Lucene search
K
GithubRecent

33187 matches found

Github Security Blog
Github Security Blog
added 2026/04/09 8:23 p.m.10 views

Wasmtime has data leakage between pooling allocator instances

Impact Wasmtime's implementation of its pooling allocator contains a bug where in certain configurations the contents of linear memory can be leaked from one instance to the next. The implementation of resetting the virtual memory permissions for linear memory used the wrong predicate to determin...

6.3CVSS5.7AI score0.00286EPSS
Exploits0References4Affected Software1
Github Security Blog
Github Security Blog
added 2026/04/09 8:23 p.m.11 views

Wasmtime has use-after-free bug after cloning `wasmtime::Linker`

Impact In version 43.0.0 of the wasmtime crate, cloning a wasmtime::Linker is unsound and can result in use-after-free bugs. This bug is not controllable by guest Wasm programs. It can only be triggered by a specific sequence of embedder API calls made by the host. The typical symptom of this...

5CVSS5.9AI score0.00117EPSS
Exploits0References5Affected Software1
Github Security Blog
Github Security Blog
added 2026/04/09 8:23 p.m.11 views

Wasmtime: Miscompiled guest heap access enables sandbox escape on aarch64 Cranelift

Impact Wasmtime's Cranelift compilation backend contains a bug on aarch64 when performing a certain shape of heap accesses which means that the wrong address is accessed. When combined with explicit bounds checks a guest WebAssembly module this can create a situation where there are two diverging...

9CVSS5.9AI score0.00319EPSS
Exploits0References4Affected Software1
Github Security Blog
Github Security Blog
added 2026/04/09 8:23 p.m.12 views

Wasmtime has host panic when Winch compiler executes `table.fill`

Impact Wasmtime's Winch compiler contains a vulnerability where the compilation of the table.fill instruction can result in a host panic. This means that a valid guest can be compiled with Winch, on any architecture, and cause the host to panic. This represents a denial-of-service vulnerability i...

7.5CVSS5.9AI score0.00358EPSS
Exploits0References4Affected Software1
Github Security Blog
Github Security Blog
added 2026/04/09 8:23 p.m.11 views

Wasmtime has host data leakage with 64-bit tables and Winch

Impact Wasmtime's Winch compiler contains a bug where a 64-bit table, part of the memory64 proposal of WebAssembly, incorrectly translated the table.size instruction. This bug could lead to disclosing data on the host's stack to WebAssembly guests. The host's stack can possibly contain sensitive...

6.5CVSS5.8AI score0.00324EPSS
Exploits0References4Affected Software1
Github Security Blog
Github Security Blog
added 2026/04/09 8:22 p.m.12 views

Wasmtime segfault or unused out-of-sandbox load with `f64x2.splat` operator on x86-64

On x86-64 platforms with SSE3 disabled Wasmtime's compilation of the f64x2.splat WebAssembly instruction with Cranelift may load 8 more bytes than is necessary. When signals-based-traps are disabled this can result in a uncaught segfault due to loading from unmapped guard pages. With guard pages...

5.7CVSS5.9AI score0.00227EPSS
Exploits0References4Affected Software1
Github Security Blog
Github Security Blog
added 2026/04/09 8:22 p.m.8 views

Wasmtime has a possible panic when lifting `flags` component value

Impact Wasmtime contains a possible panic which can happen when a flags-typed component model value is lifted with the Val type. If bits are set outside of the set of flags the component model specifies that these bits should be ignored but Wasmtime will panic when this value is lifted. This pani...

7.5CVSS5.7AI score0.00324EPSS
Exploits0References4Affected Software1
Github Security Blog
Github Security Blog
added 2026/04/09 8:22 p.m.10 views

Wasmtime: Panic when transcoding misaligned utf-16 strings

Impact Wasmtime's implementation of transcoding strings into the Component Model's utf16 or latin1+utf16 encodings improperly verified the alignment of reallocated strings. This meant that unaligned pointers could be passed to the host for transcoding which would trigger a host panic. This panic ...

6.5CVSS5.8AI score0.00354EPSS
Exploits0References4Affected Software1
Github Security Blog
Github Security Blog
added 2026/04/09 8:22 p.m.13 views

Wasmtime: Heap OOB read in component model UTF-16 to latin1+utf16 string transcoding

Summary Wasmtime contains a vulnerability where when transcoding a UTF-16 string to the latin1+utf16 component-model encoding it would incorrectly validate the byte length of the input string when performing a bounds check. Specifically the number of code units were checked instead of the byte...

