Lucene search
K
GithubRecent

33332 matches found

Github Security Blog
Github Security Blog
added 2025/12/09 5:19 p.m.8 views

Neuron MySQLWriteTool allows arbitrary/destructive SQL when exposed to untrusted prompts (agent “footgun”)

Impact MySQLWriteTool executes arbitrary SQL provided by the caller using PDO::prepare + execute without semantic restrictions. This is consistent with the name “write tool”, but in an LLM/agent context it becomes a high-risk capability: prompt injection or indirect prompt manipulation can cause...

9.4CVSS7.9AI score0.00354EPSS
Exploits0References5Affected Software1
Github Security Blog
Github Security Blog
added 2025/12/09 5:19 p.m.13 views

Neuron MySQLSelectTool “read-only” bypass via `SELECT ... INTO OUTFILE` (file write → potential RCE)

Impact MySQLSelectTool is intended to be a read-only SQL tool e.g., for LLM agent querying. However, validation based on the first keyword e.g., SELECT and a forbidden-keyword list does not block file-writing constructs such as INTO OUTFILE / INTO DUMPFILE. As a result, an attacker who can...

8.2CVSS9.2AI score0.00253EPSS
Exploits0References5Affected Software1
Github Security Blog
Github Security Blog
added 2025/12/09 5:19 p.m.12 views

Filament multi-factor authentication (app) recovery codes can be used multiple times

A flaw in the handling of recovery codes for app-based multi-factor authentication allows the same recovery code to be reused indefinitely. This issue does not affect email-based MFA. It also only applies when recovery codes are enabled. If an attacker gains access to both the user's password and...

8.1CVSS5.5AI score0.00312EPSS
Exploits0References4Affected Software1
Github Security Blog
Github Security Blog
added 2025/12/09 5:18 p.m.10 views

CNA Plugins Portmap nftables backend can intercept non-local traffic

Background The CNI portmap plugin allows containers to emulate opening a host port, forwarding that traffic to the container. For example, if a host has the IP 198.51.100.42, a container may request that all packets to 198.51.100.42:53 be forwarded to the container's network. Vulnerability When t...

6.6CVSS6.8AI score0.00121EPSS
Exploits0References7Affected Software1
Github Security Blog
Github Security Blog
added 2025/12/09 5:18 p.m.13 views

SiYuan vulnerable to RCE via zip slip and Command Injection via PandocBin

Summary Siyuan is vulnerable to RCE. The issue stems from a "Zip Slip" vulnerability during zip file extraction, combined with the ability to overwrite system executables and subsequently trigger their execution. Steps to reproduce 1. Authenticate 2. Create zip slip payload with path traversal...

7.5AI score
Exploits0References2Affected Software1
Github Security Blog
Github Security Blog
added 2025/12/09 5:18 p.m.7 views

SiYuan: ZipSlip -> Arbitrary File Overwrite -> RCE

Summary Function importZipMd is vulnerable to ZipSlip which allows an authenticated user to overwrite files on the system. Details An authenticated user with access to the import functionality in notes is able to overwrite any file on the system, the vulnerable function is importZipMd, this can...

8.8CVSS8.3AI score0.00374EPSS
Exploits1References4Affected Software1
Github Security Blog
Github Security Blog
added 2025/12/09 5:17 p.m.10 views

HTTP/HTTPS Traffic Interception Bypass in mad-proxy

A vulnerability in mad-proxy versions = 0.3 allows attackers to bypass HTTP/HTTPS traffic interception rules, potentially exposing sensitive traffic...

5.3CVSS6.9AI score0.00211EPSS
Exploits0References3Affected Software1
Github Security Blog
Github Security Blog
added 2025/12/09 5:17 p.m.26 views

RCE via ZipSlip and symbolic links in argoproj/argo-workflows

Summary The patch deployed against CVE-2025-62156 is ineffective against malicious archives containing symbolic links. Details The untar code that handles symbolic links in archives is unsafe. Concretely, the computation of the link's target and the subsequent check are flawed:...

