Lucene search
K
GithubRecent

33227 matches found

Github Security Blog
Github Security Blog
added 2026/03/07 9:30 a.m.9 views

Apache ZooKeeper: Reverse-DNS fallback enables hostname verification bypass in ZooKeeper ZKTrustManager

Hostname verification in Apache ZooKeeper ZKTrustManager falls back to reverse DNS PTR when IP SAN validation fails, allowing attackers who control or spoof PTR records to impersonate ZooKeeper servers or clients with a valid certificate for the PTR name. It's important to note that attacker must...

7.4CVSS5.8AI score0.00633EPSS
Exploits0References6Affected Software1
Github Security Blog
Github Security Blog
added 2026/03/07 9:30 a.m.12 views

Apache ZooKeeper has improper handling of configuration values

Improper handling of configuration values in ZKConfig in Apache ZooKeeper 3.8.5 and 3.9.4 on all platforms allows an attacker to expose sensitive information stored in client configuration in the client's logfile. Configuration values are exposed at INFO level logging rendering potential producti...

7.5CVSS5.8AI score0.01177EPSS
Exploits0References6Affected Software1
Github Security Blog
Github Security Blog
added 2026/03/07 9:30 a.m.9 views

Meta Box Plugin for WordPress: Authenticated (Contributor+) Arbitrary File Deletion via ajax_delete_file

The Meta Box plugin for WordPress is vulnerable to arbitrary file deletion due to insufficient file path validation in the 'ajaxdeletefile' function in all versions up to, and including, 5.11.1. This makes it possible for authenticated attackers, with Contributor-level access and above, to delete...

7.2CVSS6.4AI score0.00654EPSS
Exploits0References8Affected Software1
Github Security Blog
Github Security Blog
added 2026/03/07 2:39 a.m.6 views

Soroban: Muxed address<->ScVal conversions may break after a conversion failure

Summary Soroban host ensures that MuxedAddress objects can't be used as storage keys in order to proactively prevent the contract logic bugs. However, due to a bug in Soroban host implementation, a failure in Val-ScVal conversion during the storage key computation will have the flag indicating th...

5.7AI score
Exploits0References2Affected Software1
Github Security Blog
Github Security Blog
added 2026/03/07 2:39 a.m.9 views

OneUptime: Synthetic Monitor RCE via exposed Playwright browser object

Summary OneUptime Synthetic Monitors allow low-privileged project users to submit custom Playwright code that is executed on the oneuptime-probe service. In the current implementation, this untrusted code is run inside Node's vm and is given live host Playwright objects such as browser and page...

9.9CVSS6.2AI score0.00445EPSS
Exploits1References12Affected Software1
Github Security Blog
Github Security Blog
added 2026/03/07 2:37 a.m.13 views

x402 SDK Security Advisory

Impact A security vulnerability exists in outdated versions of the x402 SDK. This vulnerability does not affect users' private keys, smart contracts, or funds. The issue impacts resource servers accepting payments on Solana when the facilitator is running a vulnerable version of the x402 SDK. Who...

5.8AI score
Exploits0References3Affected Software3
Github Security Blog
Github Security Blog
added 2026/03/07 2:32 a.m.10 views

Black's vulnerable version parsing leads to RCE in GitHub Action

Impact Black provides a GitHub action for formatting code. This action supports an option, usepyproject: true, for reading the version of Black to use from the repository pyproject.toml. A malicious pull request could edit pyproject.toml to use a direct URL reference to a malicious repository. Th...

9.8CVSS6.3AI score0.0046EPSS
Exploits0References4Affected Software1
Github Security Blog
Github Security Blog
added 2026/03/07 2:31 a.m.9 views

Withdrawn Advisory: Shescape has possible misidentification of shell due to link chains

Withdrawn Advisory This advisory has been withdrawn because it falls outside the https://github.com/ericcornelissen/shescape/blob/a2544a1c78cae19d0e81a485b997bf0b0fcc2c12/SECURITY.mdthreat-model. This link is maintained to preserve external references. Original Description Impact This impacts use...

5.7AI score0.00052EPSS
Exploits0References7Affected Software1
Github Security Blog
Github Security Blog
added 2026/03/07 2:31 a.m.10 views

FUXA has a hardcoded fallback JWT signing secret

FUXA used a static fallback JWT signing secret frangoteam751 when no secretCode was configured. If authentication was enabled without explicitly setting a custom secret, an attacker who knew the default value could forge valid JWT tokens and bypass authentication. This issue has been addressed in...