8.1CVSS5.8AI score0.00376EPSS
Exploits0References4Affected Software1
Github Security Blog
Github Security Blog
added 2026/04/09 6:31 p.m.13 views

MetaGPT has an Injection issue

A vulnerability was detected in FoundationAgents MetaGPT up to 0.8.1. This affects the function checksolution of the component HumanEvalBenchmark/MBPPBenchmark. Performing a manipulation results in code injection. The attack may be initiated remotely. The exploit is now public and may be used. Th...

9.8CVSS6.9AI score0.00387EPSS
Exploits1References8Affected Software1
Github Security Blog
Github Security Blog
added 2026/04/09 6:31 p.m.7 views

FoundationAgents MetaGPT vulnerable to eval injection

A flaw has been found in FoundationAgents MetaGPT up to 0.8.1. This vulnerability affects the function ActionNode.xmlfill of the file metagpt/actions/actionnode.py of the component XML Handler. Executing a manipulation can lead to improper neutralization of directives in dynamically evaluated cod...

9.8CVSS6.7AI score0.00387EPSS
Exploits1References8Affected Software1
Github Security Blog
Github Security Blog
added 2026/04/09 6:31 p.m.7 views

Apache ActiveMQ, Apache ActiveMQ All, Apache ActiveMQ MQTT vulnerable to Integer Overflow or Wraparound

Integer Overflow or Wraparound vulnerability in Apache ActiveMQ, Apache ActiveMQ All, Apache ActiveMQ MQTT. The fix for "CVE-2025-66168: MQTT control packet remaining length field is not properly validated" was only applied to 5.19.2 and future 5.19.x releases but was missed for all 6.0.0+...

8.8CVSS5.8AI score0.0078EPSS
Exploits0References5Affected Software3
Github Security Blog
Github Security Blog
added 2026/04/09 6:31 p.m.6 views

Apache OpenMeetings Uses GET Request Method With Sensitive Query Strings

Use of GET Request Method With Sensitive Query Strings vulnerability in Apache OpenMeetings. The REST login endpoint uses HTTP GET method with username and password passed as query parameters. Please check references regarding possible impact This issue affects Apache OpenMeetings: from 3.1.3...

7.5CVSS5.8AI score0.00509EPSS
Exploits0References5Affected Software1
Github Security Blog
Github Security Blog
added 2026/04/09 6:31 p.m.5 views

Apache OpenMeetings Uses Hard-coded Cryptographic Key

Use of Hard-coded Cryptographic Key vulnerability in Apache OpenMeetings. The remember-me cookie encryption key is set to default value in openmeetings.properties and not being auto-rotated. In case OM admin hasn't changed the default encryption key, an attacker who has stolen a cookie from a...

7.5CVSS5.8AI score0.00234EPSS
Exploits0References4Affected Software1
Github Security Blog
Github Security Blog
added 2026/04/09 6:31 p.m.6 views

Apache OpenMeetings has an Improper Handling of Insufficient Privileges vulnerability

Sny registered user can query web service with their credentials and get files/sub-folders of any folder by ID metadata only NOT contents. Metadata includes id, type, name and some other field. Full list of fields get be checked at FileItemDTO object. This issue affects Apache OpenMeetings: from...

4.3CVSS5.8AI score0.00418EPSS
Exploits0References5Affected Software1
Github Security Blog
Github Security Blog
added 2026/04/09 5:37 p.m.11 views

OpenClaw: Multiple Code Paths Missing Base64 Pre-Allocation Size Checks

Impact Multiple Code Paths Missing Base64 Pre-Allocation Size Checks. Several base64 decode paths could allocate before enforcing decoded-size limits. OpenClaw is a user-controlled local assistant. This advisory is scoped to the OpenClaw trust model and does not assume a multi-tenant service...

6.5CVSS5.9AI score0.00302EPSS
Exploits0References5Affected Software1
Github Security Blog
Github Security Blog
added 2026/04/09 5:37 p.m.8 views

OpenClaw B-M3: ClawHub package downloads are not enforced with integrity verification

Impact B-M3: ClawHub package downloads are not enforced with integrity verification. ClawHub downloads could install plugin archives without enforcing archive or per-file integrity metadata. OpenClaw is a user-controlled local assistant. This advisory is scoped to the OpenClaw trust model and doe...