8.8CVSS7.4AI score0.00589EPSS
Exploits2References6Affected Software2
Github Security Blog
Github Security Blog
added 2025/12/09 5:12 p.m.9 views

Umbraco Vulnerable to Improper File Access and Credential Exposure in Dictionary Import Functionality

Impact Due to unsafe handling and deletion of temporary files during the dictionary upload process, an attacker with access to the backoffice can trigger predictable requests to temporary file paths. The application’s error responses HTTP 500 when a file exists, 404 when it does not allow the...

4.9CVSS6.8AI score0.00313EPSS
Exploits0References4Affected Software1
Github Security Blog
Github Security Blog
added 2025/12/09 5:12 p.m.7 views

Elysia affected by arbitrary code injection through cookie config

Arbitrary code execution from cookie config. If dynamic cookies are enabled ie there exists a schema for cookies, the cookie config is injected into the compiled route without first being sanitised. Availability of this exploit is generally low, as it requires write access to either the Elysia...

8.8CVSS7.5AI score0.00705EPSS
Exploits1References8Affected Software1
Github Security Blog
Github Security Blog
added 2025/12/09 5:11 p.m.13 views

Elysia vulnerable to prototype pollution with multiple standalone schema validation

Prototype pollution vulnerability in mergeDeep after merging results of two standard schema validations with the same key. Due to the ordering of merging, there must be an any type that is set as a standalone guard, to allow for the proto prop to be merged. When combined with GHSA-8vch-m3f4-q8jf...

9.8CVSS6.7AI score0.0048EPSS
Exploits1References8Affected Software1
Github Security Blog
Github Security Blog
added 2025/12/09 2:26 p.m.12 views

Open Redirect Vulnerability in Taguette

Summary An Open Redirect vulnerability exists in Taguette that allows attackers to craft malicious URLs that redirect users to arbitrary external websites after authentication. This can be exploited for phishing attacks where victims believe they are interacting with a trusted Taguette instance b...

6.1CVSS7.1AI score0.00232EPSS
Exploits1References4Affected Software1
Github Security Blog
Github Security Blog
added 2025/12/09 2:25 p.m.9 views

NiceGUI has a path traversal in app.add_media_files() allows arbitrary file read

Summary A directory traversal vulnerability in NiceGUI's App.addmediafiles allows a remote attacker to read arbitrary files on the server filesystem. Details Hello, I am Seungbin Yang, a university student studying cybersecurity. While reviewing the source code of the repository, I discovered a...

7.5CVSS7AI score0.0098EPSS
Exploits1References4Affected Software1
Github Security Blog
Github Security Blog
added 2025/12/09 2:25 p.m.7 views

Babylon Incorrect FP inactive accounting in costaking creates “phantom stake” that earns rewards after BTC unbond

Summary A state consistency bug in x/costaking can leave a BTC delegator with non-zero ActiveSatoshis Phatom Stake even after they have fully unbonded their BTC delegation, if their Finality Provider FP drops out of the active set in the exact same babylon block height. This creates a “phantom...

6.9AI score
Exploits0References3Affected Software4
Github Security Blog
Github Security Blog
added 2025/12/08 10:20 p.m.8 views

Babylon Nil BlockHash in BLS vote extensions triggers panics in consensus handlers

Summary A vulnerability exists in Babylon’s BLS vote extension processing where a malicious active validator can submit a VoteExtension with the blockhash field omitted from the protobuf serialization. Because protobuf fields are optional, unmarshalling succeeds but leaves BlockHash as nil. Babyl...

7.2AI score
Exploits0References3Affected Software4
Github Security Blog
Github Security Blog
added 2025/12/08 10:20 p.m.9 views

ZITADEL Vulnerable to Account Takeover via DOM-Based XSS in Zitadel V2 Login

Summary A potential vulnerability exists in ZITADEL's logout endpoint in login V2. This endpoint accepts serval parameters including a postlogoutredirect. When this parameter is specified, users will be redirected to the site that is provided via this parameter. ZITADEL's login UI did not ensure...

8CVSS7.1AI score0.00265EPSS
Exploits0References4Affected Software2
Github Security Blog
Github Security Blog
added 2025/12/08 10:19 p.m.10 views

ZITADEL Vulnerable to Account Takeover Due to Improper Instance Validation in V2 Login

Summary A potential vulnerability exists in ZITADEL's password reset mechanism in login V2. ZITADEL utilizes the Forwarded or X-Forwarded-Host header from incoming requests to construct the URL for the password reset confirmation link. This link, containing a secret code, is then emailed to the...

