Lucene search
K

596 matches found

vulnersOsv
vulnersOsv
added 2026/05/15 6:30 p.m.7 views

org.apache.flink:flink-examples-table_2.12 (>=2.0.0 <=2.0.1) potentially affected by CVE-2026-35194 via org.apache.flink:flink-table-planner_2.12 (>=2.0.0 <=2.0.1)

org.apache.flink:flink-table-planner2.12 MAVEN version =2.0.0, =2.0.0, =2.0.1 Source cves: CVE-2026-35194 Source advisory: OSV:GHSA-2F54-V4HM-FX73...

8.1CVSS5.4AI score0.00381EPSS
Exploits0
Snyk
Snyk
added 2026/05/15 6:30 p.m.13 views

Arbitrary Code Injection

Overview Affected versions of this package are vulnerable to Arbitrary Code Injection via the SQL code generation process. An attacker can execute arbitrary code on TaskManagers by submitting specially crafted SQL queries that exploit improper escaping of user-controlled strings in generated Java...

8.6CVSS6.3AI score0.00381EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2026/04/15 7:24 p.m.11 views

CVE-2026-40185

TREK is a collaborative travel planner. Prior to 2.7.2, TREK was missing authorization checks on the Immich trip photo management routes. This vulnerability is fixed in 2.7.2...

7.1CVSS5.8AI score0.00209EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/04/13 7:25 p.m.4 views

CVE-2026-40184

TREK is a collaborative travel planner. Prior to 2.7.2, TREK served uploaded photos without requiring authentication. This vulnerability is fixed in 2.7.2...

5.3CVSS5.8AI score0.00235EPSS
Exploits0References1
NVD
NVD
added 2026/04/10 8:16 p.m.17 views

CVE-2026-40185

TREK is a collaborative travel planner. Prior to 2.7.2, TREK was missing authorization checks on the Immich trip photo management routes. This vulnerability is fixed in 2.7.2...

7.1CVSS0.00209EPSS
Exploits0References3
NVD
NVD
added 2026/04/10 8:16 p.m.7 views

CVE-2026-40184

TREK is a collaborative travel planner. Prior to 2.7.2, TREK served uploaded photos without requiring authentication. This vulnerability is fixed in 2.7.2...

5.3CVSS0.00235EPSS
Exploits0References3
Cvelist
Cvelist
added 2026/04/10 7:40 p.m.25 views

CVE-2026-40185 Missing Authorization on Immich Trip Photo Routes in TREK

TREK is a collaborative travel planner. Prior to 2.7.2, TREK was missing authorization checks on the Immich trip photo management routes. This vulnerability is fixed in 2.7.2...

7.1CVSS0.00209EPSS
Exploits0References3
ATTACKERKB
ATTACKERKB
added 2026/04/10 7:40 p.m.5 views

CVE-2026-40185

TREK is a collaborative travel planner. Prior to 2.7.2, TREK was missing authorization checks on the Immich trip photo management routes. This vulnerability is fixed in 2.7.2...

7.1CVSS5.8AI score0.00209EPSS
Exploits0References4Affected Software1
EUVD
EUVD
added 2026/04/10 7:40 p.m.7 views

EUVD-2026-21587

TREK is a collaborative travel planner. Prior to 2.7.2, TREK was missing authorization checks on the Immich trip photo management routes. This vulnerability is fixed in 2.7.2...

7.1CVSS5.8AI score0.00209EPSS
Exploits0References3
Cvelist
Cvelist
added 2026/04/10 7:39 p.m.24 views

CVE-2026-40184 Unauthenticated Access to Uploaded Files in TREK

TREK is a collaborative travel planner. Prior to 2.7.2, TREK served uploaded photos without requiring authentication. This vulnerability is fixed in 2.7.2...

3.7CVSS0.00235EPSS
Exploits0References3
EUVD
EUVD
added 2026/04/10 7:39 p.m.4 views

EUVD-2026-21585

TREK is a collaborative travel planner. Prior to 2.7.2, TREK served uploaded photos without requiring authentication. This vulnerability is fixed in 2.7.2...

