Lucene search
K
GithubRecent

33225 matches found

Github Security Blog
Github Security Blog
added 2026/03/16 4:26 p.m.7 views

Glances has a Command Injection via Process Names in Action Command Templates

Summary The Glances action system allows administrators to configure shell commands that execute when monitoring thresholds are exceeded. These commands support Mustache template variables e.g., name, key that are populated with runtime monitoring data. The securepopen function, which executes...

7CVSS6.3AI score0.00243EPSS
Exploits1References5Affected Software1
Github Security Blog
Github Security Blog
added 2026/03/16 4:26 p.m.8 views

IncusOS has a LUKS encryption bypass due to insufficient TPM policy

The default configuration of systemd-cryptenroll as used by IncusOS through mkosi allows for an attacker with physical access to the machine to access the encrypted data without requiring any interaction by the system's owner or any tampering of Secure Boot state or kernel UKI boot image. That's...

7.6CVSS5.8AI score0.0014EPSS
Exploits0References7Affected Software1
Github Security Blog
Github Security Blog
added 2026/03/16 4:23 p.m.5 views

Glances exposes the REST API without authentication

Summary Glances web server runs without authentication by default when started with glances -w, exposing REST API with sensitive system information including process command-lines containing credentials passwords, API keys, tokens to any network client. Details Root Cause: Authentication is...

8.7CVSS5.8AI score0.0155EPSS
Exploits1References5Affected Software1
Github Security Blog
Github Security Blog
added 2026/03/16 4:23 p.m.10 views

ONNX Untrusted Model Repository Warnings Suppressed by silent=True in onnx.hub.load() — Silent Supply-Chain Attack

What's the issue Passing silent=True to onnx.hub.load kills all trust warnings and user prompts. This means a model can be downloaded from any unverified GitHub repo with zero user awareness. python if not verifyreporefrepo and not silent: completely skipped when silent=True print"The model repo...

9.1CVSS6.2AI score0.00318EPSS
Exploits0References5Affected Software1
Github Security Blog
Github Security Blog
added 2026/03/16 4:22 p.m.10 views

LeafKit's HTML escaping may be skipped for Collection values, enabling XSS

Summary LeafKit HTML-escaping is not working correctly when a template prints a collection Array / Dictionary via value. This can result in XSS, allowing potentially untrusted input to be rendered unescaped. Details LeafKit attempts to escape expressions during serialization, but due to...

6.9CVSS5.6AI score0.00265EPSS
Exploits1References5Affected Software1
Github Security Blog
Github Security Blog
added 2026/03/16 4:22 p.m.14 views

pyOpenSSL DTLS cookie callback buffer overflow

If a user provided callback to setcookiegeneratecallback returned a cookie value greater than 256 bytes, pyOpenSSL would overflow an OpenSSL provided buffer. Cookie values that are too long are now rejected...

9.8CVSS5.8AI score0.00704EPSS
Exploits0References5Affected Software1
Github Security Blog
Github Security Blog
added 2026/03/16 4:15 p.m.11 views

Uncontrolled memory allocation via crafted SVG dimensions in @dicebear/converter

Impact The ensureSize function in @dicebear/converter versions 9.4.0 read the width and height attributes from the input SVG to determine the output canvas size for rasterization PNG, JPEG, WebP, AVIF. An attacker who can supply a crafted SVG with extremely large dimensions e.g. width="999999999"...

7.5CVSS5.8AI score0.00346EPSS
Exploits0References5Affected Software1
Github Security Blog
Github Security Blog
added 2026/03/16 4:15 p.m.11 views

Authlib: Fail-Open Cryptographic Verification in OIDC Hash Binding

Executive Summary A critical library-level vulnerability was identified in the Authlib Python library concerning the validation of OpenID Connect OIDC ID Tokens. Specifically, the internal hash verification logic verifyhash responsible for validating the athash Access Token Hash and chash...

9.1CVSS5.9AI score0.00226EPSS
Exploits1References5Affected Software1
Github Security Blog
Github Security Blog
added 2026/03/16 3:30 p.m.7 views

Mattermost fails to properly enforce read permissions in search API endpoints

Mattermost versions 11.3.x = 11.3.0, 11.2.x = 11.2.2, 10.11.x = 10.11.10 fail to properly enforce read permissions in search API endpoints which allows guest users without read permissions to access posts and files in channels via search API requests. Mattermost Advisory ID: MMSA-2025-00554...

