Lucene search
K
GithubRecent

33187 matches found

Github Security Blog
Github Security Blog
added 2026/04/08 3:32 a.m.7 views

parisneo/lollms has an insufficient session expiration vulnerability

An insufficient session expiration vulnerability exists in the latest version of parisneo/lollms. The application fails to invalidate active sessions after a password reset, allowing an attacker to continue using an old session token. This issue arises due to the absence of logic to reject reques...

4.1CVSS5.9AI score0.0021EPSS
Exploits0References3Affected Software1
Github Security Blog
Github Security Blog
added 2026/04/08 12:18 a.m.11 views

Denial of Service due to Panic in AWS SDK for Go v2 SDK EventStream Decoder

CVSSv3.1 Rating: Medium CVSSv3.1 Score: 5.9 CVSSv3.1 Vector String: CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H Summary and Impact An issue exists in the the EventStream header decoder in AWS SDK for Go v2 in versions predating 2026-03-23. An actor can send a malformed EventStream response frame...

5.9AI score
Exploits0References3Affected Software12
Github Security Blog
Github Security Blog
added 2026/04/08 12:18 a.m.6 views

Emmett has a path traversal in internal assets handler

The RSGI static handler for Emmett's internal assets /emmett paths is vulnerable to path traversal attacks. An attacker can use ../ sequences eg /emmett/../rsgi/handlers.py to read arbitrary files outside the assets directory...

9.1CVSS6AI score0.00495EPSS
Exploits0References4Affected Software1
Github Security Blog
Github Security Blog
added 2026/04/08 12:18 a.m.11 views

pyload-ng has a WebUI JSON permission mismatch that lets ADD/DELETE users invoke MODIFY-only actions

Summary Several WebUI JSON endpoints enforce weaker permissions than the core API methods they invoke. This allows authenticated low-privileged users to execute MODIFY operations that should be denied by pyLoad's own permission model. Confirmed mismatches: - ADD user can reorder packages/files...

5.4CVSS6.1AI score0.00219EPSS
Exploits1References3Affected Software1
Github Security Blog
Github Security Blog
added 2026/04/08 12:17 a.m.4 views

lightrag-hku: JWT Algorithm Confusion Vulnerability

Summary The LightRAG API is vulnerable to a JWT algorithm confusion attack where an attacker can forge tokens by specifying 'alg': 'none' in the JWT header. Since the jwt.decode call does not explicitly deny the 'none' algorithm, a crafted token without a signature will be accepted as valid,...

6.5CVSS6AI score0.00154EPSS
Exploits1References4Affected Software1
Github Security Blog
Github Security Blog
added 2026/04/08 12:17 a.m.17 views

Hono: Non-breaking space prefix bypass in cookie name handling in getCookie()

Summary A discrepancy between browser cookie parsing and parse handling allows cookie prefix protections to be bypassed. Cookie names that are treated as distinct by the browser may be normalized to the same key by parse, allowing attacker-controlled cookies to override legitimate ones. Details...

4.8CVSS5.9AI score0.00284EPSS
Exploits0References5Affected Software1
Github Security Blog
Github Security Blog
added 2026/04/08 12:17 a.m.6 views

Hono has incorrect IP matching in ipRestriction() for IPv4-mapped IPv6 addresses

Summary ipRestriction does not canonicalize IPv4-mapped IPv6 client addresses e.g. ::ffff:127.0.0.1 before applying IPv4 allow or deny rules. In environments such as Node.js dual-stack, this can cause IPv4 rules to fail to match, leading to unintended authorization behavior. Details The middlewar...

6.3CVSS5.8AI score0.00342EPSS
Exploits0References5Affected Software1
Github Security Blog
Github Security Blog
added 2026/04/08 12:17 a.m.7 views

Hono missing validation of cookie name on write path in setCookie()

Summary Cookie names are not validated on the write path when using setCookie, serialize, or serializeSigned to generate Set-Cookie headers. While certain cookie attributes such as domain and path are validated, the cookie name itself may contain invalid characters. This results in inconsistent...

