches them to arbitrary registered modules, including sandbox.executeshell, which passes attacker-controlled input...

6.4AI score
Exploits0References2Affected Software1
Github Security Blog
Github Security Blog
added 41 minutes ago2 views

flyto-core has SSRF guard bypass via IPv6 transition addresses (IPv4-mapped / 6to4 / NAT64) in validate_url_ssrf

Summary flyto-core's SSRF protection validateurlssrf / isprivateip in src/core/utils.py blocks private and metadata destinations by resolving the host and testing the resulting IP for membership in a hardcoded PRIVATEIPRANGES list. That list contains only the native RFC 1918 / loopback / link-loc...

7.5CVSS6.9AI score0.01034EPSS
Exploits0References2Affected Software1
Github Security Blog
Github Security Blog
added 41 minutes ago2 views

WeasyPrint has CSS Injection via Presentational Hints

Summary A CSS injection issue exists in WeasyPrint when HTML presentational hints are enabled. Unescaped attribute values are embedded into CSS, allowing injection of arbitrary CSS declarations. This affects applications processing untrusted HTML input. Details File: weasyprint/css/init.py The...

6AI score
Exploits0References2Affected Software1
Github Security Blog
Github Security Blog
added 1 hour ago2 views

OpenRemote read-only asset users can write predicted datapoints

Summary The predicted datapoint write endpoint allows users with only read:assets privileges to write predicted datapoints. The endpoint: text PUT /api/realm/asset/predicted/assetId/attributeName accepts write requests from users lacking write:assets. The implementation appears to check READASSET...

5.9AI score
Exploits0References3Affected Software1
Github Security Blog
Github Security Blog
added 1 hour ago2 views

Formie Hidden field defaults vulnerable to Server-Side Template Injection

Summary Formie Hidden fields could evaluate request-derived values as Twig during front-end form rendering. When a Hidden field used a dynamic default value such as HTTP User Agent, Referer URL, Current URL, Query Parameter, or Cookie Value, the value was copied from the incoming request and late...

6.5AI score
Exploits0References2Affected Software1
The Hacker News
The Hacker News
added 1 hour ago5 views

Threat Actors Probe Gitea Docker Flaw CVE-2026-20896 13 Days After Disclosure

Threat actors have been observed attempting to exploit a recently patched critical security flaw in Gitea Docker images, according to Sysdig. The vulnerability in question is CVE-2026-20896 CVSS score: 9.8, a vulnerability that stems from the DevOps platform trusting the "X-WEBAUTH-USER" header...

9.8CVSS7.2AI score0.00783EPSS
Exploits3
NVD
NVD
added 1 hour ago4 views

CVE-2026-59152

LangSmith Client SDKs provide SDK's for interacting with the LangSmith platform. Prior to 0.8.18, an attacker who can send an HTTP request to a server running the LangSmith SDK's TracingMiddleware can cause that server to read an arbitrary file from its local filesystem and upload the contents to...

5CVSS
Exploits0References1
Qualys Blog
Qualys Blog
added 3 hours ago5 views

Is Your AppSec Program Built to Close the OWASP Top 10 2025 Coverage Gap?

Key Takeaways Most AppSec programs treat API-layer coverage as a DAST extension, but BOLA, BFLA, and SSRF require authenticated multi-role testing that traditional scanners weren’t built to run at scale. Modern authentication flows OAuth2, JWT validation, MFA-protected sessions often fall outside...

6.2AI score
Exploits0
Cvelist
Cvelist
added 3 hours ago6 views

CVE-2026-59152 Arbitrary server-side file read in LangSmith SDK TracingMiddleware

LangSmith Client SDKs provide SDK's for interacting with the LangSmith platform. Prior to 0.8.18, an attacker who can send an HTTP request to a server running the LangSmith SDK's TracingMiddleware can cause that server to read an arbitrary file from its local filesystem and upload the contents to...

5CVSS
Exploits0References1
CVE
CVE
added 3 hours ago7 views

CVE-2026-59152

The LangSmith Client SDKs’ TracingMiddleware had a vulnerability before version 0.8.18 where an HTTP request to a server running TracingMiddleware could trigger reading an arbitrary file from the server’s filesystem and uploading it to LangSmith as a trace attachment. This enables a trust-boundar...

5CVSS6AI score
Exploits0References1
ATTACKERKB
ATTACKERKB
added 3 hours ago2 views

CVE-2026-59152

LangSmith Client SDKs provide SDK's for interacting with the LangSmith platform. Prior to 0.8.18, an attacker who can send an HTTP request to a server running the LangSmith SDK's TracingMiddleware can cause that server to read an arbitrary file from its local filesystem and upload the contents to...

5CVSS6AI score
Exploits0References2Affected Software1
EUVD
EUVD
added 3 hours ago3 views

EUVD-2026-41879

LangSmith Client SDKs provide SDK's for interacting with the LangSmith platform. Prior to 0.8.18, an attacker who can send an HTTP request to a server running the LangSmith SDK's TracingMiddleware can cause that server to read an arbitrary file from its local filesystem and upload the contents to...

5CVSS6AI score
Exploits0References1
GithubExploit
GithubExploit
added 4 hours ago16 views

Exploit for Incorrect Behavior Order: Authorization Before Parsing and Canonicalization in Apache Camel

camel-platform-http-main Authentication Bypass on Non-Root Con...

8.2CVSS5.9AI score0.00622EPSS
Exploits1
RedHat Linux
RedHat Linux
added 5 hours ago5 views

golang: net/url: Memory exhaustion in query parameter parsing in net/url

A flaw was found in the net/url package in the Go standard library. The package does not enforce a limit on the number of unique query parameters it parses. A Go application using the net/http.Request.ParseForm method will try to process all parameters provided in the request. A specially crafted...

7.5CVSS6.8AI score0.01945EPSS
Exploits0References8
The Hacker News
The Hacker News
added 5 hours ago4 views

⚡ Weekly Recap: Proxy Botnets, Browser Ransomware, AI Agent Tricks, Fake PoC Malware and More

A streaming box should not need a threat model. Neither should a username field, a demo repo, a reset flow, or a browser permission prompt. That is the irritating part this week: the risky pieces were ordinary. Home devices became a routing cover. Clean code pulled dirt from a dependency. Identit...

6.4AI score
Exploits0
GithubExploit
GithubExploit
added 5 hours ago9 views

Exploit for Path Traversal in Adobe Coldfusion

CVE-2026-48282-POC CVE-2026-48282 is a path traversal...

10CVSS6.3AI score0.01021EPSS
Exploits2
GithubExploit
GithubExploit
added 5 hours ago18 views

Exploit for Path Traversal in Adobe Coldfusion

CVE-2026-48282-POC CVE-2026-48282 is a path traversal...

10CVSS6.4AI score0.01021EPSS
Exploits2
GithubExploit
GithubExploit
added 5 hours ago15 views

Exploit for Improper Use of Validation Framework in Apache Camel

camel-mail Header Injection → RCE Vulnerability Reproducer CV...

9.4CVSS6.2AI score0.00621EPSS
Exploits1
GithubExploit
GithubExploit
added 5 hours ago11 views

web-security-research

Web Application Security Research - SQL Injection & XSS Comparat...

6.1AI score
Exploits0
Rows per page
Query Builder