EUVD-2026-37768

In Splunk AI Toolkit versions below 5.7.4, a user who holds the "admin" Splunk role could execute arbitrary OS commands on the host running the Splunk Enterprise instance. The vulnerability is possible because of an unsafe shell execution pattern in the btool configuration helper, which construct...

CVE-2025-12998 Broken Authentication in extension “Modules” (modules)

Improper Authentication vulnerability in TYPO3 Extension "Modules" codingms/modules.This issue affects Extension "Modules": before 4.3.11, from 5.0.0 before 5.7.4, from 6.0.0 before 6.4.2, from 7.0.0 before 7.5.5...

Mcafee McAfee Agent 安全漏洞

Mcafee McAfee Agent MA is a McAfee client component that provides secure communication between ePolicy Orchestrator antivirus management platform and managed products. A security vulnerability exists in the repair process in McAfee Agent for Windows versions prior to 5.7.4, which stems from not...

Automattic Mongoose Access Control Bypass Vulnerability

Automattic Mongoose is a MongoDB object modeling tool for asynchronous environments. An access control bypass vulnerability exists in Automattic Mongoose 5.7.4 and earlier versions, which can be exploited by an attacker to bypass access control...