9.8CVSS5.7AI score0.02036EPSS
Exploits0References4Affected Software1
Github Security Blog
Github Security Blog
added 2026/03/07 2:30 a.m.7 views

OneUpTime's Unsandboxed Code Execution in Probe Allows Any Project Member to Achieve RCE

Summary OneUptime allows project members to run custom Playwright/JavaScript code via Synthetic Monitors to test websites. However, the system executes this untrusted user code inside the insecure Node.js vm module. By leveraging a standard prototype-chain escape this.constructor.constructor, an...

9.9CVSS6.2AI score0.00387EPSS
Exploits1References3Affected Software1
Github Security Blog
Github Security Blog
added 2026/03/07 2:25 a.m.6 views

AVideo has Unauthenticated IDOR - Playlist Information Disclosure

Product: AVideo https://github.com/WWBN/AVideo Version: Latest tested March 2026 Type: Insecure Direct Object Reference IDOR Auth Required: No User Interaction: None Summary The /objects/playlistsFromUser.json.php endpoint returns all playlists for any user without requiring authentication or...

6.9CVSS5.8AI score0.00365EPSS
Exploits1References4Affected Software1
Github Security Blog
Github Security Blog
added 2026/03/07 2:23 a.m.7 views

PowerSync: Some sync filters ignored on 1.20.0 using `config.edition: 3`

Impact In version 1.20.0, when using new sync streams with config.edition: 3, certain subquery filters were ignored when determining which data to sync to users. Depending on the sync stream configuration, this could result in authenticated users syncing data that should have been restricted. Onl...

6.5CVSS5.8AI score0.00201EPSS
Exploits0References3Affected Software2
Github Security Blog
Github Security Blog
added 2026/03/07 2:19 a.m.9 views

SiYuan Vulnerable to Path Traversal in /export Endpoint Allows Arbitrary File Read and Secret Leakage

Summary A path traversal vulnerability in the /export endpoint allows an attacker to read arbitrary files from the server filesystem. By exploiting double‑encoded traversal sequences, an attacker can access sensitive files such as conf/conf.json, which contains secrets including the API token,...

9.8CVSS6.5AI score0.01028EPSS
Exploits1References3Affected Software1
Github Security Blog
Github Security Blog
added 2026/03/07 2:12 a.m.11 views

mcp-memory-service's Wildcard CORS with Credentials Enables Cross-Origin Memory Theft

Summary When the HTTP server is enabled MCPHTTPENABLED=true, the application configures FastAPI's CORSMiddleware with alloworigins='', allowcredentials=True, allowmethods="", and allowheaders="". The wildcard Access-Control-Allow-Origin: header permits any website to read API responses...

8.8CVSS5.8AI score0.00387EPSS
Exploits1References3Affected Software1
Github Security Blog
Github Security Blog
added 2026/03/07 2:10 a.m.6 views

Firefly III user API endpoints expose all users' information to any authenticated user (IDOR)

Summary The User management API endpoints GET /api/v1/users and GET /api/v1/users/id are accessible to any authenticated user without admin/owner role verification, exposing all users' email addresses, roles, and account status. Affected Endpoints 1. GET /api/v1/users UserController::index, line ...

5.8AI score
Exploits0References2Affected Software1
Github Security Blog
Github Security Blog
added 2026/03/07 1:59 a.m.9 views

WeKnora has Remote Code Execution (RCE) via Command Injection in MCP Stdio Configuration Validation

Summary A critical unauthenticated remote code execution RCE vulnerability exists in the MCP stdio configuration validation introduced in version 2.0.5. The application allows unrestricted user registration, meaning any attacker can create an account and exploit the command injection flaw. Despit...

9.9CVSS6.6AI score0.02054EPSS
Exploits1References4Affected Software1
Github Security Blog
Github Security Blog
added 2026/03/06 11:59 p.m.7 views

WeKnora Vulnerable to Remote Code Execution via SQL Injection Bypass in AI Database Query Tool

Summary A critical Remote Code Execution RCE vulnerability exists in the application's database query functionality. The validation system fails to recursively inspect child nodes within PostgreSQL array expressions and row expressions, allowing attackers to bypass SQL injection protections. By...

