23 matches found
rust-openssl 安全漏洞
rust-openssl is an open-source library designed for interacting with the OpenSSL library. There were security vulnerabilities in the version of rust-openssl from 0.10.0 to 0.10.79. These vulnerabilities stemmed from incorrect calculations of the output buffer size when using AES key wrap padding,...
@agent-analytics/paperclip-live-analytics-plugin (>=0.1.1 <=0.1.11), @clawjedi/paperclip-plugin-chat (>=1.0.0 <=1.0.4) +16 more potentially affected by unknown CVE via @paperclipai/shared (>=2026.318.0-canary.0 <=2026.416.0-canary.1)
@paperclipai/shared NPM version =2026.318.0-canary.0, =0.1.1, =1.0.0, =0.0.1, =0.3.3, =0.1.0, =0.1.9, =2026.3.17-canary.0, =2026.3.17-canary.0, =2026.407.0-canary.5, =2026.3.17-canary.0, =2026.3.17-canary.2, =0.1.0, =2026.324.0-canary.0, =2026.325.0-canary.3 - corporateai =2026.328.0-canary.0 -...
@3onedata/alsatian (>=0.1.8-fix.3 <=0.1.8-fix.5), @abyedev/hono-dotenv (=1.0.0) +523 more potentially affected by CVE-2026-56761 via hono (>=0.5.10 <=4.12.12)
hono NPM version =0.5.10, =0.1.8-fix.3, =5.0.0, =0.2.0, =0.2.0, =0.4.0, =0.2.0, =0.1.4, =2026.4.4, =1.0.2, =0.1.1, =0.0.1, =0.0.2-a, =0.1.22, =1.1.1, =1.3.0 and more Source cves: CVE-2026-56761 Source advisory: OSV:GHSA-458J-XX4X-4375...
@bigegg/parse-server-schema-config (>=1.0.5 <=1.0.10), @kontaa/subgraph (>=1.0.1 <=1.2.3) +27 more potentially affected by CVE-2026-32742 via parse-server (>=2.0.8 <=7.5.4)
parse-server NPM version =2.0.8, =1.0.5, =1.0.1, =1.2.1, =2.4.46, =2.4.8, =1.0.0, =1.0.0, =1.0.1, =0.1.1, =0.0.2, =1.0.0, =0.1.0, =0.1.7, =0.0.1, =0.0.29 - parse-cli-server2 =0.0.30 and more Source cves: CVE-2026-32742 Source advisory: OSV:GHSA-5V7G-9H8F-8PGG...
vantuz (>=3.3.2 <=3.3.7) potentially affected by CVE-2026-27524 via openclaw (=0.0.1)
openclaw NPM version =0.0.1 is affected by a known vulnerability. The following packages have a transitive dependency on openclaw and may be impacted: - vantuz =3.3.2, =3.3.7 Source cves: CVE-2026-27524 Source advisory: OSV:GHSA-62F6-MRCJ-V8H5...
@aadarshjr/reweb-js (>=1.0.7 <=1.0.17), @acentswap/ace-core-trial (>=10.4.0 <=10.7.0) +869 more potentially affected by CVE-2026-26996 via minimatch (>=5.0.0 <=5.1.6)
minimatch NPM version =5.0.0, =1.0.7, =10.4.0, =9.0.0, =10.0.0, =10.0.0, =10.5.0, =10.4.0, =0.4.13, =2.3.0, =2.3.0, =2.2.1, =2.2.1, =2.2.2 - @aid-on/aidify =0.1.2 and more Source cves: CVE-2026-26996 Source advisory: OSV:GHSA-3PPC-4F35-3M26...
@abyedev/hono-dotenv (=1.0.0), @affectively/relay (>=5.0.0 <=6.0.1) +332 more potentially affected by unknown CVE via hono (>=0.5.10 <=4.10.2)
hono NPM version =0.5.10, =5.0.0, =0.1.1, =0.0.2-a, =0.1.22, =1.1.1, =0.0.1, =1.7.2, =1.7.1, =0.2.1, =0.6.1, =0.5.2, =0.0.0, =0.0.11 - @bgord/bun =1.0.2 and more Source cves: unknown CVE Source advisory: OSV:GHSA-Q7JF-GF43-6X6P...
Debian dsa-6028 : golang-github-canonical-lxd-dev - security update
The remote Debian 12 / 13 host has packages installed that are affected by multiple vulnerabilities as referenced in the dsa-6028 advisory. - ------------------------------------------------------------------------- Debian Security Advisory DSA-6028-1 [email protected]...
@regis-samurai/n8n (>=0.216.1 <=0.219.1), n8n-nodes-accelo (>=0.1.0 <=0.1.9) +11 more potentially affected by unknown CVE via n8n (>=0.138.0 <=0.93.0)
n8n NPM version =0.138.0, =0.216.1, =0.1.0, =0.18.0, =0.1.0, =0.1.0, =0.2.14, =0.1.0, =0.1.0, =0.0.2, =0.0.2, =1.1.3 Source cves: unknown CVE Source advisory: SNYK:JS-N8N-13524400...
Linux Distros Unpatched Vulnerability : CVE-2021-31806
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An issue was discovered in Squid before 4.15 and 5.x before 5.0.6. Due to a memory-management bug, it is vulnerable to a Denial of Service attack against all...
CVE-2025-49061
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in perteus Porn Videos Embed porn-videos-embed allows Stored XSS.This issue affects Porn Videos Embed: from n/a through = 0.9.1...