9.3CVSS7.4AI score0.00322EPSS
Exploits0References4Affected Software2
Github Security Blog
Github Security Blog
added 2025/12/08 10:19 p.m.9 views

ZITADEL Vulnerable to Unauthenticated Full-Read SSRF via V2 Login

Summary Zitadel is vulnerable to an unauthenticated, full-read SSRF vulnerability. An unauthenticated remote attacker can force Zitadel into making HTTP requests to arbitrary domains, including internal addresses. The server then returns the upstream response to the attacker, enabling data...

9.3CVSS7.1AI score0.0046EPSS
Exploits2References4Affected Software2
Github Security Blog
Github Security Blog
added 2025/12/08 10:18 p.m.6 views

Static Web Server vulnerable to a symbolic link path traversal

Summary Symbolic links symlinks could be used to access files or directories outside the intended web root folder. Details SWS generally does not prevent symlinks from escaping the web server’s root directory. Therefore, if a malicious actor gains access to the web server’s root directory, they...

8.6CVSS6.9AI score0.00362EPSS
Exploits0References4Affected Software1
Github Security Blog
Github Security Blog
added 2025/12/08 10:16 p.m.13 views

@vitejs/plugin-rsc Remote Code Execution through unsafe dynamic imports in RSC server function APIs on development server

Summary Arbitrary Remote Code Execution on development server via unsafe dynamic imports in @vitejs/plugin-rsc server function APIs loadServerAction, decodeReply, decodeAction when integrated into RSC applications that expose server function endpoints. Impact Attackers with network access to the...

9.8CVSS7.9AI score0.00706EPSS
Exploits0References4Affected Software1
Github Security Blog
Github Security Blog
added 2025/12/08 10:15 p.m.9 views

Csla affected by Remote Code Execution via WcfProxy (NetDataContractSerializer)

Impact Versions of CSLA .NET prior to version 6 allow the use of WcfProxy. WcfProxy uses the NetDataContractSerializer NDCS which has known vulnerabilities that can allow remote execution of code during deserialization. NDCS itself is considered obsolete, and you should avoid using WcfProxy or...

9.8CVSS7.4AI score0.00575EPSS
Exploits0References6Affected Software1
Github Security Blog
Github Security Blog
added 2025/12/08 10:15 p.m.12 views

Critical Use-After-Free in Wasmi's Linear Memory

Summary A use-after-free vulnerability has been discovered in the linear memory implementation of Wasmi. This issue can be triggered by a WebAssembly module under certain memory growth conditions, potentially leading to memory corruption, information disclosure, or code execution. Impact -...

8.4CVSS7.3AI score0.00128EPSS
Exploits0References4Affected Software1
Github Security Blog
Github Security Blog
added 2025/12/08 10:7 p.m.12 views

matrix-sdk-base denial of service via custom m.room.join_rules event values

The matrix-sdk-base crate is unable to handle responses that include custom m.room.joinrules values due to a serialization bug. This can be exploited to cause a denial-of-service condition, if a user is invited to a room with non-standard join rules, the crate's sync process will stall, preventin...

7.5CVSS6.7AI score0.00358EPSS
Exploits0References6Affected Software1
Github Security Blog
Github Security Blog
added 2025/12/08 10:3 p.m.8 views

Ruby-saml allows a Libxml2 Canonicalization error to bypass Digest/Signature validation

Summary Ruby-saml up to and including 1.12.4, there is an authentication bypass vulnerability because of an issue at libxml2 canonicalization process used by Nokogiri for document transformation. That allows an attacker to be able to execute a Signature Wrapping attack. The vulnerability does not...

9.3CVSS7.3AI score0.00211EPSS
Exploits0References5Affected Software1
Github Security Blog
Github Security Blog
added 2025/12/08 9:30 p.m.12 views

Ruby-saml has a SAML authentication bypass due to namespace handling (parser differential)

Summary Ruby-saml up to and including 1.12.4, there is an authentication bypass vulnerability because of an incomplete fix for CVE-2025-25292. ReXML and Nokogiri parse XML differently, the parsers can generate entirely different document structures from the same XML input. That allows an attacker...