9.9CVSS6.5AI score0.00539EPSS
Exploits1References3Affected Software1
Github Security Blog
Github Security Blog
added 2026/03/06 11:57 p.m.8 views

WeKnora has Broken Access Control - Cross-Tenant Data Exposure

Summary A broken access control vulnerability in the database query tool allows any authenticated tenant to read sensitive data belonging to other tenants, including API keys, model configurations, and private messages. The application fails to enforce tenant isolation on critical tables models,...

6.5CVSS5.9AI score0.00213EPSS
Exploits0References3Affected Software1
Github Security Blog
Github Security Blog
added 2026/03/06 11:56 p.m.12 views

WeKnora has DNS Rebinding Vulnerability in web_fetch Tool that Allows SSRF to Internal Resources

Summary A DNS rebinding vulnerability in the webfetch tool allows an unauthenticated attacker to bypass URL validation and access internal resources on the server, including private IP addresses e.g., 127.0.0.1, 192.168.x.x. By crafting a malicious domain that resolves to a public IP during...

7.5CVSS5.8AI score0.00355EPSS
Exploits1References3Affected Software1
Github Security Blog
Github Security Blog
added 2026/03/06 11:55 p.m.10 views

WeKnora has Unauthorized Cross‑Tenant Knowledge Base Cloning

Summary A cross-tenant authorization bypass in the knowledge base copy endpoint allows any authenticated user to clone duplicate another tenant’s knowledge base into their own tenant by knowing/guessing the source knowledge base ID. This enables bulk data exfiltration document/FAQ content across...

5.3CVSS5.8AI score0.00222EPSS
Exploits1References3Affected Software1
Github Security Blog
Github Security Blog
added 2026/03/06 11:54 p.m.9 views

WeKnora Vulnerable to Tool Execution Hijacking via Ambigous Naming Convention In MCP client and Indirect Prompt Injection

Summary A vulnerability involving tool name collision and indirect prompt injection allows a malicious remote MCP server to hijack tool execution. By exploiting an ambiguous naming convention in the MCP client mcpservicetool, an attacker can register a malicious tool that overwrites a legitimate...

7.6CVSS6.1AI score0.00255EPSS
Exploits1References6Affected Software1
Github Security Blog
Github Security Blog
added 2026/03/06 11:53 p.m.7 views

WeKnora Vulnerable to Broken Access Control in Tenant Management

Summary An authorization bypass in tenant management endpoints of WeKnora application allows any authenticated user to read, modify, or delete any tenant by ID. Since account registration is open to the public, this vulnerability allows any unauthenticated attacker to register an account and...

8.8CVSS5.8AI score0.00328EPSS
Exploits1References3Affected Software1
Github Security Blog
Github Security Blog
added 2026/03/06 11:40 p.m.9 views

Caddy's vars_regexp double-expands user input, leaking env vars and files

Summary The varsregexp matcher in vars.go:337 double-expands user-controlled input through the Caddy replacer. When varsregexp matches against a placeholder like http.request.header.X-Input, the header value gets resolved once expected, then passed through repl.ReplaceAll again the bug. This mean...

7.5CVSS5.8AI score0.00401EPSS
Exploits1References5Affected Software1
Github Security Blog
Github Security Blog
added 2026/03/06 11:38 p.m.14 views

Caddy forward_auth copy_headers Does Not Strip Client-Supplied Headers, Allowing Identity Injection and Privilege Escalation

Summary Caddy's forwardauth directive with copyheaders generates conditional header-set operations that only fire when the upstream auth service includes the named header in its response. No delete or remove operation is generated for the original client-supplied request header with the same name...

8.8CVSS5.9AI score0.00249EPSS
Exploits1References6Affected Software1
Github Security Blog
Github Security Blog
added 2026/03/06 11:27 p.m.10 views

CommonMark has DisallowedRawHtml extension bypass via whitespace in HTML tag names

Impact The DisallowedRawHtml extension can be bypassed by inserting a newline, tab, or other ASCII whitespace character between a disallowed HTML tag name and the closing . For example, would pass through unfiltered and be rendered as a valid HTML tag by browsers. This is a cross-site scripting X...

