Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

6015 matches found

Github Security Blog
Github Security Blogadded 2026/02/25 9:23 p.m.11 views

n8n has a Sandbox Escape in its JavaScript Task Runner

Impact An authenticated user with permission to create or modify workflows could exploit a vulnerability in the JavaScript Task Runner sandbox to execute arbitrary code outside the sandbox boundary. On instances using internal Task Runners default runner mode, this could result in full compromise...

9.9CVSS6AI score0.00596EPSS
Exploits0References7Affected Software1
GithubExploit
GithubExploitadded 2026/02/25 3:31 p.m.123 views

Security_Testing_Task3

No d...

5.4AI score
Exploits0
RedHat Linux
RedHat Linuxadded 2026/02/25 2:18 p.m.4 views

kernel: scsi: mpi3mr: Synchronous access b/w reset and tm thread for reply queue

In the Linux kernel, the following vulnerability has been resolved: scsi: mpi3mr: Synchronous access b/w reset and tm thread for reply queue When the task management thread processes reply queues while the reset thread resets them, the task management thread accesses an invalid queue ID 0xFFFF, s...

7.8CVSS5.7AI score0.00252EPSS
Exploits0References5
RedhatCVE
RedhatCVEadded 2026/02/25 4:7 a.m.9 views

CVE-2026-3064

A security vulnerability has been detected in HummerRisk up to 1.5.0. Affected by this issue is some unknown functionality of the file ResourceCreateService.java of the component Cloud Task Scheduler. Such manipulation of the argument regionId leads to command injection. The attack may be launche...

8.8CVSS5.2AI score0.14382EPSS
Exploits1References1
RedhatCVE
RedhatCVEadded 2026/02/25 4:6 a.m.7 views

CVE-2026-3065

A vulnerability was detected in HummerRisk up to 1.5.0. This affects the function CommandUtils.commonExecCmdWithResult of the file CloudTaskService.java of the component Cloud Task Dry-run. Performing a manipulation of the argument fileName results in command injection. Remote exploitation of the...

8.8CVSS5.2AI score0.24104EPSS
Exploits1References1
RedHat Linux
RedHat Linuxadded 2026/02/25 12:28 a.m.1 views

kernel: scsi: mpi3mr: Synchronous access b/w reset and tm thread for reply queue

In the Linux kernel, the following vulnerability has been resolved: scsi: mpi3mr: Synchronous access b/w reset and tm thread for reply queue When the task management thread processes reply queues while the reset thread resets them, the task management thread accesses an invalid queue ID 0xFFFF, s...

7.8CVSS5.7AI score0.00252EPSS
Exploits0References5
Positive Technologies
Positive Technologiesadded 2026/02/25 12:0 a.m.7 views

PT-2026-22030

Name of the Vulnerable Software and Affected Versions n8n versions prior to 2.10.1 n8n versions prior to 2.9.3 n8n versions prior to 1.123.22 Description n8n is an open source workflow automation platform. A flaw exists in the JavaScript Task Runner sandbox, potentially allowing an authenticated...

9.9CVSS6.1AI score0.00596EPSS
Exploits0References19
Positive Technologies
Positive Technologiesadded 2026/02/25 12:0 a.m.5 views

PT-2026-22029

Name of the Vulnerable Software and Affected Versions n8n versions prior to 2.10.1 n8n versions prior to 2.9.3 n8n versions prior to 1.123.22 Description An authenticated user with permission to create or modify workflows could exploit the Python Code node to escape the sandbox. The sandbox did n...

9.9CVSS5.5AI score0.00352EPSS
Exploits0References10
Positive Technologies
Positive Technologiesadded 2026/02/25 12:0 a.m.8 views

PT-2026-22031

Name of the Vulnerable Software and Affected Versions Vikunja versions prior to 2.0.0 Description The application allows users to set weak passwords without enforcing minimum strength requirements. Active sessions remain valid after a user changes their password, potentially allowing an attacker...

9.9CVSS5.3AI score0.22162EPSS
Exploits68References141
RedhatCVE
RedhatCVEadded 2026/02/24 1:34 p.m.7 views

CVE-2026-2979

A flaw has been found in FastApiAdmin up to 2.2.0. This issue affects the function useravataruploadcontroller of the file /backend/app/api/v1/modulesystem/user/controller.py of the component Scheduled Task API. Executing a manipulation can lead to unrestricted upload. The attack can be launched...