5.9AI score
Exploits0References4Affected Software1
Github Security Blog
Github Security Blog
added 2026/04/08 12:16 a.m.48 views

Hono: Path traversal in toSSG() allows writing files outside the output directory

Summary A path traversal issue in toSSG allows files to be written outside the configured output directory during static site generation. When using dynamic route parameters via ssgParams, specially crafted values can cause generated file paths to escape the intended output directory. Details The...

7.5CVSS5.8AI score0.00532EPSS
Exploits1References5Affected Software1
Github Security Blog
Github Security Blog
added 2026/04/08 12:16 a.m.9 views

Hono: Middleware bypass via repeated slashes in serveStatic

Summary A path handling inconsistency in serveStatic allows protected static files to be accessed by using repeated slashes // in the request path. When route-based middleware e.g., /admin/ is used for authorization, the router may not match paths containing repeated slashes, while serveStatic...

5.3CVSS5.8AI score0.00459EPSS
Exploits0References5Affected Software1
Github Security Blog
Github Security Blog
added 2026/04/08 12:16 a.m.20 views

@hono/node-server: Middleware bypass via repeated slashes in serveStatic

Summary A path handling inconsistency in serveStatic allows protected static files to be accessed by using repeated slashes // in the request path. When route-based middleware e.g., /admin/ is used for authorization, the router may not match paths containing repeated slashes, while serveStatic...

5.3CVSS5.9AI score0.00376EPSS
Exploits0References5Affected Software1
Github Security Blog
Github Security Blog
added 2026/04/08 12:16 a.m.8 views

JWCrypto: JWE ZIP decompression bomb

Summary The fix for GHSA-j857-7rvv-vj97 in v1.5.6 is weak in that it does not allow to fully control the amount of plaintext the receiver is willing to deal with and provides just a weak upper bound. The patch limits input token size to 250KB but does not validate the decompressed output size. An...

5.3CVSS6.1AI score0.00294EPSS
Exploits1References6Affected Software1
Github Security Blog
Github Security Blog
added 2026/04/08 12:16 a.m.5 views

openclaw-claude-bridge: sandbox is not effective - `--allowed-tools ""` does not restrict available tools

Affected openclaw-claude-bridge v1.1.0 Issue v1.1.0 spawns the Claude Code CLI subprocess with --allowed-tools "" and the release notes + README claim this "disables all CLI tools" for sandboxing. This claim is incorrect. Per the Claude Code CLI documentation, --allowed-tools alias --allowedTools...

6.3AI score
Exploits0References4Affected Software1
Github Security Blog
Github Security Blog
added 2026/04/08 12:15 a.m.8 views

@delmaredigital/payload-puc is missing authorization on /api/puck/* CRUD endpoints allows unauthenticated access to Puck-registered collections

Impact All /api/puck/ CRUD endpoint handlers registered by createPuckPlugin called Payload's local API with the default overrideAccess: true, bypassing all collection-level access control. The access option passed to createPuckPlugin and any access rules defined on Puck-registered collections wer...

9.8CVSS6.1AI score0.00376EPSS
Exploits1References5Affected Software1
Github Security Blog
Github Security Blog
added 2026/04/08 12:15 a.m.7 views

RustFS has an authorization bypass in multipart UploadPartCopy enables cross-bucket object exfiltration

RustFS contains a missing authorization check in the multipart copy path UploadPartCopy. A low-privileged user who cannot read objects from a victim bucket can still exfiltrate victim objects by copying them into an attacker-controlled multipart upload and completing the upload. This breaks tenan...

5.3CVSS5.9AI score0.00201EPSS
Exploits1References3Affected Software1
Github Security Blog
Github Security Blog
added 2026/04/08 12:15 a.m.6 views

Cosign's verify-blob-attestation reports false positive when payload parsing fails

Description cosign verify-blob-attestation may erroneously report a "Verified OK" result for attestations with malformed payloads or mismatched predicate types. For old-format bundles and detached signatures, this was due to a logic flaw in the error handling of the predicate type validation. For...