6.1CVSS5.6AI score0.00217EPSS
Exploits0References4Affected Software1
Github Security Blog
Github Security Blog
added 2026/03/06 11:25 p.m.12 views

parse-server: Malformed `$regex` query leaks database error details in API response

Impact A malformed $regex query parameter e.g. abc causes the database to return a structured error object that is passed unsanitized through the API response. This leaks database internals such as error messages, error codes, code names, cluster timestamps, and topology details. The vulnerabilit...

6.9CVSS5.9AI score0.00336EPSS
Exploits0References5Affected Software1
Github Security Blog
Github Security Blog
added 2026/03/06 10:21 p.m.9 views

Flowise Missing Authentication on NVIDIA NIM Endpoints

Missing Authentication on NVIDIA NIM Endpoints Summary The NVIDIA NIM router /api/v1/nvidia-nim/ is whitelisted in the global authentication middleware, allowing unauthenticated access to privileged container management and token generation endpoints. Vulnerability Details | Field | Value |...

9.8CVSS6AI score0.3625EPSS
Exploits2References4Affected Software1
Github Security Blog
Github Security Blog
added 2026/03/06 10:20 p.m.18 views

Flowise has IDOR leading to Account Takeover and Enterprise Feature Bypass via SSO Configuration

Summary The Flowise platform has a critical Insecure Direct Object Reference IDOR vulnerability combined with a Business Logic Flaw in the PUT /api/v1/loginmethod endpoint. While the endpoint requires authentication, it fails to validate if the authenticated user has ownership or administrative...

8.8CVSS5.8AI score0.0045EPSS
Exploits1References4Affected Software1
Github Security Blog
Github Security Blog
added 2026/03/06 10:19 p.m.7 views

Flowise Allows Mass Assignment in `/api/v1/leads` Endpoint

Summary A Mass Assignment vulnerability in the /api/v1/leads endpoint allows any unauthenticated user to control internal entity fields id, createdDate, chatId by including them in the request body. The endpoint uses Object.assign to copy all properties from the request body to the Lead entity...

7.7CVSS5.9AI score0.12902EPSS
Exploits1References4Affected Software1
Github Security Blog
Github Security Blog
added 2026/03/06 10:16 p.m.9 views

soft-serve vulnerable to SSRF via unvalidated LFS endpoint in repo import

While auditing the codebase in the wake of the webhook SSRF fix shipped in v0.11.1 GHSA-vwq2-jx9q-9h9f, it was identified that the LFS import path was never given the same treatment. The webhook fix introduced dual-layer SSRF protection — ValidateWebhookURL at creation time and secureHTTPClient...

9.1CVSS6AI score0.00328EPSS
Exploits1References5Affected Software1
Github Security Blog
Github Security Blog
added 2026/03/06 10:10 p.m.14 views

Zarf's symlink targets in archives are not validated against destination directory

Summary A path traversal vulnerability in archive extraction allows a specifically crafted Zarf package to create symlinks pointing outside the destination directory, enabling arbitrary file read or write on the system processing the package. What users should do Upgrade immediately to version...

8.2CVSS6.2AI score0.0022EPSS
Exploits1References4Affected Software1
Github Security Blog
Github Security Blog
added 2026/03/06 10:8 p.m.9 views

CoreDNS Loop Detection Denial of Service Vulnerability

Executive Summary A Denial of Service vulnerability exists in CoreDNS's loop detection plugin that allows an attacker to crash the DNS server by sending specially crafted DNS queries. The vulnerability stems from the use of a predictable pseudo-random number generator PRNG for generating a secret...

7.5CVSS5.7AI score0.01093EPSS
Exploits1References4Affected Software1
Github Security Blog
Github Security Blog
added 2026/03/06 9:9 p.m.30 views

How to scan for vulnerabilities with GitHub Security Lab’s open source AI-powered framework

For the last few months, we've been using the GitHub Security Lab Taskflow Agent along with a new set of auditing taskflows that specialize in finding web security vulnerabilities. They also turn out to be very successful at finding high-impact vulnerabilities in open source projects. As security...

6.6AI score
Exploits0
Github Security Blog
Github Security Blog
added 2026/03/06 6:49 p.m.7 views

Flowise has Arbitrary File Upload via MIME Spoofing

Vulnerability Description --- Vulnerability Overview - The /api/v1/attachments/:chatflowId/:chatId endpoint is listed in WHITELISTURLS, allowing unauthenticated access to the file upload API. - While the server validates uploads based on the MIME types defined in...

