4 matches found
CVE-2026-41889 vulnerabilities
Vulnerabilities for packages: hydra, sftpgo, teleport, kine, keda, temporal, gitness, certificate-transparency, flyte, grafana-alloy, azure-service-operator, ferretdb, telegraf, splunk-otel-collector, sftpgo-plugin-eventsearch, spqr, cloudnative-pg, juicefs, step-ca, cloudprober, seaweedfs,...
CVE-2025-63811 vulnerabilities
Vulnerabilities for packages: grafana-alloy, opentelemetry-collector-contrib, bento, cluster-api-aws-controller, telegraf, splunk-otel-collector, argo-events, dapr, amazon-cloudwatch-agent, jitsucom-bulker, sqlexporter...
GHSA-9MJ6-HXHV-W67J vulnerabilities
Vulnerabilities for packages: dapr-fips, vault, sqlexporter-fips, argo-events-fips, splunk-otel-collector-fips, bento, dapr, jitsucom-bulker, argo-events, vault-fips, telegraf, cluster-api-aws-controller-fips, opentelemetry-collector-contrib, splunk-otel-collector, cluster-api-aws-controller,...
GHSA-79JV-5226-783F OpenRefine has a reflected cross-site scripting vulnerability (XSS) from POST request in ExportRowsCommand
Summary The export-rows command can be used in such a way that it reflects part of the request verbatim, with a Content-Type header also taken from the request. An attacker could lead a user to a malicious page that submits a form POST that contains embedded JavaScript code. This code would then ...