9.3CVSS7.3AI score0.0039EPSS
Exploits0References6Affected Software1
Github Security Blog
Github Security Blog
added 2025/12/08 9:30 p.m.7 views

NiceGUI Stored/Reflected XSS in ui.interactive_image via unsanitized SVG content

Summary A Cross-Site Scripting XSS vulnerability exists in the ui.interactiveimage component of NiceGUI v3.3.1 and earlier. The component renders SVG content using Vue's v-html directive without any sanitization. This allows attackers to inject malicious HTML or JavaScript via the SVG tag. Detail...

6.1CVSS5.6AI score0.00232EPSS
Exploits2References4Affected Software1
Github Security Blog
Github Security Blog
added 2025/12/08 9:30 p.m.12 views

Altcha Proof-of-Work obfuscation mode cryptanalytic break

A cryptanalytic break in Altcha Proof-of-Work obfuscation mode version 0.8.0 and later allows for remote visitors to recover the Proof-of-Work nonce in constant time via mathematical deduction...

9.1CVSS7AI score0.00192EPSS
Exploits0References5Affected Software1
Github Security Blog
Github Security Blog
added 2025/12/08 9:30 p.m.8 views

NiceGUI Reflected XSS in ui.add_css, ui.add_scss, and ui.add_sass via Style Injection

Summary A Cross-Site Scripting XSS vulnerability exists in ui.addcss, ui.addscss, and ui.addsass functions in NiceGUI v3.3.1 and earlier. These functions allow developers to inject styles dynamically. However, they lack proper sanitization or encoding for the JavaScript context they generate. An...

6.1CVSS6AI score0.00232EPSS
Exploits1References4Affected Software1
Github Security Blog
Github Security Blog
added 2025/12/08 9:30 p.m.14 views

n8n vulnerable to Remote Code Execution via Git Node Custom Pre-Commit Hook

Impact The n8n Git node allows workflows to set arbitrary Git configuration values through the Add Config operation. When an attacker-controlled workflow sets core.hooksPath to a directory within the cloned repository containing a Git hook such as pre-commit, Git executes that hook during...

9.4CVSS6.8AI score0.00616EPSS
Exploits1References6Affected Software1
Github Security Blog
Github Security Blog
added 2025/12/08 6:30 p.m.9 views

memos vulnerability allows the creation of arbitrary accounts

Incorrect access control in the /api/v1/user endpoint of usememos memos v0.25.2 allows unauthorized attackers to create arbitrary accounts via a crafted request...

7.5CVSS6.9AI score0.00223EPSS
Exploits1References7Affected Software1
Github Security Blog
Github Security Blog
added 2025/12/08 6:30 p.m.9 views

memos vulnerability allows arbitrarily modification or deletion registered identity providers

Incorrect access control in the Identity Provider service of usememos memos v0.25.2 allows attackers with low-level privileges to arbitrarily modify or delete registered identity providers, leading to an account takeover or Denial of Service DoS...

6.5CVSS6.9AI score0.00245EPSS
Exploits1References7Affected Software1
Github Security Blog
Github Security Blog
added 2025/12/08 6:30 p.m.11 views

memos lacks file name validation or verification

A lack of file name validation or verification in the Attachment service of usememos memos v0.25.2 allows attackers to execute a path traversal...

4.3CVSS7.1AI score0.00185EPSS
Exploits1References7Affected Software1
Github Security Blog
Github Security Blog
added 2025/12/08 6:30 p.m.9 views

memos vulnerability allows arbitrarily modification or deletion of attachments

Incorrect access control in usememos memos v0.25.2 allows attackers with low-level privileges to arbitrarily modify or delete attachments made by other users...

5.4CVSS6.9AI score0.00156EPSS
Exploits1References7Affected Software1
Github Security Blog
Github Security Blog
added 2025/12/08 6:30 p.m.12 views

memos vulnerability allows arbitrarily reactions deletion

Incorrect access control in usememos memos v0.25.2 allows attackers with low-level privileges to arbitrarily delete reactions made to other users' Memos...