4.3CVSS5.8AI score0.00165EPSS
Exploits0References4Affected Software2
Github Security Blog
Github Security Blog
added 2026/03/16 3:30 p.m.6 views

Mattermost fails to canonicalize IPv4-mapped IPv6 addresses before reserved IP validation

Mattermost versions 11.3.x = 11.3.0, 11.2.x = 11.2.2, 10.11.x = 10.11.10 fail to canonicalize IPv4-mapped IPv6 addresses before reserved IP validation which allows an attacker to perform SSRF attacks against internal services via IPv4-mapped IPv6 literals e.g., ::ffff:127.0.0.1.. Mattermost...

4.3CVSS5.8AI score0.00165EPSS
Exploits0References4Affected Software2
Github Security Blog
Github Security Blog
added 2026/03/16 3:30 p.m.12 views

Mattermost fails to validate user's authentication method when processing account auth type switch

Mattermost versions 10.11.x = 10.11.10 fail to validate user's authentication method when processing account auth type switch which allows an authenticated attacker to change account password without confirmation via falsely claiming a different auth provider.. Mattermost Advisory ID:...

3.5CVSS5.8AI score0.00148EPSS
Exploits0References4Affected Software2
Github Security Blog
Github Security Blog
added 2026/03/16 3:30 p.m.5 views

Mattermost fails to use consistent error responses when handling the /mute command

Mattermost versions 11.3.x = 11.3.0, 11.2.x = 11.2.2, 10.11.x = 10.11.10 fail to use consistent error responses when handling the /mute command which allows an authenticated team member to enumerate private channels they are not authorized to know about via differing error messages for nonexisten...

4.3CVSS5.8AI score0.00184EPSS
Exploits0References4Affected Software2
Github Security Blog
Github Security Blog
added 2026/03/16 3:30 p.m.7 views

Vanna has a SQL injection in the remove_training_data function

A flaw has been found in vanna-ai vanna up to 2.0.2. This impacts the function removetrainingdata of the file src/vanna/legacy/google/bigqueryvector.py. This manipulation of the argument ID causes sql injection. The attack can be initiated remotely. The exploit has been published and may be used...

7.5CVSS5.6AI score0.00254EPSS
Exploits0References6Affected Software1
Github Security Blog
Github Security Blog
added 2026/03/16 3:30 p.m.8 views

Mattermost fails to validate team-specific upload_file permissions

Mattermost versions 11.3.x = 11.3.0, 11.2.x = 11.2.2, 10.11.x = 10.11.10 fail to validate team-specific uploadfile permissions which allows a guest user to post files in channels where they lack uploadfile permission via uploading files in a team where they have permission and reusing the file...

4.3CVSS5.8AI score0.00218EPSS
Exploits0References4Affected Software2
Github Security Blog
Github Security Blog
added 2026/03/16 3:30 p.m.10 views

Aureus ERP vulnerable to cross-site scripting in the Chatter Message Handler

A vulnerability was determined in Aureus ERP up to 1.3.0-BETA1. The affected element is an unknown function of the file plugins/webkul/chatter/resources/views/filament/infolists/components/messages/content-text-entry.blade.php of the component Chatter Message Handler. Executing a manipulation of...

5.1CVSS4AI score0.00254EPSS
Exploits0References8Affected Software1
Github Security Blog
Github Security Blog
added 2026/03/16 3:30 p.m.12 views

Vulnogram contains a stored cross-site scripting vulnerability in comment hypertext handling

Vulnogram 1.0.0 contains a stored cross-site scripting vulnerability in comment hypertext handling that allows attackers to inject malicious scripts. Remote attackers can inject XSS payloads through comments to execute arbitrary JavaScript in victims' browsers...

6.4CVSS5.9AI score0.00277EPSS
Exploits0References6Affected Software1
Github Security Blog
Github Security Blog
added 2026/03/16 3:30 p.m.4 views

Mattermost Boards Plugin fails to implement authorisation checks on comment block modifications

Mattermost Plugins versions =11.3 11.0.3 11.2.2 10.10.11.0 fail to implement authorisation checks on comment block modifications, which allows an authorised attacker with editor permission to modify comments created by other board members. Mattermost Advisory ID: MMSA-2025-00559...

