CVE-2026-54133

Technical details (affected versions, impact specifics, and remediation) are not publicly available in the provided documents. Monitor for updates.

CVE-2026-45413

MaxKB is an open-source AI assistant for enterprise. Prior to 2.9.1, user passwords are stored using unsalted MD5 hashes, making them trivially crackable via rainbow tables or GPU-accelerated brute force hashcat. This vulnerability is fixed in 2.9.1...

CVE-2025-67941

CVE-2025-67941 refers to a Local File Inclusion in WordPress theme The Aisle by Elated-Themes, caused by improper control of filename for include/require statements in PHP. Affects The Aisle versions prior to 2.9.1. Impact is local file inclusion via PHP, enabling access to local files. Public ad...

NiceGUI 授权问题漏洞

NiceGUI is an easy-to-use, Python-based UI framework open-sourced by NiceGUI. An authorization issue vulnerability exists in NiceGUI versions prior to 2.9.1, which stems from the fact that authentication using NiceGUI can allow a user to log in on all browsers, including those in incognito mode...

ALPINE-CVE-2021-42771

Babel.Locale in Babel before 2.9.1 allows attackers to load arbitrary locale .dat files containing serialized Python objects via directory traversal, leading to code execution...

Cisco Common Services Platform Collector 操作系统命令注入漏洞

The Cisco Common Services Platform Collector CSPC is an SNMP-based tool that discovers and collects information from Cisco devices installed on a network. A command injection vulnerability exists in the configuration dashboard of Cisco Common Services Platform Collector versions prior to 2.9.1. T...