Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

217 matches found

Circl
Circladded yesterday2 views

CVE-2026-40290

creationtimestamp| type| source ---|---|--- 2026-06-03 19:25:43+00:00| seen| https://bsky.app/profile/potato.software/post/3mnftjm7jzc2i...

7.8CVSS5.8AI score
Exploits0References1
Circl
Circladded yesterday2 views

CVE-2026-4081

creationtimestamp| type| source ---|---|--- 2026-06-03 10:18:04+00:00| seen| https://bsky.app/profile/potato.software/post/3mneuvbjsee2f...

6.4CVSS5.8AI score0.00056EPSS
Exploits0References1
Circl
Circladded 2026/05/26 10:0 p.m.5 views

CVE-2026-9642

creationtimestamp| type| source ---|---|--- 2026-05-26 22:00:38+00:00| seen| https://bsky.app/profile/thehackerwire.bsky.social/post/3mmryk2eogi2k 2026-05-26 22:15:19+00:00| seen| https://bsky.app/profile/potato.software/post/3mmrzeclokg26 2026-05-29 22:07:08+00:00| seen|...

5.8AI score0.00053EPSS
Exploits0References3
Circl
Circladded 2026/05/16 6:32 a.m.3 views

CVE-2026-6690

creationtimestamp| type| source ---|---|--- 2026-05-16 06:32:06+00:00| seen| https://bsky.app/profile/atomicedge.bsky.social/post/3mlx7yjc64q2l 2026-05-16 06:32:07+00:00| seen| https://bsky.app/profile/potato.software/post/3mlx7yjq5xq27...

7.2CVSS5.8AI score0.00115EPSS
Exploits0References2
OSV
OSVadded 2026/05/08 5:31 p.m.3 views

GHSA-Q9M2-FHV9-3JCF `potato-annotation` has a Project-Boundary Bypass

Summary validatepathsecurity uses string-prefix containment startswith for boundary checks. This allows paths that are outside the intended project directory but share its prefix string e.g., /tmp/potatoprojdemoevil/... vs /tmp/potatoprojdemo to be accepted. Details Affected source location root...

5.1CVSS5.8AI score
Exploits0References2
Snyk
Snykadded 2026/05/08 5:31 p.m.4 views

Directory Traversal

Overview potato-annotation is an A flexible, stand-alone, web-based platform for text annotation tasks Affected versions of this package are vulnerable to Directory Traversal via the validatepathsecurity function. An attacker can gain unauthorized access to files outside the intended project...

5.1CVSS6.3AI score
Exploits0References2
Github Security Blog
Github Security Blogadded 2026/05/08 5:31 p.m.5 views

`potato-annotation` has a Project-Boundary Bypass

Summary validatepathsecurity uses string-prefix containment startswith for boundary checks. This allows paths that are outside the intended project directory but share its prefix string e.g., /tmp/potatoprojdemoevil/... vs /tmp/potatoprojdemo to be accepted. Details Affected source location root...

5.8AI score
Exploits0References2Affected Software1
Circl
Circladded 2026/05/06 2:33 a.m.3 views

CVE-2026-6229

creationtimestamp| type| source ---|---|--- 2026-05-06 02:33:06+00:00| seen| https://bsky.app/profile/atomicedge.bsky.social/post/3ml5nxwigtp2q 2026-05-06 02:33:09+00:00| seen| https://bsky.app/profile/potato.software/post/3ml5nxwwnu32t...

7.2CVSS5.8AI score0.00023EPSS
Exploits0References2
Circl
Circladded 2026/05/05 7:19 p.m.3 views

CVE-2026-27960

creationtimestamp| type| source ---|---|--- 2026-05-05 19:19:06+00:00| seen| https://bsky.app/profile/thehackerwire.bsky.social/post/3ml4vpud3o42r 2026-05-05 19:21:58+00:00| seen| https://bsky.app/profile/potato.software/post/3ml4vuza7cx2l 2026-05-05 21:58:42+00:00| seen|...

9.8CVSS5.7AI score0.00084EPSS
Exploits1References6
Circl
Circladded 2026/04/23 8:22 p.m.1 views

CVE-2026-33318

creationtimestamp| type| source ---|---|--- 2026-04-23 20:22:56+00:00| published-proof-of-concept| https://github.com/actualbudget/actual/security/advisories/GHSA-prp4-2f49-fcgp 2026-04-24 03:56:49+00:00| seen| https://bsky.app/profile/thehackerwire.bsky.social/post/3mk7n2kb7sz2z 2026-04-24...

8.8CVSS5.7AI score0.00041EPSS
Exploits1References4
Circl
Circladded 2026/04/07 9:40 a.m.2 views

CVE-2024-43028

creationtimestamp| type| source ---|---|--- 2026-04-07 09:40:09+00:00| seen| https://bsky.app/profile/cyberhub.blog/post/3mivicunecn2a 2026-04-07 10:00:56+00:00| seen| https://bsky.app/profile/potato.software/post/3mivjhz5lhn2n...