4.3CVSS5.8AI score0.00162EPSS
Exploits1References4Affected Software1
Github Security Blog
Github Security Blog
added 2026/03/16 3:30 p.m.8 views

Mattermost fails to limit the size of responses from integration action endpoints

Mattermost versions 11.3.x = 11.3.0, 11.2.x = 11.2.2, 10.11.x = 10.11.10 Mattermost fails to limit the size of responses from integration action endpoints, which allows an authenticated attacker to cause server memory exhaustion and denial of service via a malicious integration server that return...

5.7CVSS5.8AI score0.00165EPSS
Exploits0References4Affected Software2
Github Security Blog
Github Security Blog
added 2026/03/16 3:30 p.m.14 views

Mattermost allows a removed team member to enumerate all public channels within a private team

Mattermost versions 11.3.x = 11.3.0, 11.2.x = 11.2.2, 10.11.x = 10.11.10 fail to properly validate team membership when searching channels which allows a removed team member to enumerate all public channels within a private team via the channel search API endpoint. Mattermost Advisory ID:...

4.3CVSS5.8AI score0.00165EPSS
Exploits0References4Affected Software2
Github Security Blog
Github Security Blog
added 2026/03/16 3:30 p.m.7 views

Mattermost fails to filter invite IDs based on user permissions

Mattermost versions 11.3.x = 11.3.0, 11.2.x = 11.2.2, 10.11.x = 10.11.10 fail to filter invite IDs based on user permissions, which allows regular users to bypass access control restrictions and register unauthorized accounts via leaked invite IDs during team creation. Mattermost Advisory ID:...

4.3CVSS5.8AI score0.0017EPSS
Exploits0References4Affected Software2
Github Security Blog
Github Security Blog
added 2026/03/16 3:30 p.m.9 views

Mattermost Microsoft Teams Plugin fails to properly mask sensitive configuration values

Mattermost Plugins versions =2.0.3.0 fail to properly mask sensitive configuration values which allows an attacker with access to support packets to obtain original plugin settings via exported configuration data. Mattermost Advisory ID: MMSA-2026-00606...

7.6CVSS5.8AI score0.0018EPSS
Exploits0References4Affected Software1
Github Security Blog
Github Security Blog
added 2026/03/16 3:30 p.m.55 views

Mattermost fails to preserve the redacted state of burn-on-read posts during deletion

Mattermost versions 11.3.x = 11.3.0 fail to preserve the redacted state of burn-on-read posts during deletion which allows channel members to access unrevealed burn-on-read message contents via the WebSocket post deletion event. Mattermost Advisory ID: MMSA-2026-00579...

4.3CVSS5.8AI score0.00219EPSS
Exploits0References4Affected Software2
Github Security Blog
Github Security Blog
added 2026/03/16 3:30 p.m.9 views

Mattermost fails to properly validate User-Agent header tokens

Mattermost versions 11.3.x = 11.3.0, 11.2.x = 11.2.2, 10.11.x = 10.11.10 fail to properly validate User-Agent header tokens which allows an authenticated attacker to cause a request panic via a specially crafted User-Agent header. Mattermost Advisory ID: MMSA-2026-00586...

4.3CVSS5.8AI score0.00285EPSS
Exploits0References4Affected Software2
Github Security Blog
Github Security Blog
added 2026/03/16 3:30 p.m.13 views

Mattermost fails to properly handle very long passwords

Mattermost versions 11.3.x = 11.3.0, 11.2.x = 11.2.2, 10.11.x = 10.11.10 fail to properly handle very long passwords, which allows an attacker to overload the server CPU and memory via executing login attempts with multi-megabyte passwords. Mattermost Advisory ID: MMSA-2026-00587...

7.5CVSS5.8AI score0.00263EPSS
Exploits0References4Affected Software2
Github Security Blog
Github Security Blog
added 2026/03/16 3:30 p.m.7 views

Mattermost fails to bound memory allocation when processing DOC files

Mattermost versions 11.3.x = 11.3.0, 11.2.x = 11.2.2, 10.11.x = 10.11.10 fail to bound memory allocation when processing DOC files which allows an authenticated attacker to cause server memory exhaustion and denial of service via uploading a specially crafted DOC file.. Mattermost Advisory ID:...

