CVE-2026-29791

CVE-2026-29791 affects Agentgateway, an open source data plane for agentic AI connectivity. Before version 0.12.0, MCP tools/call requests converted to OpenAPI requests did not sanitize input path, query, and header values, enabling parameter injection. The issue is patched in version 0.12.0. Imp...

CVE-2025-9624

A vulnerability in OpenSearch allows attackers to cause Denial of Service DoS by submitting complex querystring inputs. This issue affects all OpenSearch versions between 3.0.0 and 3.3.0 and OpenSearch 2.19.4...

SpatialReference.org 安全漏洞

SpatialReference.org is an online resource platform organized by SpatialReference. A security vulnerability exists in versions of SpatialReference.org prior to 2025-05-17, which stems from mishandling of search query parameter inputs and could lead to a cross-site scripting attack...

Siemens Polarion SQL注入漏洞

Siemens Polarion is a suite of application lifecycle management software from Siemens, Germany. The software supports end-to-end enterprise application development on a unified, modular, browser-based software environment. Siemens Polarion suffers from an SQL injection vulnerability that stems fr...