Lucene search
K

4 matches found

NVD
NVD
added 2026/04/15 11:16 p.m.11 views

CVE-2026-40316

OWASP BLT is a QA testing and vulnerability disclosure platform that encompasses websites, apps, git repositories, and more. Versions prior to 2.1.1 contain an RCE vulnerability in the .github/workflows/regenerate-migrations.yml workflow. The workflow uses the pullrequesttarget trigger to run wit...

8.8CVSS0.00411EPSS
Exploits1References1
Cvelist
Cvelist
added 2026/04/15 10:49 p.m.26 views

CVE-2026-40316 OWASP BLT has RCE in Github Actions via untrusted Django model execution in workflow

OWASP BLT is a QA testing and vulnerability disclosure platform that encompasses websites, apps, git repositories, and more. Versions prior to 2.1.1 contain an RCE vulnerability in the .github/workflows/regenerate-migrations.yml workflow. The workflow uses the pullrequesttarget trigger to run wit...

8.8CVSS0.00411EPSS
Exploits1References1
Vulnrichment
Vulnrichment
added 2026/04/15 10:49 p.m.6 views

CVE-2026-40316 OWASP BLT has RCE in Github Actions via untrusted Django model execution in workflow

OWASP BLT is a QA testing and vulnerability disclosure platform that encompasses websites, apps, git repositories, and more. Versions prior to 2.1.1 contain an RCE vulnerability in the .github/workflows/regenerate-migrations.yml workflow. The workflow uses the pullrequesttarget trigger to run wit...

8.8CVSS6.3AI score0.00411EPSS
Exploits1References1
CNNVD
CNNVD
added 2026/04/15 12:0 a.m.8 views

OWASP BLT 安全漏洞

OWASP BLT is an open-source gamified crowdsourcing platform for testing and disclosing vulnerabilities. Versions of OWASP BLT prior to 2.1.1 contained security vulnerabilities. These vulnerabilities were caused by a remote code execution issue in the.github/workflows/regenerate-migrations.yml...

8.8CVSS6.6AI score0.00411EPSS
Exploits1References1
Rows per page
Query Builder