9.8CVSS6.2AI score0.1833EPSS
Exploits1References4Affected Software1
Github Security Blog
Github Security Blog
added 2026/03/06 6:48 p.m.12 views

Flowise has Authorization Bypass via Spoofed x-request-from Header

Summary Flowise trusts any HTTP client that sets the header x-request-from: internal, allowing an authenticated tenant session to bypass all /api/v1/ authorization checks. With only a browser cookie, a low-privilege tenant can invoke internal administration endpoints API key management, credentia...

8.8CVSS5.9AI score0.00477EPSS
Exploits1References4Affected Software1
Github Security Blog
Github Security Blog
added 2026/03/06 6:47 p.m.10 views

Mercurius's queryDepth limit bypassed for WebSocket subscriptions

Description Mercurius fails to enforce the configured queryDepth limit on GraphQL subscription queries received over WebSocket connections. The depth check is correctly applied to HTTP queries and mutations, but subscription queries are parsed and executed without invoking the depth validation...

8.2CVSS5.9AI score0.00362EPSS
Exploits0References4Affected Software1
Github Security Blog
Github Security Blog
added 2026/03/06 6:46 p.m.10 views

parse-server's endpoint `/loginAs` allows `readOnlyMasterKey` to gain full read and write access as any user

Impact The readOnlyMasterKey can call POST /loginAs to obtain a valid session token for any user. This allows a read-only credential to impersonate arbitrary users with full read and write access to their data. Any Parse Server deployment that uses readOnlyMasterKey is affected. Patches The fix...

8.5CVSS5.9AI score0.00388EPSS
Exploits0References5Affected Software1
Github Security Blog
Github Security Blog
added 2026/03/06 6:45 p.m.9 views

parse-server's file creation and deletion bypasses `readOnlyMasterKey` write restriction

Impact The readOnlyMasterKey can be used to create and delete files via the Files API POST /files/:filename, DELETE /files/:filename. This bypasses the read-only restriction which violates the access scope of the readOnlyMasterKey. Any Parse Server deployment that uses readOnlyMasterKey and expos...

6.9CVSS5.9AI score0.00329EPSS
Exploits0References5Affected Software1
Github Security Blog
Github Security Blog
added 2026/03/06 6:45 p.m.8 views

Vercel Workflow Allows Webhook Creation with Predictable User-Specified Tokens

createWebhook in Vercel Workflow DevKit accepts a user-specified token parameter that serves as the credential for the public webhook endpoint /.well-known/workflow/v1/webhook/token. Official documentation recommended predictable token patterns, making it possible for an unauthenticated remote...

6AI score
Exploits0References4Affected Software2
Github Security Blog
Github Security Blog
added 2026/03/06 6:40 p.m.11 views

PinchTab has SSRF with Full Response Exfiltration via Download Handler

SSRF with Full Response Exfiltration via Download Handler Summary A Server-Side Request Forgery SSRF vulnerability in the /download endpoint allows any user with API access to induce the PinchTab server to make requests to arbitrary URLs, including internal network services and local system files...

7.5CVSS5.9AI score0.00423EPSS
Exploits1References3Affected Software1
Github Security Blog
Github Security Blog
added 2026/03/06 6:39 p.m.7 views

defuddle vulnerable to XSS via unescaped string interpolation in _findContentBySchemaText image tag

Summary The findContentBySchemaText method in src/defuddle.ts interpolates image src and alt attributes directly into an HTML string without escaping: typescript html += ; An attacker can use a " in the alt attribute to break out of the attribute context and inject event handlers. This is a...

6.1CVSS5.8AI score0.00252EPSS
Exploits1References4Affected Software1
Github Security Blog
Github Security Blog
added 2026/03/06 6:36 p.m.11 views

express-rate-limit: IPv4-mapped IPv6 addresses bypass per-client rate limiting on servers with dual-stack network

Summary The default keyGenerator in express-rate-limit applies IPv6 subnet masking /56 by default to all addresses that net.isIPv6 returns true for. This includes IPv4-mapped IPv6 addresses ::ffff:x.x.x.x, which Node.js returns as request.ip on dual-stack servers. Because the first 80 bits of all...

