Lucene search
+L

118 matches found

CVE
CVE
added 2026/07/05 2:27 p.m.23 views

CVE-2026-12250

The CVE-2026-12250 entry concerns Pardus Domain Joiner (TUBITAK BILGEM Software Technologies Research Institute). A vulnerability described as an Invocation of process using visible sensitive information could allow Excavation (data exposure). Affected version range: Pardus Domain Joiner 0.5.2 pr...

7.9CVSS5.9AI score0.00106EPSS
Exploits0References1
Cvelist
Cvelist
added 2026/06/10 8:6 p.m.34 views

CVE-2026-46654 Plonky3 MultiField32Challenger: transcript malleability and challenge entropy loss

Plonky3 is a toolkit for polynomial IOPs PIOPs. Prior to versions 0.4.3 and 0.5.3, an attacker controlling prover-side observations can craft distinct transcripts that produce identical challenges, breaking the binding property of Fiat-Shamir. This issue has been patched in versions 0.4.3 and 0.5...

8.9CVSS0.00108EPSS
Exploits0References1
OSV
OSV
added 2026/06/10 8:6 p.m.3 views

CVE-2026-46654 Plonky3 MultiField32Challenger: transcript malleability and challenge entropy loss

Plonky3 is a toolkit for polynomial IOPs PIOPs. Prior to versions 0.4.3 and 0.5.3, an attacker controlling prover-side observations can craft distinct transcripts that produce identical challenges, breaking the binding property of Fiat-Shamir. This issue has been patched in versions 0.4.3 and 0.5...

8.9CVSS5.9AI score0.00108EPSS
Exploits0References3
OSV
OSV
added 2026/06/08 3:20 p.m.9 views

EEF-CVE-2026-49756 Multipart form-data header injection in Req via unescaped name/filename/content_type

Summary Improper Neutralization of CRLF Sequences 'CRLF Injection' vulnerability in wojtekmach Req allows multipart parameter smuggling via attacker-influenced part metadata. Req.Utils.encode\form\part/2 in lib/req/utils.ex builds the per-part headers by interpolating the caller-supplied name,...

2.1CVSS6.2AI score0.00178EPSS
Exploits0References4
EUVD
EUVD
added 2026/06/01 2:30 a.m.11 views

EUVD-2026-33537

A vulnerability was detected in unitedbyai droidclaw up to 0.5.3. The affected element is an unknown function of the file server/src/routes/pairing.ts of the component claim Endpoint. The manipulation results in improper restriction of excessive authentication attempts. The attack may be launched...

6.3CVSS5.2AI score0.00406EPSS
Exploits0References7
CVE
CVE
added 2026/06/01 2:30 a.m.26 views

CVE-2026-10216

The CVE-2026-10216 entry concerns unitedbyai droidclaw (

6.3CVSS5.2AI score0.00406EPSS
Exploits0References7
vulnersOsv
vulnersOsv
added 2026/05/11 9:0 p.m.9 views

@squawk/mcp (>=0.2.0 <=0.9.0) potentially affected by unknown CVE via @squawk/flight-math (=0.5.3)

@squawk/flight-math NPM version =0.5.3 is affected by a known vulnerability. The following packages have a transitive dependency on @squawk/flight-math and may be impacted: - @squawk/mcp =0.2.0, =0.9.0 Source cves: unknown CVE Source advisory: SNYK:JS-SQUAWKFLIGHTMATH-16640879...

5.8AI score
Exploits0
Tenable Nessus
Tenable Nessus
added 2026/04/28 12:0 a.m.32 views

Fedora 44 : libcgif (2026-7fd284c688)

The remote Fedora 44 host has a package installed that is affected by a vulnerability as referenced in the FEDORA-2026-7fd284c688 advisory. Version 0.5.3 - Fix potential undefined behavior in cgifaddframe which could have led to an integer overflow CVE-2026-4985 Tenable has extracted the precedin...

5.3CVSS5AI score0.00492EPSS
Exploits0References2
Fedora
Fedora
added 2026/02/10 1:34 a.m.6 views

[SECURITY] Fedora 43 Update: rust-btrd-0.5.3-12.fc43

The btrfs debugger...

7.5CVSS5.4AI score0.00443EPSS
Exploits1
RedhatCVE
RedhatCVE
added 2026/01/09 9:12 a.m.7 views

CVE-2022-0338

Insertion of Sensitive Information into Log File in Conda loguru prior to 0.5.3...

4.3CVSS4.8AI score0.00758EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2026/01/09 8:47 a.m.7 views

CVE-2025-23826

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in pedjas Stop Comment Spam stop-comment-spam allows Stored XSS.This issue affects Stop Comment Spam: from n/a through = 0.5.3...

7.1CVSS7.2AI score0.004EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/12/16 12:42 a.m.30 views

CVE-2025-67744 Mermaid XSS vulnerability leads to Remote Code Execution

DeepChat is an open-source artificial intelligence agent platform that unifies models, tools, and agents. Prior to version 0.5.3, a security vulnerability exists in the Mermaid diagram rendering component that allows arbitrary JavaScript execution. Due to the exposure of the Electron IPC renderer...

9.6CVSS0.00536EPSS
Exploits1References2
OSV
OSV
added 2025/12/03 7:7 p.m.7 views

GHSA-FMH4-WR37-44FP React Server Components are Vulnerable to RCE

Summary @vitejs/plugin-rsc vendors react-server-dom-webpack, which contained an unauthenticated remote code execution vulnerability in versions prior to 19.0.1, 19.1.2, and 19.2.1. See details in React repository's advisory https://github.com/facebook/react/security/advisories/GHSA-fv66-9v8q-g76r...

10CVSS8.6AI score
Exploits0References5
OSV
OSV
added 2025/11/04 12:0 a.m.7 views

OPENSUSE-SU-2025:15703-1 kubecolor-0.5.3-1.1 on GA media

These are all security issues fixed in the kubecolor-0.5.3-1.1 package on the GA media of openSUSE Tumbleweed...

5.3CVSS7.2AI score0.00526EPSS
Exploits0References2
OSV
OSV
added 2025/11/02 7:55 p.m.3 views

MAL-2025-49317 Malicious code in solc_0.5.3 (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector cf5a247d617b73fa5ff87742fa1c25a74b47bd06dcd2ad4069f1d9347b3edf7a The package solc0.5.3 was found to contain malicious code. Source: ossf-package-analysis...

7.2AI score
Exploits0
EUVD
EUVD
added 2025/10/03 8:7 p.m.8 views

EUVD-2023-44149

Malicious code in bioql PyPI...

9.8CVSS9.5AI score0.00922EPSS
Exploits1References2
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2025-10638

Malicious code in bioql PyPI...

7.1CVSS7.7AI score0.00197EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/03 8:7 p.m.7 views

EUVD-2022-0146

Malicious code in bioql PyPI...

4.3CVSS4.7AI score0.00758EPSS
Exploits1References6
EUVD
EUVD
added 2025/10/03 8:7 p.m.6 views

EUVD-2023-44152

Malicious code in bioql PyPI...

8CVSS7.8AI score0.00526EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2023-44150

Malicious code in bioql PyPI...

8.8CVSS8AI score0.00889EPSS
Exploits1References2
Rows per page
Query Builder