18022 matches found
CVE-2026-29080
creationtimestamp| type| source ---|---|--- 2026-07-01 02:50:37+00:00| published-proof-of-concept| https://github.com/advisories/GHSA-vjr5-c9qv-hgm3...
CVE-2026-29090
creationtimestamp| type| source ---|---|--- 2026-07-01 02:50:35+00:00| published-proof-of-concept| https://github.com/advisories/GHSA-6j7p-qjhg-9947...
CVE-2026-47077
creationtimestamp| type| source ---|---|--- 2026-07-01 02:50:33+00:00| published-proof-of-concept| https://github.com/advisories/GHSA-jq4m-q6p2-8gwc...
CVE-2026-48791
creationtimestamp| type| source ---|---|--- 2026-07-01 02:50:25+00:00| published-proof-of-concept| https://github.com/advisories/GHSA-qqw8-7c2r-jxch...
CVE-2026-48593
creationtimestamp| type| source ---|---|--- 2026-07-01 02:50:21+00:00| published-proof-of-concept| https://github.com/advisories/GHSA-6xh2-93p9-vqh4...
CVE-2026-48592
creationtimestamp| type| source ---|---|--- 2026-07-01 02:50:18+00:00| published-proof-of-concept| https://github.com/advisories/GHSA-389x-rgxr-8m33...
CVE-2026-48796
creationtimestamp| type| source ---|---|--- 2026-07-01 02:50:16+00:00| published-proof-of-concept| https://github.com/advisories/GHSA-85jm-cwp2-mvpv...
PT-2026-54929
Name of the Vulnerable Software and Affected Versions FatFs versions R0.16 and earlier Description A stack-based buffer overflow occurs in the f getlabel function. This issue arises because the exFAT label length XDIR NumLabel is trusted without enforcing the maximum limits defined by the...
PT-2026-55205
Name of the Vulnerable Software and Affected Versions sigstore-js versions prior to 3.1.1 Description The @sigstore/verify library incorrectly derives a transparency-log timestamp from the tlogEntries.integratedTime variable for bundle v0.2 inclusionProof-only entries. Because the inclusion proof...
MAL-2026-6697 Malicious code in @sudoughnym/enviro-demo (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 02c1c204d0f458d13d7140f4b7a007d551095665a418e9146037be9a5b2b7957 @sudoughnym/[email protected] ships preinstall.js and postinstall.js lifecycle scripts that run automatically on npm install. Both scripts collect...
PYSEC-2026-477 PraisonAI has critical RCE via `type: job` workflow YAML
praisonai workflow run loads untrusted YAML and if type: job executes steps through JobWorkflowExecutor in jobworkflow.py. This supports: - run: → shell command execution via subprocess.run - script: → inline Python execution via exec - python: → arbitrary Python script execution A malicious YAML...
Malicious code in yandex-geobase (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 1f6219d513896736aee31ce33719d6ae2d1f5b03293ecdfe884d944bbb3eb99a [email protected] squats the internal-sounding name 'yandex-geobase' and ships a postinstall script that performs an HTTP GET to a hardcoded bare-...
Exploit for CVE-2026-5366
CVE-2026-5366 P...
[SECURITY] Fedora 44 Update: nginx-mod-js-challenge-0^20230517.gitda6852d-9.fc44
Simple JavaScript proof-of-work based access for Nginx with virtually no over head...
CVE-2026-47073
creationtimestamp| type| source ---|---|--- 2026-06-27 00:35:56+00:00| published-proof-of-concept| https://github.com/benoitc/hackney/security/advisories/GHSA-q8jg-fgj4-fphf...
CVE-2026-49358
creationtimestamp| type| source ---|---|--- 2026-06-27 00:35:52+00:00| published-proof-of-concept| https://github.com/pontedilana/php-weasyprint/security/advisories/GHSA-5g9f-cwwg-4p8g...
CVE-2026-49342
creationtimestamp| type| source ---|---|--- 2026-06-27 00:35:42+00:00| published-proof-of-concept| https://github.com/lsegal/yard/security/advisories/GHSA-pxcc-8665-phx8...
CVE-2026-50029
creationtimestamp| type| source ---|---|--- 2026-06-27 00:35:39+00:00| published-proof-of-concept| https://github.com/sunnyadn/js-toml/security/advisories/GHSA-m34p-749j-x6m6...
CVE-2026-53520
creationtimestamp| type| source ---|---|--- 2026-06-27 00:35:27+00:00| published-proof-of-concept| https://github.com/nezhahq/nezha/security/advisories/GHSA-x6fg-52vr-hj4w...
CVE-2026-53522
creationtimestamp| type| source ---|---|--- 2026-06-27 00:35:22+00:00| published-proof-of-concept| https://github.com/nezhahq/nezha/security/advisories/GHSA-jg62-j5h6-8mpq...