7.5CVSS5.9AI score0.00139EPSS
Exploits0References5Affected Software1
Github Security Blog
Github Security Blog
added 2026/04/09 5:37 p.m.10 views

OpenClaw: `fetchWithSsrFGuard` replays unsafe request bodies across cross-origin redirects

Impact fetchWithSsrFGuard replays unsafe request bodies across cross-origin redirects. A guarded fetch could resend unsafe request bodies or headers when following cross-origin redirects. OpenClaw is a user-controlled local assistant. This advisory is scoped to the OpenClaw trust model and does n...

7.1CVSS5.9AI score0.00239EPSS
Exploits0References5Affected Software1
Github Security Blog
Github Security Blog
added 2026/04/09 5:37 p.m.8 views

OpenClaw Host-Exec Environment Variable Injection

Impact OpenClaw Host-Exec Environment Variable Injection. Host exec could inherit environment variables that influence interpreters, shells, or build tools. OpenClaw is a user-controlled local assistant. This advisory is scoped to the OpenClaw trust model and does not assume a multi-tenant servic...

5.9AI score
Exploits0References2Affected Software1
Github Security Blog
Github Security Blog
added 2026/04/09 5:36 p.m.13 views

OpenClaw: Strict browser SSRF bypass in Playwright redirect handling leaves private targets reachable

Impact Strict browser SSRF bypass in Playwright redirect handling leaves private targets reachable. Strict browser SSRF checks could miss Playwright request-time navigation to private targets. OpenClaw is a user-controlled local assistant. This advisory is scoped to the OpenClaw trust model and...

6.5CVSS5.9AI score0.00188EPSS
Exploits0References5Affected Software1
Github Security Blog
Github Security Blog
added 2026/04/09 5:36 p.m.8 views

OpenClaw: Gateway plugin HTTP `auth: gateway` widens identity-bearing `operator.read` requests into runtime `operator.write`

Impact Gateway plugin HTTP auth: gateway widens identity-bearing operator.read requests into runtime operator.write. Plugin HTTP routes using gateway auth could receive runtime write scopes even when the upstream trusted-proxy request only declared read. OpenClaw is a user-controlled local...

7.1CVSS5.9AI score0.00239EPSS
Exploits0References5Affected Software1
Github Security Blog
Github Security Blog
added 2026/04/09 5:36 p.m.7 views

OpenClaw has Browser SSRF Policy Bypass via Interaction-Triggered Navigation

Impact Browser SSRF Policy Bypass via Interaction-Triggered Navigation. Browser interactions could trigger navigations that bypassed the normal SSRF navigation checks. OpenClaw is a user-controlled local assistant. This advisory is scoped to the OpenClaw trust model and does not assume a...

7.6CVSS5.9AI score0.0021EPSS
Exploits0References2Affected Software1
Github Security Blog
Github Security Blog
added 2026/04/09 5:36 p.m.8 views

OpenClaw `node.pair.approve` placed in `operator.write` scope instead of `operator.pairing` allows unprivileged pairing approval

Impact OpenClaw node.pair.approve placed in operator.write scope instead of operator.pairing allows unprivileged pairing approval. The pairing approval method accepted operator.write instead of the narrower pairing scope and admin requirement for exec-capable nodes. OpenClaw is a user-controlled...

8.8CVSS5.9AI score0.00282EPSS
Exploits0References5Affected Software1
Github Security Blog
Github Security Blog
added 2026/04/09 5:36 p.m.12 views

OpenClaw: Feishu docx upload_file/upload_image Bypasses Workspace-Only Filesystem Policy (GHSA-qf48-qfv4-jjm9 Incomplete Fix)

Impact Feishu docx uploadfile/uploadimage Bypasses Workspace-Only Filesystem Policy GHSA-qf48-qfv4-jjm9 Incomplete Fix. Feishu document uploads could read local files outside the workspace-only file policy when processing docx upload blocks. OpenClaw is a user-controlled local assistant. This...

6.5CVSS5.9AI score0.00326EPSS
Exploits0References2Affected Software1
Github Security Blog
Github Security Blog
added 2026/04/09 5:36 p.m.8 views

OpenClaw QQ Bot Extension missing SSRF Protection on All Media Fetch Paths

Impact QQ Bot Extension: Missing SSRF Protection on All Media Fetch Paths. QQ Bot media download paths were not consistently routed through the SSRF guard and allowlist policy. OpenClaw is a user-controlled local assistant. This advisory is scoped to the OpenClaw trust model and does not assume a...

