PT-2026-36824

Name of the Vulnerable Software and Affected Versions auth versions 1.18.0 through 1.25.1 auth versions 2.0.0 through 2.1.1 Description The Patreon OAuth provider maps every authenticated Patreon account to the same local user.ID instead of deriving a unique ID from the account returned by Patreo...

CVE-2026-39645

Server-Side Request Forgery SSRF vulnerability in Global Payments GlobalPayments WooCommerce global-payments-woocommerce allows Server Side Request Forgery.This issue affects GlobalPayments WooCommerce: from n/a through = 1.18.0...

EUVD-2026-20305

Server-Side Request Forgery SSRF vulnerability in Global Payments GlobalPayments WooCommerce global-payments-woocommerce allows Server Side Request Forgery.This issue affects GlobalPayments WooCommerce: from n/a through = 1.18.0...

CVE-2026-39645

Server-Side Request Forgery SSRF vulnerability in Global Payments GlobalPayments WooCommerce global-payments-woocommerce allows Server Side Request Forgery.This issue affects GlobalPayments WooCommerce: from n/a through = 1.18.0...

CLEANSTART-2026-AC65885 Security fixes for CVE-2025-61726, CVE-2025-61728, CVE-2025-61730, CVE-2025-61732, CVE-2025-68119, CVE-2025-68121, CVE-2026-25518, CVE-2026-25679, CVE-2026-26958, CVE-2026-27139, CVE-2026-27142, ghsa-f6x5-jh6r-wrfv, ghsa-j5w8-q4qc-rx2x applied in versions: 1.18.0-r0, 1.18.0-r1, 1.18.0-r2, 1.18.0-r3

Multiple security vulnerabilities affect the percona-xtradb-cluster-operator-fips package. These issues are resolved in later releases. See references for individual vulnerability details...

BIT-CILIUM-2026-26963 Cilium may not enforce host firewall policies when Native Routing, WireGuard and Node Encryption are enabled

Cilium is a networking, observability, and security solution with an eBPF-based dataplane. Versions 1.18.0 through 1.18.5 will incorrectly permit traffic from Pods on other nodes when Native Routing, WireGuard and Node Encryption are enabled. This issue has been fixed in version 1.18.6...

CLEANSTART-2026-JN44153 Security fixes for GHSA-F6X5-JH6R-WRFV, GHSA-GX3X-VQ4P-MHHV, GHSA-J5W8-Q4QC-RX2X applied in versions: 1.18.0-r0, 1.19.0-r1

Multiple security vulnerabilities affect the percona-xtradb-cluster-operator-fips package. These issues are resolved in later releases. See references for individual vulnerability details...

PT-2026-6308

Name of the Vulnerable Software and Affected Versions cert-manager versions 1.18.0 through 1.18.4 cert-manager versions 1.19.0 through 1.19.2 Description cert-manager simplifies the process of obtaining, renewing, and using certificates in Kubernetes clusters. The cert-manager-controller performs...

EUVD-2025-203581

Missing Authorization vulnerability in wppochipp Pochipp pochipp allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Pochipp: from n/a through = 1.18.0...

RetroArch 安全漏洞

RetroArch is a reference front-end to the Libretro API open-sourced by Libretro. A security vulnerability exists in RetroArch versions 1.18.0, 1.19.0, and 1.20.0, which stems from an out-of-bounds read in the filestreamvscanf function that could lead to a local attack...

UBUNTU-CVE-2025-25291

ruby-saml provides security assertion markup language SAML single sign-on SSO for Ruby. An authentication bypass vulnerability was found in ruby-saml prior to versions 1.12.4 and 1.18.0 due to a parser differential. ReXML and Nokogiri parse XML differently; the parsers can generate entirely...

PT-2024-2045 · Nlnet +2 · Unbound +2

Name of the Vulnerable Software and Affected Versions: Unbound versions 1.18.0 through 1.19.1 Description: The issue is related to a denial of service vulnerability caused by an infinite loop in the code. This occurs when Unbound tries to trim extra text fields from EDE records to fit within the...

CVE-2022-27651 affecting package buildah for versions less than 1.18.0-8

CVE-2022-27651 affecting package buildah for versions less than 1.18.0-8. A patched version of the package is available...

Rust Programming Language Standard Library Information Disclosure Vulnerability

Rust is a general-purpose, compiled programming language.The Rust Programming Language Standard Library is the standard language library for Rust. An information disclosure vulnerability exists in Rust Programming Language Standard Library version 1.18.0 and later. The vulnerability arises from a...

DEBIAN-CVE-2019-12472

An Incorrect Access Control vulnerability was found in Wikimedia MediaWiki 1.18.0 through 1.32.1. It is possible to bypass the limits on IP range blocks $wgBlockCIDRLimit by using the API. Fixed in 1.32.2, 1.31.2, 1.30.2 and 1.27.6...