4.3CVSS5.8AI score0.00267EPSS
Exploits0References4Affected Software2
Github Security Blog
Github Security Blog
added 2026/03/16 3:30 p.m.8 views

Mattermost allows attackers to spoof permalink embeds

Mattermost versions 11.3.x = 11.3.0, 11.2.x = 11.2.2, 10.11.x = 10.11.10 fail to sanitize client-supplied post metadata which allows an authenticated attacker to spoof permalink embeds impersonating other users via crafted PUT requests to the post update API endpoint. Mattermost Advisory ID:...

4.3CVSS5.8AI score0.00107EPSS
Exploits0References4Affected Software2
Github Security Blog
Github Security Blog
added 2026/03/16 3:30 p.m.7 views

Mattermost fails to bound memory allocation when processing PSD image files

Mattermost versions 11.3.x = 11.3.0, 11.2.x = 11.2.2, 10.11.x = 10.11.10 fail to bound memory allocation when processing PSD image files which allows an authenticated attacker to cause server memory exhaustion and denial of service via uploading a specially crafted PSD file. Mattermost Advisory I...

4.3CVSS5.8AI score0.00221EPSS
Exploits0References4Affected Software2
Github Security Blog
Github Security Blog
added 2026/03/16 3:30 p.m.13 views

MLflow has a command injection in mlflow/sagemaker/__init__.py

A command injection vulnerability exists in mlflow/mlflow versions before v3.7.0, specifically in the mlflow/sagemaker/init.py file at lines 161-167. The vulnerability arises from the direct interpolation of user-supplied container image names into shell commands without proper sanitization, whic...

8.8CVSS6.1AI score0.01456EPSS
Exploits1References6Affected Software1
Github Security Blog
Github Security Blog
added 2026/03/16 3:30 p.m.5 views

Apache Spark: Spark History Server Code Execution Vulnerability

This issue affects Apache Spark: before 3.5.7 and 4.0.1. Users are recommended to upgrade to version 3.5.7 or 4.0.1 and above, which fixes the issue. Summary Apache Spark 3.5.4 and earlier versions contain a code execution vulnerability in the Spark History Web UI due to overly permissive Jackson...

8.8CVSS6.4AI score0.05341EPSS
Exploits1References7Affected Software5
Github Security Blog
Github Security Blog
added 2026/03/16 3:17 p.m.10 views

Authlib Vulnerable to JWE RSA1_5 Bleichenbacher Padding Oracle

Executive Summary A cryptographic padding oracle vulnerability was identified in the Authlib Python library concerning the implementation of the JSON Web Encryption JWE RSA15 key management algorithm. Authlib registers RSA15 in its default algorithm registry without requiring explicit opt-in,...

8.3CVSS6.2AI score0.00142EPSS
Exploits1References5Affected Software1
Github Security Blog
Github Security Blog
added 2026/03/16 3:17 p.m.7 views

Authlib JWS JWK Header Injection: Signature Verification Bypass

Description Summary A JWK Header Injection vulnerability in authlib's JWS implementation allows an unauthenticated attacker to forge arbitrary JWT tokens that pass signature verification. When key=None is passed to any JWS deserialization function, the library extracts and uses the cryptographic...

9.1CVSS6AI score0.00548EPSS
Exploits1References5Affected Software1
Github Security Blog
Github Security Blog
added 2026/03/16 3:15 p.m.15 views

pyOpenSSL allows TLS connection bypass via unhandled callback exception in set_tlsext_servername_callback

If a user provided callback to settlsextservernamecallback raised an unhandled exception, this would result in a connection being accepted. If a user was relying on this callback for any security-sensitive behavior, this could allow bypassing it. Unhandled exceptions now result in rejecting the...

6.3CVSS5.8AI score0.00241EPSS
Exploits0References5Affected Software1
Github Security Blog
Github Security Blog
added 2026/03/16 3:15 p.m.10 views

Spinnaker clouddriver and orca URL validation bypass via underscores in hostnames

Impact Spinnaker updated URL Validation logic on user input to provide sanitation on user inputted URLs for clouddriver. However, they missed that Java URL objects do not correctly handle underscores on parsing. This led to a bypass of the previous CVE CVE-2025-61916 through the use of carefully...