8.5CVSS5.9AI score0.00218EPSS
Exploits0References2Affected Software1
Github Security Blog
Github Security Blog
added 2026/04/09 5:36 p.m.8 views

OpenClaw: Existing WS sessions survive shared gateway token rotation

Impact Existing WS sessions survive shared gateway token rotation. Rotating the shared gateway token did not disconnect existing shared-token WebSocket sessions. OpenClaw is a user-controlled local assistant. This advisory is scoped to the OpenClaw trust model and does not assume a multi-tenant...

5.4CVSS5.9AI score0.00186EPSS
Exploits0References2Affected Software1
Github Security Blog
Github Security Blog
added 2026/04/09 5:35 p.m.7 views

OpenClaw: Concurrent async auth attempts can bypass the intended shared-secret rate-limit budget on Tailscale-capable paths

Impact Concurrent async auth attempts can bypass the intended shared-secret rate-limit budget on Tailscale-capable paths. Concurrent asynchronous shared-secret auth attempts could race the per-key rate-limit budget. OpenClaw is a user-controlled local assistant. This advisory is scoped to the...

6.3CVSS5.9AI score0.00211EPSS
Exploits0References5Affected Software1
Github Security Blog
Github Security Blog
added 2026/04/09 5:35 p.m.9 views

OpenClaw: Node Pairing Reconnect Command Escalation Bypasses operator.admin Scope Requirement

Impact Node Pairing Reconnect Command Escalation Bypasses operator.admin Scope Requirement. A previously paired node could reconnect with a broader command set, including exec-capable commands, without forcing the operator/admin re-pairing path. OpenClaw is a user-controlled local assistant. This...

7.8CVSS5.9AI score0.00131EPSS
Exploits0References5Affected Software1
Github Security Blog
Github Security Blog
added 2026/04/09 5:34 p.m.10 views

OpenClaw: /allowlist omits owner-only enforcement for cross-channel allowlist writes

Impact /allowlist omits owner-only enforcement for cross-channel allowlist writes. An authorized non-owner sender could attempt allowlist writes against a different channel. OpenClaw is a user-controlled local assistant. This advisory is scoped to the OpenClaw trust model and does not assume a...

4.3CVSS5.9AI score0.00237EPSS
Exploits0References5Affected Software1
Github Security Blog
Github Security Blog
added 2026/04/09 5:34 p.m.8 views

OpenClaw: resolvedAuth closure becomes stale after config reload

Impact resolvedAuth closure becomes stale after config reload. After a config reload, newly accepted gateway connections could continue using stale resolved auth state. OpenClaw is a user-controlled local assistant. This advisory is scoped to the OpenClaw trust model and does not assume a...

5.4CVSS5.9AI score0.00215EPSS
Exploits0References2Affected Software1
Github Security Blog
Github Security Blog
added 2026/04/09 5:34 p.m.11 views

OpenClaw `node.invoke(browser.proxy)` bypasses `browser.request` persistent profile-mutation guard

Impact OpenClaw node.invokebrowser.proxy bypasses browser.request persistent profile-mutation guard. node.invokebrowser.proxy could mutate persistent browser profiles through a path that bypassed the browser.request guard. OpenClaw is a user-controlled local assistant. This advisory is scoped to...

8.1CVSS5.9AI score0.00258EPSS
Exploits0References5Affected Software1
Github Security Blog
Github Security Blog
added 2026/04/09 5:33 p.m.8 views

OpenClaw `device.token.rotate` mints tokens for unapproved roles, bypassing device role-upgrade pairing

Impact OpenClaw device.token.rotate mints tokens for unapproved roles, bypassing device role-upgrade pairing. Device token rotation could mint or preserve roles/scopes that had not gone through the intended pairing approval. OpenClaw is a user-controlled local assistant. This advisory is scoped t...

8.8CVSS5.9AI score0.00282EPSS
Exploits0References5Affected Software1
Github Security Blog
Github Security Blog
added 2026/04/09 5:32 p.m.8 views

OpenClaw: Shared reply MEDIA - paths are treated as trusted and can trigger cross-channel local file exfiltration

Impact Shared reply MEDIA: paths are treated as trusted and can trigger cross-channel local file exfiltration. A crafted shared reply MEDIA reference could cause another channel to read a local file path as trusted generated media. OpenClaw is a user-controlled local assistant. This advisory is...

5.9CVSS5.9AI score0.00181EPSS
Exploits0References5Affected Software1
Github Security Blog
Github Security Blog
added 2026/04/09 5:32 p.m.7 views

OpenClaw: strictInlineEval explicit-approval boundary bypassed by approval-timeout fallback on gateway and node exec hosts

Impact strictInlineEval explicit-approval boundary bypassed by approval-timeout fallback on gateway and node exec hosts. The approval-timeout fallback could allow inline eval commands that strictInlineEval was meant to require explicit approval for. OpenClaw is a user-controlled local assistant...

