983 matches found
SUSE CVE-2026-27851
When safe filter is used with variable expansion, all following pipelines on the same string are incorrectly interpreted as safe too, enabling unsafe data to be unescaped. This can enable SQL / LDAP injection attacks when used in authentication. Avoid using safe filter until on fixed version. No...
GHSA-8MP2-V27R-99XP vulnerabilities
Vulnerabilities for packages: kubeflow-pipelines-visualization-server...
CVE-2026-33079 vulnerabilities
Vulnerabilities for packages: kubeflow-pipelines-visualization-server...
GHSA-V87V-83H2-53W7 vulnerabilities
Vulnerabilities for packages: kubeflow-pipelines-visualization-server, datahub-ingestion-fips...
GHSA-8MP2-V27R-99XP vulnerabilities
Vulnerabilities for packages: kubeflow-pipelines-visualization-server, datahub-ingestion-fips...
GHSA-8G87-J6Q8-G93X vulnerabilities
Vulnerabilities for packages: kubeflow-pipelines-visualization-server, datahub-ingestion-fips...
GHSA-58CW-G322-P94V vulnerabilities
Vulnerabilities for packages: kubeflow-pipelines-visualization-server, datahub-ingestion-fips...
CVE-2026-44897 vulnerabilities
Vulnerabilities for packages: kubeflow-pipelines-visualization-server, datahub-ingestion-fips...
CVE-2026-44708 vulnerabilities
Vulnerabilities for packages: kubeflow-pipelines-visualization-server, datahub-ingestion-fips...
CVE-2026-33079 vulnerabilities
Vulnerabilities for packages: kubeflow-pipelines-visualization-server, datahub-ingestion-fips...
CVE-2026-44896 vulnerabilities
Vulnerabilities for packages: kubeflow-pipelines-visualization-server, datahub-ingestion-fips...
DEBIAN-CVE-2026-44301
Hugo is a static site generator. From 0.43 to before 0.161.0, when building a Hugo site that uses Node-based asset pipelines PostCSS, Babel, TailwindCSS, Hugo invoked the configured Node tools without restrictions on file system access. As a result, executing hugo against an untrusted site could...
CVE-2026-44301
Hugo is a static site generator. From 0.43 to before 0.161.0, when building a Hugo site that uses Node-based asset pipelines PostCSS, Babel, TailwindCSS, Hugo invoked the configured Node tools without restrictions on file system access. As a result, executing hugo against an untrusted site could...
CVE-2026-44301
Hugo is a static site generator. From 0.43 to before 0.161.0, when building a Hugo site that uses Node-based asset pipelines PostCSS, Babel, TailwindCSS, Hugo invoked the configured Node tools without restrictions on file system access. As a result, executing hugo against an untrusted site could...
CVE-2026-44301 Hugo: Node tool execution allows file system access outside the project directory
Hugo is a static site generator. From 0.43 to before 0.161.0, when building a Hugo site that uses Node-based asset pipelines PostCSS, Babel, TailwindCSS, Hugo invoked the configured Node tools without restrictions on file system access. As a result, executing hugo against an untrusted site could...
CVE-2026-44301
Hugo is a static site generator. From 0.43 to before 0.161.0, when building a Hugo site that uses Node-based asset pipelines PostCSS, Babel, TailwindCSS, Hugo invoked the configured Node tools without restrictions on file system access. As a result, executing hugo against an untrusted site could...
GHSA-MF9V-MFXR-J63J vulnerabilities
Vulnerabilities for packages: kubeflow-katib, dask-kubernetes, tensorflow-cpu-jupyter, jwt-tool, httpie, open-webui, ggshield, confluent-docker-utils, py3-pip, semgrep, az, aws-cli, py3-pipenv, datadog-agent, neuvector-manager, kubeflow-pipelines-visualization-server, kubeflow-volumes-web-app,...
GHSA-V87V-83H2-53W7 vulnerabilities
Vulnerabilities for packages: kubeflow-pipelines-visualization-server...
GHSA-58CW-G322-P94V vulnerabilities
Vulnerabilities for packages: kubeflow-pipelines-visualization-server...
CVE-2026-44897 vulnerabilities
Vulnerabilities for packages: kubeflow-pipelines-visualization-server...