9.1CVSS5.7AI score0.00246EPSS
Exploits0References5Affected Software2
Github Security Blog
Github Security Blog
added 2026/03/16 3:14 p.m.6 views

FastMCP OAuth Proxy token reuse across MCP servers

While testing the OAuth Proxy implementation, it was noticed that the server does not properly respect the resource parameter submitted by the client in the authorization and token request. Instead of issuing the token explicitly for this MCP server, the token is issued for the baseurl passed to...

7.4CVSS5.8AI score0.00358EPSS
Exploits1References3Affected Software1
Github Security Blog
Github Security Blog
added 2026/03/13 9:31 p.m.5 views

Apache Livy: Unauthorized directory access

Improper Limitation of a Pathname to a Restricted Directory 'Path Traversal' vulnerability in Apache Livy. This issue affects Apache Livy: from 0.3.0 before 0.9.0. The vulnerability can only be exploited with non-default Apache Livy Server settings. If the configuration value...

6.3CVSS5.7AI score0.00597EPSS
Exploits0References4Affected Software1
Github Security Blog
Github Security Blog
added 2026/03/13 9:31 p.m.8 views

Apache Livy: Restrict file access

Malicious configuration can lead to unauthorized file access in Apache Livy. This issue affects Apache Livy 0.7.0 and 0.8.0 when connecting to Apache Spark 3.1 or later. A request that includes a Spark configuration value supported from Apache Spark version 3.1 can lead to users gaining access to...

6.3CVSS5.8AI score0.00488EPSS
Exploits1References4Affected Software1
Github Security Blog
Github Security Blog
added 2026/03/13 8:58 p.m.9 views

github.com/ctfer-io/monitoring Vulnerable to Improper Access Control

Impact Due to a mis-written NetworkPolicy, a malicious actor can pivot from a component to any other namespace. This breaks the security-by-default property expected as part of the deployment program, leading to a potential lateral movement. Patch Removing the inter-ns NetworkPolicy patches the...

7.1CVSS5.8AI score0.00262EPSS
Exploits0References6Affected Software1
Github Security Blog
Github Security Blog
added 2026/03/13 8:58 p.m.13 views

fickling's `platform` module subprocess invocation evades `check_safety()` with `LIKELY_SAFE`

Our assessment We added platform to the blocklist of unsafe modules https://github.com/trailofbits/fickling/commit/351ed4d4242b447c0ffd550bb66b40695f3f9975. It was not possible to inject extra arguments to file without first monkey-patching platform.followsymlinks with the pickle, as it always...

6AI score
Exploits0References4Affected Software1
Github Security Blog
Github Security Blog
added 2026/03/13 8:57 p.m.8 views

fickling modules linecache, difflib and gc are missing from the unsafe modules blocklist

Our analysis As stated in the project's security policy, we also don't consider UnusedVariables bypasses to be security issues. We added several unsafe modules mentioned by the reporter in advisory comments to the blocklist...

6.2AI score
Exploits0References4Affected Software1
Github Security Blog
Github Security Blog
added 2026/03/13 8:57 p.m.13 views

@google/clasp vulnerable to unsafe path traversal cloning or pulling a malicious script

Impact Allows an attacker to perform a "Path Traversal" attack to modify files outside the projects directory, potentially allowing for running attacker code on the developer's machine. Patches Fixed in version 3.2.0 Workarounds Only clone or pull scripts from trusted sources Review the output of...

8.8CVSS5.9AI score0.00465EPSS
Exploits1References6Affected Software1
Github Security Blog
Github Security Blog
added 2026/03/13 8:57 p.m.297 views

AutoMapper Vulnerable to Denial of Service (DoS) via Uncontrolled Recursion

Summary AutoMapper is vulnerable to a Denial of Service DoS attack. When mapping deeply nested object graphs, the library uses recursive method calls without enforcing a default maximum depth limit. This allows an attacker to provide a specially crafted object graph that exhausts the thread's sta...

7.5CVSS5.9AI score0.00542EPSS
Exploits1References7Affected Software1
Github Security Blog
Github Security Blog
added 2026/03/13 8:56 p.m.9 views

SiYuan's renderSprig has a missing admin check that allows any user to read full workspace DB

Summary POST /api/template/renderSprig lacks model.CheckAdminRole, allowing any authenticated user to execute arbitrary SQL queries against the SiYuan workspace database and exfiltrate all note content, metadata, and custom attributes. Details File: kernel/api/router.go Every sensitive endpoint i...

