Linux Distros Unpatched Vulnerability : CVE-2026-33938

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Handlebars provides the power necessary to let users build semantic templates. In versions 4.0.0 through 4.7.8, the @partial-block special variable is stored in...

CVE-2026-29193

ZITADEL is an open source identity management platform. From version 4.0.0 to 4.12.0, a vulnerability in Zitadel's login V2 UI allowed users to bypass login behavior and security policies and self-register new accounts or sign in using password even if corresponding options were disabled in their...

EUVD-2024-34192

Malicious code in bioql PyPI...

ZITADEL 安全漏洞

ZITADEL is a modern open source alternative to Auth0, Firebase Auth, AWS Cognito, and Keycloak built for the container and serverless era from the Swiss ZITADEL open source. A security vulnerability exists in ZITADEL versions 4.0.0 through 4.0.2, 3.0.0 through 3.3.6, and versions prior to 2.71.15...

3m (=0.1.0), aaa-ml-datasets-course (=1.0.0) +1597 more potentially affected by CVE-2025-2099 via transformers (>=4.0.0 <=4.4.2)

transformers PYPI version =4.0.0, =0.1.0, =0.1.1, =0.1.0, =0.0.3, =0.0.0.dev20230804, =0.1.0, =0.3.0, =0.1.0, =0.2.5, =0.0.1, =0.1.0, =0.1.1 and more Source cves: CVE-2025-2099 Source advisory: SNYK:PYTHON-TRANSFORMERS-10185677...

aa-charlink (>=0.1.1 <=1.0.0), aa-drifters (=0.1.0a0) +503 more potentially affected by CVE-2025-26699 via django (>=4.0.0 <=4.2.2)

django PYPI version =4.0.0, =0.1.1, =1.0.0, =0.1.0a0, =0.11.0a0, =0.1.1, =1.1.0, =0.1.0, =0.0.3, =4.0.9.0, =65.10.0, =65.10.3 and more Source cves: CVE-2025-26699 Source advisory: SNYK:PYTHON-DJANGO-9296408...

com.instaclustr:cassandra-4 (=1.0), com.instaclustr:cassandra-kerberos-4 (=1.0.0) +24 more potentially affected by CVE-2025-23015 via org.apache.cassandra:cassandra-all (>=4.0-alpha3 <=4.0.13)

org.apache.cassandra:cassandra-all MAVEN version =4.0-alpha3, =1.0.2, =1.1, =1.0.0, =1.0.0, =4.4.0.0, =4.4.0.1 and more Source cves: CVE-2025-23015 Source advisory: OSV:GHSA-WMCC-9VCH-JMX4...

128981semzub (=1.0.1), 1food-menu (>=0.3.0 <=0.3.7) +3129 more potentially affected by CVE-2024-45811 via vite (>=4.0.0 <=4.5.3)

vite NPM version =4.0.0, =0.3.0, =1.0.0, =2.0.3, =0.0.1, =0.0.1, =0.0.7, =4.0.61, =4.0.61, =4.0.61, =4.0.61, =0.0.1, =0.0.3 and more Source cves: CVE-2024-45811 Source advisory: OSV:GHSA-9CWX-2883-4WFX...

PT-2023-23104 · Ibm · Ibm Aspera Faspex

Name of the Vulnerable Software and Affected Versions: IBM Aspera Faspex versions 4.0 through 4.4.2 IBM Aspera Faspex versions 5.0 through 5.0.5 Description: The issue allows a malicious actor to bypass IP whitelist restrictions using a specially crafted HTTP request. Recommendations: For IBM...

Wireshark 缓冲区错误漏洞

Wireshark formerly Ethereal is a suite of network packet analysis software from the Wireshark team. The function of the software is to intercept network packets and display detailed data for analysis. A security vulnerability exists in Wireshark that stems from an IEEE C37.118 Synchronized Phase...

Vmware Cloud Foundation 资源管理错误漏洞

Vmware VMware Cloud Foundation is an all-in-one hybrid cloud platform from Vmware. The platform includes features such as operations automation, infrastructure auto-configuration, and integrated lifecycle management. A resource management error vulnerability exists in Vmware Cloud Foundation, whi...

PT-2021-11738 · Cakephp · Cakephp

Name of the Vulnerable Software and Affected Versions: CakePHP versions 4.0.x through 4.1.3 Description: A vulnerability exists in the CsrfProtectionMiddleware component, allowing method override parameters to bypass CSRF checks by changing the HTTP request method to an arbitrary string that is n...

QEMU: qxl: null pointer dereference while releasing spice resources

interfacereleaseresource in hw/display/qxl.c in QEMU 3.1.x through 4.0.0 has a NULL pointer dereference...

10by10-react-app (=1.2.1), 1k-utils (>=1.0.0 <=1.0.1) +8629 more potentially affected by CVE-2019-10744 via lodash (>=4.0.0 <=4.17.11)

lodash NPM version =4.0.0, =1.0.0, =0.0.2, =0.1.1, =1.0.0, =0.2.0, =0.1.0, =0.1.0, =0.0.1, =0.2.1, =0.0.2, =0.0.7, =0.4.20, =1.0.7, =1.13.10 and more Source cves: CVE-2019-10744 Source advisory: SNYK:JS-LODASH-450202...