SUSE CVE-2017-18916

An issue was discovered in Mattermost Server before 3.8.2, 3.7.5, and 3.6.7. API endpoint access control does not honor an integration permission restriction...

CVE-2025-66626

Argo Workflows is an open source container-native workflow engine for orchestrating parallel jobs on Kubernetes. Versions 3.6.13 and below and versions 3.7.0 through 3.7.4, contain unsafe untar code that handles symbolic links in archives. Concretely, the computation of a link's target and the...

Mattermost Server server restarts may provide attackers with API access

An issue was discovered in Mattermost Server before 3.8.2, 3.7.5, and 3.6.7. After a restart of a server, an attacker might suddenly gain API Endpoint access...

TYPO3 Media management extension directory traversal vulnerability

TYPO3 is a free and open source content management system framework CMS/CMF. media management is one of the multimedia management extension plug-ins. A directory traversal vulnerability exists in TYPO3 Media management extension versions prior to 3.7.5 and 4.0.4, which allows an attacker to obtai...