6.5CVSS6.1AI score0.00246EPSS
Exploits1References4Affected Software1
Github Security Blog
Github Security Blog
added 2026/03/13 8:56 p.m.11 views

SimpleEval: Objects (including modules) can leak dangerous modules through to direct access inside the sandbox

Impact If the objects passed in as names to SimpleEval have modules or other disallowed / dangerous objects available as attrs. Additionally, dangerous functions or modules could be accessed by passing them as callbacks to other safe functions to call. Examples found by @ByamB4: Any module where...

9.8CVSS5.8AI score0.00512EPSS
Exploits0References6Affected Software1
Github Security Blog
Github Security Blog
added 2026/03/13 8:56 p.m.23 views

Angular vulnerable to XSS in i18n attribute bindings

A Cross-Site Scripting XSS vulnerability has been identified in the Angular runtime and compiler. It occurs when the application uses a security-sensitive attribute for example href on an anchor tag together with Angular's ability to internationalize attributes. Enabling internationalization for...

9CVSS6.1AI score0.00339EPSS
Exploits0References9Affected Software2
Github Security Blog
Github Security Blog
added 2026/03/13 8:56 p.m.35 views

file-type: ZIP Decompression Bomb DoS via [Content_Types].xml entry

Summary A crafted ZIP file can trigger excessive memory growth during type detection in file-type when using fileTypeFromBuffer, fileTypeFromBlob, or fileTypeFromFile. In affected versions, the ZIP inflate output limit is enforced for stream-based detection, but not for known-size inputs. As a...

5.3CVSS5.8AI score0.00299EPSS
Exploits1References6Affected Software1
Github Security Blog
Github Security Blog
added 2026/03/13 8:55 p.m.15 views

OpenClaw: Zalo webhook rate limiting could be bypassed before secret validation

Summary The Zalo webhook handler applied request rate limiting only after webhook authentication succeeded. Requests with an invalid secret returned 401 but did not count against the rate limiter, allowing repeated secret guesses without triggering 429. Impact This made brute-force guessing...

6.9CVSS5.8AI score0.00272EPSS
Exploits0References7Affected Software1
Github Security Blog
Github Security Blog
added 2026/03/13 8:55 p.m.22 views

OpenClaw: Feishu webhook mode accepted forged events when only `verificationToken` was configured

Summary Feishu webhook mode allowed deployments that configured only verificationToken without encryptKey. In that state, forged inbound events could be accepted because the weaker configuration did not provide the required cryptographic verification boundary. Impact An unauthenticated network...

9.8CVSS5.9AI score0.00247EPSS
Exploits0References7Affected Software1
Github Security Blog
Github Security Blog
added 2026/03/13 8:55 p.m.15 views

OpenClaw: Gateway `agent` calls could override the workspace boundary

Summary The public gateway agent RPC allowed an authenticated operator with operator.write to supply attacker-controlled spawnedBy and workspaceDir values. That let the caller re-root the agent run outside its configured workspace boundary. Impact A non-owner operator could escape the intended...

5.9AI score
Exploits0References3Affected Software1
Github Security Blog
Github Security Blog
added 2026/03/13 8:55 p.m.17 views

OpenClaw: WebSocket shared-auth connections could self-declare elevated scopes

Summary A logic flaw in the OpenClaw gateway WebSocket connect path allowed certain device-less shared-token or password-authenticated backend connections to keep client-declared scopes without server-side binding. A shared-authenticated client could present elevated scopes such as operator.admin...

9.9CVSS5.8AI score0.00505EPSS
Exploits0References5Affected Software1
Github Security Blog
Github Security Blog
added 2026/03/13 8:55 p.m.19 views

`OpenClaw: session_status` let sandboxed subagents access parent or sibling session state

Summary The built-in sessionstatus tool did not enforce the intended session-visibility boundary. A sandboxed subagent could supply another session's sessionKey and inspect or modify state outside its own sandbox scope. Impact This allowed a sandboxed child session to read parent or sibling sessi...

9.2CVSS5.8AI score0.00101EPSS
Exploits0References5Affected Software1
Total number of security vulnerabilities33225