7.7CVSS5.9AI score0.00316EPSS
Exploits0References5Affected Software1
Github Security Blog
Github Security Blog
added 2026/04/09 5:32 p.m.7 views

MinIO affected a DoS via Unbounded Memory Allocation in S3 Select CSV Parsing

Impact What kind of vulnerability is it? Who is impacted? MinIO's S3 Select feature is vulnerable to memory exhaustion when processing CSV files containing lines longer than available memory. The CSV reader's nextSplit function calls bufio.Reader.ReadBytes'\n' with no size limit, buffering the...

7.1CVSS5.8AI score0.00485EPSS
Exploits0References6Affected Software1
Github Security Blog
Github Security Blog
added 2026/04/09 5:32 p.m.11 views

Axios has a NO_PROXY Hostname Normalization Bypass that Leads to SSRF

Axios does not correctly handle hostname normalization when checking NOPROXY rules. Requests to loopback addresses like localhost. with a trailing dot or ::1 IPv6 literal skip NOPROXY matching and go through the configured proxy. This goes against what developers expect and lets attackers force...

9.9CVSS5.7AI score0.01186EPSS
Exploits1References11Affected Software1
Github Security Blog
Github Security Blog
added 2026/04/09 4:41 p.m.12 views

fast-jwt has a ReDoS when using RegExp in allowed* leading to CPU exhaustion during token verification

⚠️ IMPORTANT CLARIFICATIONS Affected Configurations This vulnerability ONLY affects applications that: - Use RegExp objects not strings in the allowedAud, allowedIss, allowedSub, allowedJti, or allowedNonce options - Configure patterns susceptible to catastrophic backtracking - Example: allowedAud...

6.5CVSS6AI score0.00262EPSS
Exploits1References6Affected Software1
Github Security Blog
Github Security Blog
added 2026/04/09 4:41 p.m.15 views

fast-jwt: Stateful RegExp (/g or /y) causes non-deterministic allowed-claim validation (logical DoS)

Impact Using certain modifiers on RegExp objects in the allowedAud, allowedIss, allowedSub, allowedJti, or allowedNonce options in verify functions can cause certain unintended behaviours. This is because some modifiers are stateful and will cause failures in every second verification attempt...

5.3CVSS5.9AI score0.00383EPSS
Exploits1References6Affected Software1
Github Security Blog
Github Security Blog
added 2026/04/09 3:35 p.m.7 views

HashiCorp's go-getter library may allow arbitrary file reads

HashiCorp's go-getter library up to v1.8.5 may allow arbitrary file reads on the file system during certain git operations through a maliciously crafted URL. This is fixed in go-getter v1.8.6. This vulnerability does not affect the go-getter/v2 branch and package...

7.5CVSS5.8AI score0.00583EPSS
Exploits1References3Affected Software1
Github Security Blog
Github Security Blog
added 2026/04/09 2:22 p.m.7 views

OpenClaw: HGRCPATH, CARGO_BUILD_RUSTC_WRAPPER, RUSTC_WRAPPER, and MAKEFLAGS missing from exec env denylist — RCE via build tool env injection (GHSA-cm8v-2vh9-cxf3 class)

Impact HGRCPATH, CARGOBUILDRUSTCWRAPPER, RUSTCWRAPPER, and MAKEFLAGS missing from exec env denylist — RCE via build tool env injection GHSA-cm8v-2vh9-cxf3 class. Missing denylist entries allowed hostile build-tool environment variables to influence host exec commands. OpenClaw is a user-controlle...

5.8CVSS5.9AI score0.00188EPSS
Exploits0References3Affected Software1
Github Security Blog
Github Security Blog
added 2026/04/09 2:22 p.m.10 views

OpenClaw: Authenticated `/hooks/wake` and mapped `wake` payloads are promoted into the trusted `System:` prompt channel

Impact Authenticated /hooks/wake and mapped wake payloads are promoted into the trusted System: prompt channel. An authenticated wake hook or mapped wake payload could be promoted into the trusted System prompt channel instead of an untrusted event. OpenClaw is a user-controlled local assistant...

