Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

7 matches found

Cvelist
Cvelistadded 2026/04/09 5:1 p.m.17 views

CVE-2026-39981 AGiXT has a Path Traversal in safe_join()

AGiXT is a dynamic AI Agent Automation Platform. Prior to 1.9.2, the safejoin function in the essentialabilities extension fails to validate that resolved file paths remain within the designated agent workspace. An authenticated attacker can use directory traversal sequences to read, write, or...

8.8CVSS0.00051EPSS
Exploits1References3
OSV
OSVadded 2026/02/06 3:54 p.m.3 views

OESA-2026-1277 runc security update

runc is a CLI tool for spawning and running containers according to the OCI specification. Security Fixes: A denial-of-service vulnerability exists in github.com/sirupsen/logrus when using Entry.Writer to log a single-line payload larger than 64KB without newline characters. Due to limitations in...

7.5CVSS5.4AI score0.00055EPSS
Exploits1References2
Positive Technologies
Positive Technologiesadded 2025/12/22 12:0 a.m.3 views

PT-2025-52723

Name of the Vulnerable Software and Affected Versions Fedify versions prior to 1.6.13 Fedify versions prior to 1.7.14 Fedify versions prior to 1.8.15 Fedify versions prior to 1.9.2 Description Fedify is a TypeScript library used for building federated server applications based on ActivityPub. A...

7.5CVSS6.5AI score0.0044EPSS
Exploits1References12
RedHat Linux
RedHat Linuxadded 2025/07/15 1:53 a.m.3 views

lz4: heap-based buffer overflow in LZ4_write32

LZ4 before 1.9.2 has a heap-based buffer overflow in LZ4write32 related to LZ4compressdestSize, affecting applications that call LZ4compressfast with a large input. This issue can also lead to data corruption. NOTE: the vendor states "only a few specific / uncommon usages of the API are at risk."...

8.1CVSS7.4AI score0.0159EPSS
Exploits0References4
SUSE CVE
SUSE CVEadded 2023/02/15 3:50 a.m.1 views

SUSE CVE-2020-36599

lib/omniauth/failureendpoint.rb in OmniAuth before 1.9.2 and before 2.0 does not escape the messagekey value...

9.8CVSS9.4AI score0.00617EPSS
Exploits0References3
CNVD
CNVDadded 2019/10/14 12:0 a.m.3 views

LZ4 Buffer Overflow Vulnerability

LZ4 is a lossless compression algorithm. A buffer overflow vulnerability exists in the 'LZ4write32' function in versions of LZ4 prior to 1.9.2, which originates when a networked system or product performs an operation in memory without properly validating the data boundaries, resulting in an...

8.1CVSS8.2AI score0.0159EPSS
Exploits0References1
RedHat Linux
RedHat Linuxadded 2011/12/05 7:54 p.m.4 views

php-pear: symlink vulnerability in PEAR installer

The installer in PEAR before 1.9.2 allows local users to overwrite arbitrary files via a symlink attack on the package.xml file, related to the 1 downloaddir, 2 cachedir, 3 tmpdir, and 4 pear-build-download directories, a different vulnerability than CVE-2007-2519...

6.8CVSS5.9AI score0.04347EPSS
Exploits2References4
Rows per page
Query Builder