5.3CVSS5.9AI score0.00241EPSS
Exploits0References3Affected Software1
Github Security Blog
Github Security Blog
added 2026/04/08 12:15 a.m.7 views

Rack::Session::Cookie secrets: decrypt failure fallback enables secretless session forgery and Marshal deserialization

Rack::Session::Cookie incorrectly handles decryption failures when configured with secrets:. If cookie decryption fails, the implementation falls back to a default decoder instead of rejecting the cookie. This allows an unauthenticated attacker to supply a crafted session cookie that is accepted ...

9.8CVSS5.9AI score0.0027EPSS
Exploits1References4Affected Software1
Github Security Blog
Github Security Blog
added 2026/04/08 12:14 a.m.9 views

Drizzle ORM has SQL injection via improperly escaped SQL identifiers

Summary Drizzle ORM improperly escaped quoted SQL identifiers in its dialect-specific escapeName implementations. In affected versions, embedded identifier delimiters were not escaped before the identifier was wrapped in quotes or backticks. As a result, applications that pass attacker-controlled...

7.5CVSS5.8AI score0.00392EPSS
Exploits0References3Affected Software1
Github Security Blog
Github Security Blog
added 2026/04/08 12:14 a.m.5 views

Parse Server's Endpoint `/sessions/me` bypasses `_Session` `protectedFields`

Impact The GET /sessions/me endpoint returns Session fields that the server operator explicitly configured as protected via the protectedFields server option. Any authenticated user can retrieve their own session's protected fields with a single request. The equivalent GET /sessions and GET...

5.3CVSS5.9AI score0.00193EPSS
Exploits0References5Affected Software1
Github Security Blog
Github Security Blog
added 2026/04/08 12:12 a.m.7 views

Emissary has a Path Traversal via Blacklist Bypass in Configuration API

Summary The configuration API endpoint /api/configuration/name validated configuration names using a blacklist approach that checked for , /, .., and trailing .. This could potentially be bypassed using URL-encoded variants, double-encoding, or Unicode normalization to achieve path traversal and...

5.3CVSS6AI score0.0032EPSS
Exploits1References4Affected Software1
Github Security Blog
Github Security Blog
added 2026/04/08 12:12 a.m.8 views

Emissary has a Command Injection via PLACE_NAME Configuration in Executrix

Summary The Executrix utility class constructed shell commands by concatenating configuration-derived values — including the PLACENAME parameter — with insufficient sanitization. Only spaces were replaced with underscores, allowing shell metacharacters ;, |, $, , , , etc. to pass through into...

7.2CVSS6.1AI score0.00563EPSS
Exploits1References4Affected Software1
Github Security Blog
Github Security Blog
added 2026/04/08 12:12 a.m.4 views

Emissary has GitHub Actions Shell Injection via Workflow Inputs

Summary Three GitHub Actions workflow files contained 10 shell injection points where user-controlled workflowdispatch inputs were interpolated directly into shell commands via $ expression syntax. An attacker with repository write access could inject arbitrary shell commands, leading to reposito...

9.1CVSS6.5AI score0.00566EPSS
Exploits1References5Affected Software1
Github Security Blog
Github Security Blog
added 2026/04/08 12:12 a.m.11 views

FastFeedParser has an infinite redirect loop DoS via meta-refresh chain

Summary When parse fetches a URL that returns an HTML page containing a tag, it recursively calls itself with the redirect URL — with no depth limit, no visited-URL deduplication, and no redirect count cap. An attacker-controlled server that returns an infinite chain of HTML meta-refresh response...

7.5CVSS5.9AI score0.00328EPSS
Exploits1References4Affected Software1
Github Security Blog
Github Security Blog
added 2026/04/08 12:12 a.m.7 views

RedwoodSDK has a CSRF vulnerability in server function dispatch via GET requests

Summary Server functions exported from "use server" files could be invoked via GET requests, bypassing their intended HTTP method. In cookie-authenticated applications, this allowed cross-site GET navigations to trigger state-changing functions, because browsers send SameSite=Lax cookies on...

