CVE-2026-30926

creationtimestamp| type| source ---|---|--- 2026-03-07 02:16:33+00:00| published-proof-of-concept| https://github.com/siyuan-note/siyuan/security/advisories/GHSA-f9cq-v43p-v523...

MINI-4V93-6PC3-29CJ

Bulletin has no description...

Vim < 9.2.0074 Heap-based Buffer Overflow (GHSA-h4mf-vg97-hj8j)

The version of Vim installed on the remote host is prior to 9.2.0074. It is, therefore, affected by a vulnerability as referenced in the GHSA-h4mf-vg97-hj8j advisory. - Vim is an open source, command line text editor. Prior to version 9.2.0074, a heap-based buffer overflow out-of-bounds read exis...

Exploit for CVE-2011-1473

CVE-2011-1473-POC CVE-20...

Important: Red Hat Security Advisory: kpatch-patch-5_14_0-570_17_1, kpatch-patch-5_14_0-570_39_1, and kpatch-patch-5_14_0-570_66_1 security update

An update for multiple packages is now available for Red Hat Enterprise Linux 9.6 Extended Update Support. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is...

CVE-2026-27802

A flaw was found in Vaultwarden. A manager, an authorized user, can exploit this vulnerability by performing a bulk permission update to collections they are not authorized to access. This can lead to privilege escalation, allowing the manager to gain unauthorized access and control over these...

MINI-V3PC-W34J-VG5W

Bulletin has no description...

MINI-RVH6-X78J-R8M2

Bulletin has no description...

MINI-R6C5-H4JR-XWM2

Bulletin has no description...

MINI-Q4HV-5C5R-7V82

Bulletin has no description...

MINI-MQ63-HVC7-G2GQ

Bulletin has no description...

MINI-GW6W-3Q48-JX94

Bulletin has no description...

MINI-923P-PXF8-2XMC

Bulletin has no description...

MINI-23FP-Q5HP-4J65

Bulletin has no description...

GHSA-P4WH-CR8M-GM6C OpenClaw: shell-env trusted-prefix fallback allowed attacker-controlled binary execution via $SHELL

Summary shell-env fallback trusted prefix-based executable paths for $SHELL, allowing execution of attacker-controlled binaries in local/runtime-env influence scenarios. Details In affected versions, shell selection accepted either: 1. a shell listed in /etc/shells, or 2. any executable under...

CVE-2026-3455

creationtimestamp| type| source ---|---|--- 2026-03-03 08:16:13+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mg5dckpsdm2u...

CVE-2025-13673

The Tutor LMS – eLearning and online course solution plugin for WordPress is vulnerable to SQL Injection via the 'couponcode' parameter in all versions up to, and including, 3.9.6 due to insufficient escaping on the user supplied parameter and lack of sufficient preparation on the existing SQL...

Authorization Bypass Through User-Controlled Key

Overview Affected versions of this package are vulnerable to Authorization Bypass Through User-Controlled Key via the getqueryset function in the RepetitionsConfigViewSet and MaxRepetitionsConfigViewSet process. An attacker can access other users' workout configuration data by sending authenticat...

GO-2026-4325 Mattermost is vulnerable to CPU exhaustion via crafted HTTP request in github.com/mattermost/mattermost-server

Mattermost is vulnerable to CPU exhaustion via crafted HTTP request in github.com/mattermost/mattermost-server. NOTE: The source advisory for this report contains additional versions that could not be automatically mapped to standard Go module versions. If this is causing false-positive reports...

CVE-2019-18964

DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: The CNA or individual who requested this candidate did not associate it with any vulnerability during 2019. Notes: none...