4.3CVSS6.9AI score0.00173EPSS
Exploits1References7Affected Software1
Github Security Blog
Github Security Blog
added 2025/12/08 5:57 p.m.11 views

robrichards/xmlseclibs has an Libxml2 Canonicalization error which can bypass Digest/Signature validation

Summary An authentication bypass vulnerability exists due to a flaw in the libxml2 canonicalization process, which is used by xmlseclibs during document transformation. This weakness allows an attacker to generate a valid signature once and reuse it indefinitely. In practice, a signature created...

7.5CVSS7.1AI score0.00226EPSS
Exploits1References5Affected Software1
Github Security Blog
Github Security Blog
added 2025/12/08 5:57 p.m.13 views

Fiber Utils UUIDv4 and UUID Silent Fallback to Predictable Values

Summary Critical security vulnerabilities exist in both the UUIDv4 and UUID functions of the github.com/gofiber/utils package. When the system's cryptographic random number generator crypto/rand fails, both functions silently fall back to returning predictable UUID values, the zero UUID...

9.8CVSS7.4AI score0.00409EPSS
Exploits0References4Affected Software2
Github Security Blog
Github Security Blog
added 2025/12/08 5:56 p.m.9 views

1Panel IP Access Control Bypass via Untrusted X-Forwarded-For Headers

Summary The server trusts all reverse-proxy headers by default, so any remote client can spoof X-Forwarded-For to bypass IP-based protections AllowIPs, API IP whitelist, “localhost-only” checks. All IP-based access control becomes ineffective. Details - Gin is created with defaults gin.Default,...

6.5CVSS7AI score0.00204EPSS
Exploits0References4Affected Software2
Github Security Blog
Github Security Blog
added 2025/12/08 5:56 p.m.18 views

1Panel – CAPTCHA Bypass via Client-Controlled Flag

Summary A CAPTCHA bypass vulnerability in the 1Panel authentication API allows an unauthenticated attacker to disable CAPTCHA verification by abusing a client-controlled parameter. Because the server previously trusted this value without proper validation, CAPTCHA protections could be bypassed,...

7.5CVSS7.2AI score0.00405EPSS
Exploits0References5Affected Software2
Github Security Blog
Github Security Blog
added 2025/12/08 4:43 p.m.13 views

Traefik Inverted TLS Verification Logic in ingress-nginx Provider

Impact There is a potential vulnerability in Traefik NGINX provider managing the nginx.ingress.kubernetes.io/proxy-ssl-verify annotation. The provider inverts the semantics of the nginx.ingress.kubernetes.io/proxy-ssl-verify annotation. Setting the annotation to "on" intending to enable backend T...

5.9CVSS6.9AI score0.00213EPSS
Exploits0References5Affected Software1
Github Security Blog
Github Security Blog
added 2025/12/08 4:42 p.m.17 views

Path Normalization Bypass in Traefik Router + Middleware Rules

Impact There is a potential vulnerability in Traefik managing the requests using a PathPrefix, Path or PathRegex matcher. When Traefik is configured to route the requests to a backend using a matcher based on the path; if the request path contains an encoded restricted character from the followin...

6.9CVSS7AI score0.00344EPSS
Exploits1References5Affected Software3
Github Security Blog
Github Security Blog
added 2025/12/08 4:26 p.m.12 views

Astro has an Authentication Bypass via Double URL Encoding, a bypass for CVE-2025-64765

Authentication Bypass via Double URL Encoding in Astro Bypass for CVE-2025-64765 / GHSA-ggxq-hp9w-j794 --- Summary A double URL encoding bypass allows any unauthenticated attacker to bypass path-based authentication checks in Astro middleware, granting unauthorized access to protected routes. Whi...

6.9CVSS7.3AI score0.00481EPSS
Exploits1References6Affected Software1
Github Security Blog
Github Security Blog
added 2025/12/08 4:25 p.m.23 views

Withdrawn Advisory: Emby Server API Vulnerability allowing to gain administrative access without precondition

Withdrawn Advisory This advisory has been withdrawn because it incorrectly listed MediaBrowser.Server.Core as vulnerable. CVE-2025-64113 affects Emby Server versions 4.9.1.80 and prior, and Emby Server Beta versions 4.9.2.6 and prior. Original Description Impact This vulnerability affects all Emb...

