PT-2026-23636

Name of the Vulnerable Software and Affected Versions Chartbrew versions prior to 4.8.1 Description Chartbrew is a web application that connects to databases and APIs to create charts. Versions of the software prior to 4.8.1 contain a remote code execution issue stemming from the MongoDB dataset...

EUVD-2024-50521

Malicious code in bioql PyPI...

CVE-2025-43862

Dify is an open-source LLM app development platform. Prior to version 0.6.12, a normal user is able to access and modify APP orchestration, even though the web UI of APP orchestration is not presented for a normal user. This access control flaw allows non-admin users to make unauthorized access a...

IFTTT eWeLink Security Vulnerabilities

IFTTT eWeLink is an IFTTT open source application. It provides remote switching of fans and lights, control of air speed and dimming of lights. A security vulnerability exists in IFTTT eWeLink prior to version 5.2.0, which stems from an improper privilege management vulnerability that allows...

Crater Invoice crater 安全漏洞

Crater Invoice Crater is an open source web and mobile application from Crater Invoice, Inc. for tracking expenses, payments and creating professional invoices and estimates. Crater Invoice crater has a security vulnerability that stems from improper access control in the GitHub repository prior ...

Peerio — End-to-End Encrypted Secure Messenger and File Sharing App

On one end, where governments of countries like U.K is criticizing end-to-end encryption and considering to ban the encrypted communication apps like Snapchat, CryptoCat, WhatsApp and Apple’s iMessage. On the other hand, the Internet community has come up with a new and rather more secure encrypt...