5.9AI score
Exploits0References2Affected Software1
Github Security Blog
Github Security Blog
added 2026/04/09 2:22 p.m.8 views

OpenClaw: Lower-trust background runtime output is injected into trusted `System:` events, and local async exec completion misses the intended `exec-event` downgrade

Impact Lower-trust background runtime output is injected into trusted System: events, and local async exec completion misses the intended exec-event downgrade. Lower-trust runtime/background output could be promoted into trusted System events, allowing prompt-injection into later agent turns...

5.9AI score
Exploits0References2Affected Software1
Github Security Blog
Github Security Blog
added 2026/04/09 12:31 p.m.10 views

Mattermost MS Teams plugin doesn't limit the request body size on the /lifecycle webhook endpoint

Mattermost Plugins versions =2.3.1 fail to limit the request body size on the /lifecycle webhook endpoint which allows an authenticated attacker to cause memory exhaustion and denial of service via sending an oversized JSON payload. Mattermost Advisory ID: MMSA-2026-00610...

6.5CVSS5.2AI score0.00311EPSS
Exploits0References5Affected Software1
Github Security Blog
Github Security Blog
added 2026/04/09 12:31 p.m.14 views

Mattermost MS Teams plugin doesn't limit the request body size on the /changes webhook endpoint

Mattermost Plugins versions =2.1.3.0 fail to limit the request body size on the /changes webhook endpoint which allows an authenticated attacker to cause memory exhaustion and denial of service via sending an oversized JSON payload. Mattermost Advisory ID: MMSA-2026-00611...

6.5CVSS5.2AI score0.00311EPSS
Exploits0References5Affected Software1
Github Security Blog
Github Security Blog
added 2026/04/09 12:31 p.m.7 views

Apache Airflow: JWT token still valid after logout

When user logged out, the JWT token the user had authtenticated with was not invalidated, which could lead to reuse of that token in case it was intercepted. In Airflow 3.2 we implemented the mechanism that implements token invalidation at logout. Users who are concerned about the logout scenario...

9.1CVSS5.8AI score0.00667EPSS
Exploits0References6Affected Software1
Github Security Blog
Github Security Blog
added 2026/04/09 12:31 p.m.14 views

Apache DolphinScheduler vulnerable to sensitive information disclosure

An Exposure of Sensitive Information to an Unauthorized Actor vulnerability exists in Apache DolphinScheduler. This vulnerability may allow unauthorized actors to access sensitive information, including database credentials. This issue affects Apache DolphinScheduler versions 3.1.. Users are...

7.5CVSS7AI score0.01201EPSS
Exploits0References5Affected Software1
Github Security Blog
Github Security Blog
added 2026/04/09 12:31 p.m.8 views

Apache Airflow has an authorization bypass in DagRun wait endpoint

Apache Airflow versions 3.0.0 through 3.1.8 DagRun wait endpoint returns XCom result values even to users who only have DAG Run read permissions, such as the Viewer role.This behavior conflicts with the FAB RBAC model, which treats XCom as a separate protected resource, and with the security mode...

6.5CVSS6AI score0.00685EPSS
Exploits0References7Affected Software1
Github Security Blog
Github Security Blog
added 2026/04/09 6:30 a.m.8 views

decolua 9router vulnerable to authorization bypass

A security vulnerability has been detected in decolua 9router up to 0.3.47. The impacted element is an unknown function of the file /api of the component Administrative API Endpoint. The manipulation leads to authorization bypass. The attack is possible to be carried out remotely. The exploit has...

7.5CVSS6.5AI score0.00313EPSS
Exploits0References10Affected Software1
Github Security Blog
Github Security Blog
added 2026/04/09 6:30 a.m.8 views

awwaiid mcp-server-taskwarrior vulnerable to command injection

A security vulnerability has been detected in awwaiid mcp-server-taskwarrior up to 1.0.1. This impacts the function server.setRequestHandler of the file index.ts. Such manipulation of the argument Identifier leads to command injection. The attack must be carried out locally. The exploit has been...

5.3CVSS5.6AI score0.00647EPSS
Exploits0References10Affected Software1
Github Security Blog
Github Security Blog
added 2026/04/09 3:31 a.m.8 views

api-lab-mcp vulnerable to SSRF

A weakness has been identified in atototo api-lab-mcp up to 0.2.1. This affects the function analyzeapispec/generatetestscenarios/testhttpendpoint of the file src/mcp/http-server.ts of the component HTTP Interface. This manipulation of the argument source/url causes server-side request forgery. T...

7.5CVSS6.7AI score0.00288EPSS
Exploits0References8Affected Software1
Total number of security vulnerabilities33187