110839 matches found
CVE-2026-23825
creationtimestamp| type| source ---|---|--- 2026-05-12 22:12:48+00:00| seen| https://bsky.app/profile/postac001.bsky.social/post/3mlosowixs22c...
CVE-2026-23824
creationtimestamp| type| source ---|---|--- 2026-05-12 22:11:07+00:00| seen| https://bsky.app/profile/postac001.bsky.social/post/3mloslwa2kq2e...
CVE-2026-45781
creationtimestamp| type| source ---|---|--- 2026-05-12 21:41:52+00:00| published-proof-of-concept| https://github.com/modelcontextprotocol/registry/security/advisories/GHSA-2v5f-5r6w-p67r 2026-05-15 02:06:27+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mluaol6rpr2o...
CVE-2026-41195
mosparo is the modern solution to protect your online forms from spam. Prior to 1.4.13, the automatic rule package source URL feature allows a project member with the editor role to store an attacker-controlled URL that the server later fetches. Because the server follows http/https redirects and...
SQL Injection
Overview @n8n/api-types is a fair-code workflow automation platform with native AI capabilities Affected versions of this package are vulnerable to SQL Injection in the process of importing a Data Table JSON file during a Source Control Pull operation. An attacker who can write to the git...
CVE-2026-44219
CVE-2026-44219 affects the ciguard static security auditor. The two SCA HTTP clients (osv.py and endoflife.py) call payload = json.loads(resp.read().decode('utf-8')) without a maximum bytes cap, allowing a hostile or compromised endoflife.date / OSV.dev (or a TLS MITM) to return multi-GB response...
CVE-2026-44219
ciguard is a static security auditor for CI/CD pipelines. From 0.6.0 to 0.8.1, both SCA HTTP clients src/ciguard/analyzer/sca/osv.py and src/ciguard/analyzer/sca/endoflife.py call payload = json.loadsresp.read.decode'utf-8' without a maximum-bytes cap. A hostile or compromised endoflife.date /...
EUVD-2025-209796
An issue in Open Source Kubectl MCP Server v1.1.1 allows attackers to execute arbitrary code on a victim system via user interaction with a crafted HTML page...
GHSA-94GR-W3Q5-RFQR Open Source Kubectl MCP Server vulnerable to arbitrary code execution via user interaction with crafted HTML page
An issue in Open Source Kubectl MCP Server v1.1.1 allows attackers to execute arbitrary code on a victim system via user interaction with a crafted HTML page...
PYSEC-2026-29
changedetection.io is a free open source web page change detection tool. In 0.54.9 and earlier, xpathfilter switches to XML mode for XML/RSS content and creates etree.XMLParserstripcdata=False without explicitly disabling external entity resolution, external DTD loading, or network-backed entity...
CVE-2026-45736
creationtimestamp| type| source ---|---|--- 2026-05-12 17:22:10+00:00| published-proof-of-concept| https://github.com/websockets/ws/security/advisories/GHSA-58qx-3vcg-4xpx 2026-05-19 12:01:01+00:00| seen| https://bsky.app/profile/lambdawatchdog.bsky.social/post/3mm7drfy4hj2o 2026-05-27...
CVE-2026-41293
creationtimestamp| type| source ---|---|--- 2026-05-12 17:15:01+00:00| seen| https://bsky.app/profile/infosec.skyfleet.blue/post/3mloc2ajsvu2j...
CVE-2026-43514
creationtimestamp| type| source ---|---|--- 2026-05-12 16:45:44+00:00| seen| https://bsky.app/profile/infosec.skyfleet.blue/post/3mloag3vj5w2s...
MINI-59JC-23XJ-Q9GF
Bulletin has no description...
CVE-2026-39534
creationtimestamp| type| source ---|---|--- 2026-05-12 16:35:45+00:00| seen| https://bsky.app/profile/undercode.bsky.social/post/3mlo7u7vfno26...
CVE-2026-43512
creationtimestamp| type| source ---|---|--- 2026-05-12 16:25:40+00:00| seen| https://bsky.app/profile/infosec.skyfleet.blue/post/3mlo7c7kphr2e 2026-05-14 00:36:38+00:00| seen| https://infosec.exchange/users/vuldb/statuses/116570128029864306 2026-06-08 23:00:11+00:00| published-proof-of-concept|...
CLSA-2026-1778602690 Fix CVE(s): CVE-2026-7598
SECURITY UPDATE: fix integer overflow in usernamelen bounds checks across userauthlist, userauthpassword and password change paths in src/userauth.c - debian/patches/CVE-2026-7598.patch: fix integer overflow in usernamelen bounds checks across userauthlist, userauthpassword and password change...
GHSA-X3R2-FJ3R-G5MV
creationtimestamp| type| source ---|---|--- 2026-05-12 16:10:29+00:00| seen| https://gist.github.com/alon710/001644e5a9eb201b408c3975d7ef4c5c...
CVE-2026-45091
creationtimestamp| type| source ---|---|--- 2026-05-12 16:10:29+00:00| seen| https://gist.github.com/alon710/001644e5a9eb201b408c3975d7ef4c5c 2026-05-16 07:00:12+00:00| published-proof-of-concept| Telegram/mjKYtwBGh-p48w8zvyKdmOaa4JWuY9k0ugNTHKDEJnGeA 2026-05-17 02:07:47+00:00|...
MINI-22XG-2X55-6H59
Bulletin has no description...