01os (>=0.0.1 <=0.0.14), a360-python-libraries (>=0.3.6 <=1.1.1) +3305 more potentially affected by CVE-2025-54121 via starlette (>=0.20.2 <=0.47.1)
starlette PYPI version =0.20.2, =0.0.1, =0.3.6, =0.12.0, =0.4.2, =0.1.10, =0.0.1, =0.1.0, =0.1.3, =0.0.1, =0.1.5, =0.1.1, =1.0.0, =0.3.0, =0.3.3 and more Source cves: CVE-2025-54121 Source advisory: OSV:GHSA-2C2J-9GV5-CJ73...
ace-step (=0.1.0), agent-memory-jojo (=0.1.3) +163 more potentially affected by CVE-2025-3263 via transformers (>=4.49.0 <=4.50.3)
transformers PYPI version =4.49.0, =3.2.0, =2.2.0, =0.0.5, =2026.3.1, =0.1.0, =1.2.1b20250404, =1.2.1b20250404, =1.2.1b20250404, =0.1.2, =0.1.8 - azureml-metrics =0.0.25.post1 and more Source cves: CVE-2025-3263 Source advisory: SNYK:PYTHON-TRANSFORMERS-10658535...
@ekyc_qoobiss/qbs-cid-cmp (>=1.0.5 <=1.5.9), @ekyc_qoobiss/qbs-ect-cmp (>=1.2.0 <=4.8.0) +48 more potentially affected by CVE-2023-26487 via vega-functions (>=5.10.0 <=5.12.1)
vega-functions NPM version =5.10.0, =1.0.5, =1.2.0, =0.0.2, =0.1.2, =1.0.0, =1.0.7, =0.6.2, =1.0.1, =0.1.0, =1.1.6 and more Source cves: CVE-2023-26487 Source advisory: OSV:GHSA-W5M3-XH75-MP55...
@candrewsintegralblue/snyk (=0.0.4), @commerce-apps/raml-toolkit (>=0.5.8 <=0.5.10) +2 more potentially affected by CVE-2022-22984 +1 more via @snyk/snyk-hex-plugin (>=1.0.0 <=1.1.4)
@snyk/snyk-hex-plugin NPM version =1.0.0, =0.5.8, =3.0.3-beta.1, =1.520.0, =1.684.0 Source cves: CVE-2022-22984, CVE-2022-40764 Source advisory: SNYK:JS-SNYKSNYKHEXPLUGIN-3039680...
chia-dev-tools (>=0.1.0 <=1.2.6), chia-internal-custody (>=0.1.0 <=0.2.10) +4 more potentially affected by CVE-2022-36447 via chia-blockchain (>=1.2.11 <=2.3.0)
chia-blockchain PYPI version =1.2.11, =0.1.0, =0.1.0, =0.1.0, =0.1.0, =0.0.1, =0.1.0, =0.2.1 Source cves: CVE-2022-36447 Source advisory: OSV:PYSEC-2022-43072...
elita (>=0.60.0 <=0.64.1) potentially affected by CVE-2020-11652 via salt (=2014.1.10)
salt PYPI version =2014.1.10 is affected by a known vulnerability. The following packages have a transitive dependency on salt and may be impacted: - elita =0.60.0, =0.64.1 Source cves: CVE-2020-11652 Source advisory: OSV:GHSA-VP49-2G4R-M3X3...
a62-emotion (>=0.10.12 <=0.11.4), agent-atm (>=0.1.0 <=0.1.1) +100 more potentially affected by CVE-2021-37688 via tensorflow-cpu (>=1.15.0 <=2.3.1)
tensorflow-cpu PYPI version =1.15.0, =0.10.12, =0.1.0, =2.0.0, =2.0.0, =1.0.0, =0.0.5, =0.3.0, =0.0.1, =0.8.1, =0.1.1, =1.3.0, =0.1.0.dev1, =0.1.0.dev202107081840 and more Source cves: CVE-2021-37688 Source advisory: OSV:GHSA-VCJJ-9VG7-VF68...
@dashersw/mongoose-id-autoinc (>=0.0.5 <=0.3.0), @fundcount/fc-keystone (=0.3.21-7) +275 more potentially affected by unknown CVE via mongoose (>=3.5.5 <=3.8.37)
mongoose NPM version =3.5.5, =0.0.5, =1.2.3, =0.0.3, =0.1.16, =0.0.1, =0.0.2, =0.2.0, =0.0.1, =0.0.1, =0.0.71, =0.0.1, =0.0.3 and more Source cves: unknown CVE Source advisory: OSV:GHSA-R5XW-Q988-826M...
ai.chronon:aggregator_2.11 (>=0.0.1 <=thread_contention-0.0.23-dev3), ai.chronon:aggregator_2.12 (>=0.0.6 <=thread_contention-0.0.23-dev3) +9465 more potentially affected by CVE-2020-14062 via com.fasterxml.jackson.core:jackson-databind (>=2.9.0 <=2.9.10.4)
com.fasterxml.jackson.core:jackson-databind MAVEN version =2.9.0, =0.0.1, =0.0.6, =0.0.1, =0.0.1, =thread-pool-0.0.24-dev, =local, =local, =0.0.6, =0.0.1, =threadcontention-0.0.23-dev3 - ai.genauth:genauth-java-sdk =3.1.11 - ai.ylyue:yue-library-auth-client =2.1.0 -...