15 matches found
CVE-2026-47728
Bugsink is a self-hosted error tracking tool. Prior to 2.2.0, Bugsink resolved sourcemaps and debug files by debug ID without scoping that lookup to the project that owned the uploaded metadata. An authenticated user with access to one project could cause event processing in that project to use...
CVE-2026-42227
n8n is an open source workflow automation platform. Prior to versions 1.123.32, 2.17.4, and 2.18.1, an authenticated user with a valid API key scoped to variable:list could read variables from projects they are not a member of by supplying an arbitrary projectId query parameter to the public API...
EUVD-2025-29703
Malicious code in bioql PyPI...
CVE-2025-59455
In JetBrains TeamCity before 2025.07.2 project isolation bypass was possible due to race condition...
JetBrains TeamCity Competitive Conditions Vulnerability
JetBrains TeamCity is a Continuous Integration/Continuous Deployment CI/CD tool developed by JetBrains to automate the software build, test, and deployment process with support for multiple programming languages and tools. JetBrains TeamCity suffers from a competitive condition vulnerability that...
JetBrains TeamCity < 2025.07.2 Multiple Vulnerabilities
The version of JetBrains TeamCity installed on the remote host is prior to 2025.07.2. It is, therefore, affected by multiple vulnerabilities as referenced in the advisory. - In JetBrains TeamCity before 2025.07.2 project isolation bypass was possible due to a race condition. CVE-2025-59455 - In...
CVE-2025-59455
In JetBrains TeamCity before 2025.07.2 project isolation bypass was possible due to race condition...
CVE-2025-59455
In JetBrains TeamCity before 2025.07.2 project isolation bypass was possible due to race condition...
CVE-2025-59455
In JetBrains TeamCity before 2025.07.2 project isolation bypass was possible due to race condition...
CVE-2025-59455
CVE-2025-59455 affects JetBrains TeamCity. Before 2025.07.2, a race-condition could bypass project isolation. Impact is isolation bypass for affected TeamCity deployments. Remediation: upgrade to TeamCity 2025.07.2 or later (as indicated by PT Security advisory and related sources).
CVE-2025-59455
In JetBrains TeamCity before 2025.07.2 project isolation bypass was possible due to race condition...
JetBrains TeamCity 竞争条件问题漏洞
JetBrains TeamCity is a Continuous Integration/Continuous Deployment CI/CD tool developed by JetBrains to automate the software build, test, and deployment process with support for multiple programming languages and tools. JetBrains TeamCity suffers from a competitive condition vulnerability that...
PT-2025-38133
Name of the Vulnerable Software and Affected Versions: TeamCity versions prior to 2025.07.2 Description: A race condition allowed for a project isolation bypass in TeamCity. Recommendations: Update to TeamCity version 2025.07.2 or later...
barbican 授权问题漏洞
barbican is an OpenStack key management service, API server. An authorization issue vulnerability exists in barbican due to a lack of authorization checks. A remote user with the administrator role could add secrets to different project containers. The vulnerability allows an attacker on a networ...
PT-2019-10045 · Rancher · Rancher
Name of the Vulnerable Software and Affected Versions: Rancher versions 2.0.0 through 2.1.5 Description: An issue allows project members with access to the default namespace to execute administrative privileged commands against the k8s cluster by mounting the netes-default service account in a po...