3.7CVSS5.8AI score0.00235EPSS
Exploits0References3
ATTACKERKB
ATTACKERKB
added 2026/04/10 7:39 p.m.3 views

CVE-2026-40184

TREK is a collaborative travel planner. Prior to 2.7.2, TREK served uploaded photos without requiring authentication. This vulnerability is fixed in 2.7.2...

3.7CVSS5.8AI score0.00235EPSS
Exploits0References4Affected Software1
Positive Technologies
Positive Technologies
added 2026/04/10 12:0 a.m.8 views

PT-2026-32036

TREK is a collaborative travel planner. Prior to 2.7.2, TREK served uploaded photos without requiring authentication. This vulnerability is fixed in 2.7.2...

3.7CVSS5.8AI score0.00235EPSS
Exploits0References4
Positive Technologies
Positive Technologies
added 2026/04/10 12:0 a.m.11 views

PT-2026-32037

TREK is a collaborative travel planner. Prior to 2.7.2, TREK was missing authorization checks on the Immich trip photo management routes. This vulnerability is fixed in 2.7.2...

7.1CVSS5.8AI score0.00209EPSS
Exploits0References4
CNNVD
CNNVD
added 2026/04/07 12:0 a.m.7 views

Plane 安全漏洞

Plane is an open-source, self-hosted project planning tool developed by Plane OpenSource. Versions of Plane prior to 1.3.0 contained security vulnerabilities. These vulnerabilities stemmed from a lack of workspace or project filtering in the IssueBulkUpdateDateEndpoint, which could lead to...

7.7CVSS5.8AI score0.00208EPSS
Exploits1References1
OSV
OSV
added 2026/03/27 12:11 p.m.7 views

BIT-GITLAB-2025-14595 Missing Authorization in GitLab

GitLab has remediated an issue in GitLab EE affecting all versions from 18.6 before 18.8.7, 18.9 before 18.9.3, and 18.10 before 18.10.1 that under certain conditions could have allowed an authenticated user with Planner role to view security category metadata and attributes in group security...

4.3CVSS5.9AI score0.00257EPSS
Exploits0References4
RedhatCVE
RedhatCVE
added 2026/03/26 5:1 p.m.5 views

CVE-2025-14595

GitLab has remediated an issue in GitLab EE affecting all versions from 18.6 before 18.8.7, 18.9 before 18.9.3, and 18.10 before 18.10.1 that under certain conditions could have allowed an authenticated user with Planner role to view security category metadata and attributes in group security...

4.3CVSS5.8AI score0.00257EPSS
Exploits0References1
EUVD
EUVD
added 2026/03/25 6:31 p.m.4 views

EUVD-2025-208995

GitLab has remediated an issue in GitLab EE affecting all versions from 18.6 before 18.8.7, 18.9 before 18.9.3, and 18.10 before 18.10.1 that under certain conditions could have allowed an authenticated user with Planner role to view security category metadata and attributes in group security...

4.3CVSS5.8AI score0.00257EPSS
Exploits0References4
NVD
NVD
added 2026/03/25 5:16 p.m.6 views

CVE-2025-14595

GitLab has remediated an issue in GitLab EE affecting all versions from 18.6 before 18.8.7, 18.9 before 18.9.3, and 18.10 before 18.10.1 that under certain conditions could have allowed an authenticated user with Planner role to view security category metadata and attributes in group security...

4.3CVSS0.00257EPSS
Exploits0References3
Cvelist
Cvelist
added 2026/03/25 4:34 p.m.23 views

CVE-2025-14595 Missing Authorization in GitLab

GitLab has remediated an issue in GitLab EE affecting all versions from 18.6 before 18.8.7, 18.9 before 18.9.3, and 18.10 before 18.10.1 that under certain conditions could have allowed an authenticated user with Planner role to view security category metadata and attributes in group security...

4.3CVSS0.00257EPSS
Exploits0References3
Rows per page
Query Builder