7.5CVSS5.7AI score0.00455EPSS
Exploits1References4Affected Software1
Github Security Blog
Github Security Blog
added 2026/03/06 6:31 p.m.9 views

Snipe-IT has sensitive user attributes related to account privileges that are insufficiently protected against mass assignment

Snipe-IT versions prior to 8.3.7 contain sensitive user attributes related to account privileges that are insufficiently protected against mass assignment. An authenticated, low-privileged user can craft a malicious API request to modify restricted fields of another user account, including the...

8.8CVSS5.8AI score0.0046EPSS
Exploits1References5Affected Software1
Github Security Blog
Github Security Blog
added 2026/03/06 6:4 p.m.7 views

CoreDNS ACL Bypass

A logical vulnerability in CoreDNS allows DNS access controls to be bypassed due to the default execution order of plugins. Security plugins such as acl are evaluated before the rewrite plugin, resulting in a Time-of-Check Time-of-Use TOCTOU flaw. Impact In multi-tenant Kubernetes clusters, this...

7.7CVSS5.8AI score0.00385EPSS
Exploits0References4Affected Software1
Github Security Blog
Github Security Blog
added 2026/03/06 4:43 p.m.25 views

GitHub Copilot CLI Dangerous Shell Expansion Patterns Enable Arbitrary Code Execution

Summary A security vulnerability has been identified in GitHub Copilot CLI's shell tool that could allow arbitrary code execution through crafted bash parameter expansion patterns. An attacker who can influence the commands executed by the agent e.g., via prompt injection through repository files...

7.8CVSS6.3AI score0.00363EPSS
Exploits1References4Affected Software1
Github Security Blog
Github Security Blog
added 2026/03/05 10:1 p.m.15 views

SageMaker Python SDK replaced eval() with safe parser in JumpStart search functionality

Summary This advisory addresses the use of the searchhub function within the SageMaker Python SDK's JumpStart search functionality. An actor with the ability to control query parameters passed to the searchhub function could potentially provide malformed input that causes the eval function to...

6.5AI score
Exploits0References4Affected Software1
Github Security Blog
Github Security Blog
added 2026/03/05 9:58 p.m.14 views

Flowise Vulnerable to PII Disclosure on Unauthenticated Forgot Password Endpoint

Summary The /api/v1/account/forgot-password endpoint returns the full user object including PII id, name, email, status, timestamps in the response body instead of a generic success message. This exposes sensitive user information to unauthenticated attackers who only need to know a valid email...

5.9AI score
Exploits0References2Affected Software1
Github Security Blog
Github Security Blog
added 2026/03/05 9:54 p.m.10 views

Flowise has Insufficient Password Salt Rounds

Description The default bcrypt salt rounds is set to 5, which is below the recommended minimum for security. Affected Code export function getHashvalue: string const salt = bcrypt.genSaltSyncparseIntprocess.env.PASSWORDSALTHASHROUNDS || '5' return bcrypt.hashSyncvalue, salt Evidence Using 5 salt...

5.6CVSS6AI score0.00073EPSS
Exploits0References3Affected Software1
Github Security Blog
Github Security Blog
added 2026/03/05 9:50 p.m.35 views

MimeKit has CRLF Injection in Quoted Local-Part that Enables SMTP Command Injection and Email Forgery

Summary A CRLF Injection vulnerability in MimeKit 4.15.0 allows an attacker to embed \r\n into the SMTP envelope address local-part when the local-part is a quoted-string. This is non-compliant with RFC 5321 and can result in SMTP command injection e.g., injecting additional RCPT TO / DATA / RSET...

6.9CVSS6AI score0.01085EPSS
Exploits1References3Affected Software1
Github Security Blog
Github Security Blog
added 2026/03/05 9:49 p.m.8 views

WeKnora is Vulnerable to SSRF via Redirection

Summary The application's "Import document via URL" feature is vulnerable to Server-Side Request Forgery SSRF through HTTP redirects. While the backend implements comprehensive URL validation blocking private IPs, loopback addresses, reserved hostnames, and cloud metadata endpoints, it fails to...

7.5CVSS5.8AI score0.00388EPSS
Exploits1References3Affected Software1
Total number of security vulnerabilities33227