8.1CVSS6AI score0.0021EPSS
Exploits0References3Affected Software1
Github Security Blog
Github Security Blog
added 2026/04/08 12:8 a.m.7 views

WWBN AVideo has an Allowlisted downloadURL media extensions bypass SSRF protection and enable internal response exfiltration (Incomplete fix for CVE-2026-27732)

Summary The fix for CVE-2026-27732 is incomplete. objects/aVideoEncoder.json.php still allows attacker-controlled downloadURL values with common media or archive extensions such as .mp4, .mp3, .zip, .jpg, .png, .gif, and .webm to bypass SSRF validation. The server then fetches the response and...

8.6CVSS6.2AI score0.00235EPSS
Exploits0References3Affected Software1
Github Security Blog
Github Security Blog
added 2026/04/08 12:8 a.m.7 views

WWBN AVideo's GIF poster fetch bypasses traversal scrubbing and exposes local files through public media URLs

Summary objects/aVideoEncoderReceiveImage.json.php allowed an authenticated uploader to fetch attacker-controlled same-origin /videos/... URLs, bypass traversal scrubbing, and expose server-local files through the GIF poster storage path. The vulnerable GIF branch could be abused to read local...

7.6CVSS5.9AI score0.00412EPSS
Exploits0References4Affected Software1
Github Security Blog
Github Security Blog
added 2026/04/08 12:8 a.m.6 views

WWBN AVideo has a Live restream log callback flow enabling stored SSRF to internal services

Summary The Live restream log callback flow accepted an attacker-controlled restreamerURL and later fetched that stored URL server-side, enabling stored SSRF for authenticated streamers. The vulnerable flow allowed a low-privilege user with streaming permission to store an arbitrary callback URL...

6.5CVSS6AI score0.0021EPSS
Exploits0References3Affected Software1
Github Security Blog
Github Security Blog
added 2026/04/08 12:8 a.m.7 views

WWBN AVideo has Stored XSS via Malicious EPG XML Program Titles in AVideo EPG Page

Summary AVideo's EPG Electronic Program Guide feature parses XML from user-controlled URLs and renders programme titles directly into HTML without any sanitization or escaping. A user with upload permission can set a video's epglink to a malicious XML file whose elements contain JavaScript. This...

5.4CVSS5.9AI score0.00195EPSS
Exploits0References4Affected Software1
Github Security Blog
Github Security Blog
added 2026/04/08 12:8 a.m.8 views

WWBN AVideo Affected by a PayPal IPN Replay Attack Enabling Wallet Balance Inflation via Missing Transaction Deduplication in ipn.php

Summary The PayPal IPN v1 handler at plugin/PayPalYPT/ipn.php lacks transaction deduplication, allowing an attacker to replay a single legitimate IPN notification to repeatedly inflate their wallet balance and renew subscriptions. The newer ipnV2.php and webhook.php handlers correctly deduplicate...

6.5CVSS6.1AI score0.0017EPSS
Exploits0References4Affected Software1
Github Security Blog
Github Security Blog
added 2026/04/08 12:7 a.m.9 views

kube-router: BGP Peer Passwords Exposed in Logs at Verbose Logging Level

Summary When kube-router is configured with per-node BGP peer passwords using the kube-router.io/peer.passwords node annotation, and verbose logging is enabled --v=2 or higher, the raw Kubernetes node annotation map is logged verbatim — including the base64-encoded BGP MD5 passwords. Anyone with...

5.9AI score
Exploits0References2Affected Software1
Github Security Blog
Github Security Blog
added 2026/04/08 12:7 a.m.14 views

skilleton has improper input handling in repository/path processing

Summary skilleton versions prior to 0.3.1 include security-related weaknesses in repository normalization and path handling logic. Version 0.3.1 contains fixes and additional test coverage for these issues. Affected Versions =0.3.1 Impact In affected versions, crafted input could trigger unsafe o...

5.9AI score
Exploits0References4Affected Software1
Github Security Blog
Github Security Blog
added 2026/04/08 12:7 a.m.6 views

Parse Server has a login timing side-channel reveals user existence

Impact The login endpoint response time differs measurably depending on whether the submitted username or email exists in the database. When a user is not found, the server responds immediately. When a user exists but the password is wrong, a bcrypt comparison runs first, adding significant...