9.8CVSS7.7AI score0.00613EPSS
Exploits0References3Affected Software1
Github Security Blog
Github Security Blog
added 2025/12/06 12:31 a.m.11 views

Langflow CORS misconfiguration enables Account Takeover and RCE

Langflow versions up to and including 1.6.9 contain a chained vulnerability that enables account takeover and remote code execution. An overly permissive CORS configuration alloworigins='' with allowcredentials=True combined with a refresh token cookie configured as SameSite=None allows a malicio...

9.4CVSS6.5AI score0.7889EPSS
Exploits3References12Affected Software1
Github Security Blog
Github Security Blog
added 2025/12/05 10:2 p.m.11 views

Strimzi allows unrestricted access to all Secrets in the same Kubernetes namespace from Kafka Connect and MirrorMaker 2 operands

Impact In some situations, Strimzi creates an incorrect Kubernetes Role which grants the Apache Kafka Connect and Apache Kafka MirrorMaker 2 operands the GET access to all Kubernetes Secrets that exist in the given Kubernetes namespace. The exact scenario when this happens is when: Apache Kafka...

7.4CVSS7.1AI score0.00187EPSS
Exploits0References4Affected Software1
Github Security Blog
Github Security Blog
added 2025/12/05 6:57 p.m.11 views

nitro-tpm-pcr-compute may allow kernel command line modification by an account operator

Summary Adding default PCR12 validation to ensure that account operators can not modify kernel command line parameters, potentially bypassing root filesystem integrity validation. Attestable AMIs are based on the systemd Unified Kernel Image UKI concept which uses systemd-boot to create a single...

7AI score
Exploits0References8Affected Software1
Github Security Blog
Github Security Blog
added 2025/12/05 6:54 p.m.17 views

yawkat LZ4 Java has a possible information leak in Java safe decompressor

Summary Insufficient clearing of the output buffer in Java-based decompressor implementations in lz4-java 1.10.0 and earlier allows remote attackers to read previous buffer contents via crafted compressed input. In applications where the output buffer is reused without being cleared, this may lea...

8.2CVSS6.9AI score0.00562EPSS
Exploits0References4Affected Software4
Github Security Blog
Github Security Blog
added 2025/12/05 6:19 p.m.7 views

Sigstore Timestamp Authority allocates excessive memory during request parsing

Impact Excessive memory allocation Function api.ParseJSONRequest currently splits via a call to strings.Split an optionally-provided OID which is untrusted data on periods. Similarly, function api.getContentType splits the Content-Type header which is also untrusted data on an application string...

7.5CVSS6.9AI score0.00411EPSS
Exploits0References4Affected Software1
Github Security Blog
Github Security Blog
added 2025/12/05 6:18 p.m.7 views

Fulcio allocates excessive memory during token parsing

Function identity.extractIssuerURL currently splits via a call to strings.Split its argument which is untrusted data on periods. As a result, in the face of a malicious request with an invalid OIDC identity token in the payload containing many period characters, a call to extractIssuerURL incurs...

7.5CVSS6.9AI score0.00191EPSS
Exploits0References4Affected Software1
Github Security Blog
Github Security Blog
added 2025/12/05 6:15 p.m.17 views

urllib3 streaming API improperly handles highly compressed data

Impact urllib3's streaming API is designed for the efficient handling of large HTTP responses by reading the content in chunks, rather than loading the entire response body into memory at once. When streaming a compressed response, urllib3 can perform decoding or decompression based on the HTTP...

8.9CVSS6.7AI score0.00633EPSS
Exploits0References4Affected Software1
Github Security Blog
Github Security Blog
added 2025/12/05 6:15 p.m.13 views

urllib3 allows an unbounded number of links in the decompression chain

Impact urllib3 supports chained HTTP encoding algorithms for response content according to RFC 9110 e.g., Content-Encoding: gzip, zstd. However, the number of links in the decompression chain was unbounded allowing a malicious server to insert a virtually unlimited number of compression steps...

8.9CVSS6.8AI score0.00633EPSS
Exploits0References4Affected Software1
Total number of security vulnerabilities33332