Astra Linux – Vulnerability in Firefox

Incorrect boundary conditions in the Graphics: WebGPU component. This vulnerability was fixed in Firefox 145 and Thunderbird 145...

CVE-2026-39433

Subscriber Arbitrary Content Deletion in WPAMS 49.5.3 versions...

CVE-2026-42506 affecting package kubevirt for versions less than 1.7.1-5

CVE-2026-42506 affecting package kubevirt for versions less than 1.7.1-5. A patched version of the package is available...

NPM: n8n: Credential exfiltration via Allowed HTTP Request Domains Bypass

NPM: n8n: Credential exfiltration via Allowed HTTP Request Domains Bypass vulnerability discovered by ? in WordPress Npm n8n versions 2.20.0...

Astra Linux – Vulnerability in Firefox

A maliciously crafted favicon could lead to a memory-out-of-control crash. This vulnerability affects Firefox versions earlier than 113...

CVE-2026-1703 affecting package python-virtualenv for versions less than 20.36.1-2

CVE-2026-1703 affecting package python-virtualenv for versions less than 20.36.1-2. A patched version of the package is available...

PT-2026-27515

Name of the Vulnerable Software and Affected Versions Thunderbird versions prior to 140.9 Thunderbird versions prior to 149 Description A spoofing issue exists in Thunderbird. Recommendations Update Thunderbird to version 140.9 or later. Update Thunderbird to version 149 or later...

CVE-2026-2786

Use-after-free in the JavaScript Engine component. This vulnerability affects Firefox 148, Firefox ESR 140.8, Thunderbird 148, and Thunderbird 140.8...

firefox: thunderbird: Use-after-free in the JavaScript Engine component

A flaw was found in Firefox and Thunderbird. The Mozilla Foundation's Security Advisory describes the following issue: Use-after-free in the JavaScript Engine component...

firefox: thunderbird: Clickjacking issue, information disclosure in the PDF Viewer component

A flaw was found in Firefox and Thunderbird. The Mozilla Foundation's Security Advisory describes the following issue: Clickjacking issue, information disclosure in the PDF Viewer component...

firefox: Spoofing issue in the Downloads Panel component

A flaw was found in Firefox. The Mozilla Foundation's Security Advisory describes the following issue: Spoofing issue in the Downloads Panel component...

UBUNTU-CVE-2026-0891

Memory safety bugs present in Firefox ESR 140.6, Thunderbird ESR 140.6, Firefox 146 and Thunderbird 146. Some of these bugs showed evidence of memory corruption and we presume that with enough effort some of these could have been exploited to run arbitrary code. This vulnerability was fixed in...

firefox: thunderbird: JIT miscompilation in the JavaScript Engine: JIT component

A flaw was found in Firefox and Thunderbird. The Mozilla Foundation's Security Advisory describes the following issue: JIT miscompilation in the JavaScript Engine: JIT component...

GHSA-J6GG-R5JC-47CM Mattermost fails to properly restrict access to archived channel search API

Mattermost versions 11 fail to properly restrict access to archived channel search API which allows guest users to discover archived public channels via the /api/v4/teams/teamid/channels/searcharchived endpoint...

EUVD-2021-23748

Malware in sbrugna...

CVE-2025-40767

A vulnerability has been identified in SINEC Traffic Analyzer 6GK8822-1BG01-0BA0 All versions V3.0. The affected application runs docker containers without adequate security controls to enforce isolation. This could allow an attacker to gain elevated access, potentially accessing sensitive host...

CVE-2024-6605

Firefox Android allowed immediate interaction with permission prompts. This could be used for tapjacking. This vulnerability affects Firefox 128...

CVE-2025-22870 affecting package vitess for versions less than 19.0.4-6

CVE-2025-22870 affecting package vitess for versions less than 19.0.4-6. A patched version of the package is available...

CVE-2025-21783 affecting package kernel for versions less than 6.6.79.1-1

CVE-2025-21783 affecting package kernel for versions less than 6.6.79.1-1. A patched version of the package is available...

Drupal AI (Artificial Intelligence) module < 1.0.5 - Authenticated Other Vulnerability Type vulnerability

Authenticated Other Vulnerability Type vulnerability discovered by Drew Webber mcdruid in WordPress Module AI Artificial Intelligence versions 1.0.5...