Lucene search
+L

4 matches found

Github Security Blog
Github Security Blog
added 2026/06/01 2:24 p.m.17 views

praisonai-platform: Any workspace member can delete the entire workspace via DELETE /workspaces/{id}

Summary Type: Authorization bypass enabling destructive action. The DELETE /workspaces/workspaceid endpoint is gated only by requireworkspacememberworkspaceid default minrole="member". Any member of the workspace can issue a single DELETE to wipe the entire workspace, including every project,...

5.8AI score0.00041EPSS
Exploits0References2Affected Software1
OSV
OSV
added 2026/06/01 2:24 p.m.14 views

GHSA-G8RR-7RJ2-F627 praisonai-platform: Any workspace member can delete the entire workspace via DELETE /workspaces/{id}

Summary Type: Authorization bypass enabling destructive action. The DELETE /workspaces/workspaceid endpoint is gated only by requireworkspacememberworkspaceid default minrole="member". Any member of the workspace can issue a single DELETE to wipe the entire workspace, including every project,...

8.1CVSS5.8AI score0.00041EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2026/01/15 1:30 a.m.5 views

CVE-2025-68769

In the Linux kernel, the following vulnerability has been resolved: f2fs: fix return value of f2fsrecoverfsyncdata With below scripts, it will trigger panic in f2fs: mkfs.f2fs -f /dev/vdd mount /dev/vdd /mnt/f2fs touch /mnt/f2fs/foo sync echo 111 /mnt/f2fs/foo f2fsio fsync /mnt/f2fs/foo f2fsio...

5.7AI score0.00173EPSS
Exploits0References4
OSV
OSV
added 2025/09/05 6:15 p.m.11 views

AZL-66932 CVE-2025-39726 affecting package kernel for versions less than 6.6.104.2-1

In the Linux kernel, the following vulnerability has been resolved: s390/ism: fix concurrency management in ismcmd The s390x ISM device data sheet clearly states that only one request-response sequence is allowable per ISM function at any point in time. Unfortunately as of today the s390/ism driv...

4.7CVSS5.7AI score0.00102EPSS
Exploits0References1
Rows per page
Query Builder