8.8CVSS5.2AI score0.00294EPSS
Exploits1References1
RedhatCVE
RedhatCVEadded 2026/02/24 1:33 p.m.6 views

CVE-2026-2978

A vulnerability was detected in FastApiAdmin up to 2.2.0. This vulnerability affects the function uploadfilecontroller of the file /backend/app/api/v1/modulesystem/params/controller.py of the component Scheduled Task API. Performing a manipulation results in unrestricted upload. The attack can be...

8.8CVSS5.2AI score0.00345EPSS
Exploits1References1
RedhatCVE
RedhatCVEadded 2026/02/24 7:30 a.m.6 views

CVE-2026-2977

A security vulnerability has been detected in FastApiAdmin up to 2.2.0. This affects the function uploadcontroller of the file /backend/app/api/v1/modulecommon/file/controller.py of the component Scheduled Task API. Such manipulation leads to unrestricted upload. It is possible to launch the atta...

8.8CVSS6AI score0.00293EPSS
Exploits1References1
OSV
OSVadded 2026/02/24 3:16 a.m.6 views

CVE-2026-3064

A security vulnerability has been detected in HummerRisk up to 1.5.0. Affected by this issue is some unknown functionality of the file ResourceCreateService.java of the component Cloud Task Scheduler. Such manipulation of the argument regionId leads to command injection. The attack may be launche...

8.8CVSS5.3AI score
Exploits0References4
OSV
OSVadded 2026/02/24 3:16 a.m.6 views

CVE-2026-3065

A vulnerability was detected in HummerRisk up to 1.5.0. This affects the function CommandUtils.commonExecCmdWithResult of the file CloudTaskService.java of the component Cloud Task Dry-run. Performing a manipulation of the argument fileName results in command injection. Remote exploitation of the...

8.8CVSS5.4AI score
Exploits0References4
NVD
NVDadded 2026/02/24 3:16 a.m.10 views

CVE-2026-3064

A security vulnerability has been detected in HummerRisk up to 1.5.0. Affected by this issue is some unknown functionality of the file ResourceCreateService.java of the component Cloud Task Scheduler. Such manipulation of the argument regionId leads to command injection. The attack may be launche...

8.8CVSS0.14382EPSS
Exploits1References4
NVD
NVDadded 2026/02/24 3:16 a.m.9 views

CVE-2026-3065

A vulnerability was detected in HummerRisk up to 1.5.0. This affects the function CommandUtils.commonExecCmdWithResult of the file CloudTaskService.java of the component Cloud Task Dry-run. Performing a manipulation of the argument fileName results in command injection. Remote exploitation of the...

8.8CVSS0.24104EPSS
Exploits1References4
Vulnrichment
Vulnrichmentadded 2026/02/24 2:32 a.m.5 views

CVE-2026-3065 HummerRisk Cloud Task Dry-run CloudTaskService.java CommandUtils.commonExecCmdWithResult command injection

A vulnerability was detected in HummerRisk up to 1.5.0. This affects the function CommandUtils.commonExecCmdWithResult of the file CloudTaskService.java of the component Cloud Task Dry-run. Performing a manipulation of the argument fileName results in command injection. Remote exploitation of the...

6.5CVSS5.6AI score0.24104EPSS
Exploits1References4
CVE
CVEadded 2026/02/24 2:32 a.m.9 views

CVE-2026-3065

CVE-2026-3065 affects HummerRisk up to 1.5.0, specifically the Cloud Task Dry-run component. The issue is in the function CommandUtils.commonExecCmdWithResult of CloudTaskService.java, where manipulating the fileName argument enables command injection. Remote exploitation is possible, and the exp...

8.8CVSS6.4AI score0.24104EPSS
Exploits1References4Affected Software1
EUVD
EUVDadded 2026/02/24 2:32 a.m.4 views

EUVD-2026-7403

A vulnerability was detected in HummerRisk up to 1.5.0. This affects the function CommandUtils.commonExecCmdWithResult of the file CloudTaskService.java of the component Cloud Task Dry-run. Performing a manipulation of the argument fileName results in command injection. Remote exploitation of the...

8.8CVSS5.2AI score0.24104EPSS
Exploits1References4
Cvelist
Cvelistadded 2026/02/24 2:32 a.m.22 views

CVE-2026-3065 HummerRisk Cloud Task Dry-run CloudTaskService.java CommandUtils.commonExecCmdWithResult command injection

A vulnerability was detected in HummerRisk up to 1.5.0. This affects the function CommandUtils.commonExecCmdWithResult of the file CloudTaskService.java of the component Cloud Task Dry-run. Performing a manipulation of the argument fileName results in command injection. Remote exploitation of the...

6.5CVSS0.24104EPSS
Exploits1References4
Rows per page
Query Builder