9.8CVSS5.9AI score0.00801EPSS
Exploits0References2
Circl
Circladded 2026/04/01 10:45 p.m.0 views

CVE-2025-13535

creationtimestamp| type| source ---|---|--- 2026-04-01 22:45:05+00:00| seen| https://bsky.app/profile/atomicedge.bsky.social/post/3mihrevrgnf2j 2026-04-01 22:45:07+00:00| seen| https://bsky.app/profile/potato.software/post/3mihrewob7j2x...

6.4CVSS5.8AI score0.00073EPSS
Exploits0References2
Circl
Circladded 2026/03/27 7:18 p.m.0 views

CVE-2025-15381

creationtimestamp| type| source ---|---|--- 2026-03-27 19:18:40+00:00| published-proof-of-concept| Telegram/1bFqVBg1WZRYib4qCiBn36zcLriGuSpWJXWdU6ZWtzYtM 2026-03-27 19:18:53+00:00| seen| Telegram/aqievDs9oCICHmk4C8wabuGpxUWUtlG5g0Gk9aIz6TfeTOo 2026-03-27 22:15:31+00:00| seen|...

8.1CVSS7.8AI score0.00013EPSS
Exploits1References2
Circl
Circladded 2026/03/19 9:23 p.m.4 views

CVE-2026-32191

creationtimestamp| type| source ---|---|--- 2026-03-19 21:23:02+00:00| seen| https://bsky.app/profile/thehackerwire.bsky.social/post/3mhgwq6xs252h 2026-03-19 21:23:41+00:00| seen| https://bsky.app/profile/thehackerwire.bsky.social/post/3mhgwrf3me42v 2026-03-19 21:23:44+00:00| seen|...

9.8CVSS5.7AI score0.00122EPSS
Exploits0References5
Circl
Circladded 2026/03/19 9:0 a.m.1 views

CVE-2019-25482

creationtimestamp| type| source ---|---|--- 2026-03-19 09:00:13+00:00| seen| https://bsky.app/profile/cyberhub.blog/post/3mhfn7wyonv2q 2026-03-19 09:05:52+00:00| seen| https://bsky.app/profile/potato.software/post/3mhfnk2rzrz2u...

8.8CVSS5.7AI score0.001EPSS
Exploits1References2
Circl
Circladded 2026/03/18 6:42 p.m.1 views

CVE-2026-2992

creationtimestamp| type| source ---|---|--- 2026-03-18 18:42:08+00:00| seen| https://bsky.app/profile/thehackerwire.bsky.social/post/3mhe5bkut732u 2026-03-18 19:06:20+00:00| seen| https://bsky.app/profile/potato.software/post/3mhe6mutq2p2w...

8.2CVSS5.7AI score0.00071EPSS
Exploits0References2
Circl
Circladded 2026/03/14 2:52 p.m.1 views

CVE-2026-32633

creationtimestamp| type| source ---|---|--- 2026-03-14 14:52:43+00:00| published-proof-of-concept| https://github.com/nicolargo/glances/security/advisories/GHSA-r297-p3v4-wp8m 2026-03-18 18:41:53+00:00| seen| https://bsky.app/profile/thehackerwire.bsky.social/post/3mhe5b4zree2h 2026-03-18...

9.1CVSS5.7AI score0.00103EPSS
Exploits1References4
Circl
Circladded 2026/03/11 3:0 a.m.1 views

CVE-2026-27278

creationtimestamp| type| source ---|---|--- 2026-03-11 03:00:18+00:00| seen| https://helpx.adobe.com/security/products/acrobat/apsb26-26.html 2026-03-12 13:00:13+00:00| seen| https://bsky.app/profile/cyberhub.blog/post/3mguheoo3wj2u 2026-03-12 13:22:24+00:00| seen|...

7.8CVSS5.7AI score0.00045EPSS
Exploits0References4
Circl
Circladded 2026/03/07 10:0 a.m.1 views

CVE-2026-2874

creationtimestamp| type| source ---|---|--- 2026-03-07 10:00:16+00:00| seen| https://bsky.app/profile/cyberhub.blog/post/3mghkycg5u72m 2026-03-07 10:00:17+00:00| seen| https://bsky.app/profile/potato.software/post/3mghkyczb572j...

9CVSS7.4AI score0.00112EPSS
Exploits1References2
Snyk
Snykadded 2026/03/06 7:14 a.m.1 views

Malicious Package

Overview @woody-mrs-potato/utils-banking is a malicious package. This package contains malicious code, and its content was removed from the official package manager. While this package might be attempting to impersonate a valid organization, there is no connection between that organization and th...

9.8CVSS5.4AI score
Exploits0References2
Rows per page
Query Builder