6.3CVSS5.9AI score0.0023EPSS
Exploits0References5Affected Software1
Github Security Blog
Github Security Blog
added 2026/04/08 12:6 a.m.9 views

justhtml: Mutation XSS with custom foreign-namespace sanitization policies

Summary A parser-differential / mutation XSS issue was found in justhtml when using a custom sanitization policy that preserves foreign namespaces such as SVG or MathML. Under these custom settings, specially crafted input could sanitize into HTML that looked safe at first, but became unsafe when...

5.8AI score
Exploits0References4Affected Software1
Github Security Blog
Github Security Blog
added 2026/04/08 12:6 a.m.7 views

coursevault-preview has a path traversal due to improper base-directory boundary validation

Summary coursevault-preview versions prior to 0.1.1 contain a path traversal vulnerability in the resolveSafe utility. The boundary check used String.prototype.startsWithbaseDir on a normalized path, which does not enforce a directory boundary. An attacker who controls the relativePath argument t...

5.1CVSS6AI score0.00141EPSS
Exploits1References3Affected Software1
Github Security Blog
Github Security Blog
added 2026/04/08 12:5 a.m.8 views

Addressable has a Regular Expression Denial of Service in Addressable templates

Impact Within the URI template implementation in Addressable, two classes of URI template generate regular expressions vulnerable to catastrophic backtracking: 1. Templates using the explode modifier with any expansion operator e.g., foo, +var, var, /var, .var, ;var, ?var, &var generate patterns...

7.5CVSS5.8AI score0.0036EPSS
Exploits0References4Affected Software1
Github Security Blog
Github Security Blog
added 2026/04/08 12:5 a.m.8 views

File Browser: Proxy auth auto-provisioned users inherit Execute permission and Commands

Summary The fix in commit b6a4fb1 "self-registered users don't get execute perms" stripped Execute permission and Commands from users created via the signup handler. The same fix was not applied to the proxy auth handler. Users auto-created on first successful proxy-auth login are granted executi...

8.8CVSS6.1AI score0.00383EPSS
Exploits1References4Affected Software1
Github Security Blog
Github Security Blog
added 2026/04/08 12:5 a.m.7 views

File Browser discloses text file content via /api/resources endpoint bypassing Perm.Download check

Summary The resourceGetHandler in http/resource.go returns full text file content without checking the Perm.Download permission flag. All three other content-serving endpoints /api/raw, /api/preview, /api/subtitle correctly verify this permission before serving content. A user with download: fals...

7.5CVSS5.9AI score0.00274EPSS
Exploits1References3Affected Software1
Github Security Blog
Github Security Blog
added 2026/04/08 12:4 a.m.11 views

File Browser share links remain accessible after Share/Download permissions are revoked

When an admin revokes a user's Share and Download permissions, existing share links created by that user remain fully accessible to unauthenticated users. The public share download handler does not re-check the share owner's current permissions. Verified with a running PoC against v2.62.2 commit...

8.2CVSS5.9AI score0.00332EPSS
Exploits1References4Affected Software1
Github Security Blog
Github Security Blog
added 2026/04/08 12:4 a.m.7 views

File Browser has an access rule bypass via HasPrefix without trailing separator in path matching

Hi, The Matches function in rules/rules.go uses strings.HasPrefix without a trailing directory separator when matching paths against access rules. A rule for /uploads also matches /uploadsbackup/, granting or denying access to unintended directories. Verified against v2.62.2 commit 860c19d. Detai...

7.5CVSS5.9AI score0.00392EPSS
Exploits1References4Affected Software1
Github Security Blog
Github Security Blog
added 2026/04/08 12:4 a.m.17 views

pyload-ng: Incomplete Tar Path Traversal Fix in UnTar._safe_extractall via os.path.commonprefix Bypass

Summary The safeextractall function in src/pyload/plugins/extractors/UnTar.py uses os.path.commonprefix for its path traversal check, which performs character-level string comparison rather than path-level comparison. This allows a specially crafted tar archive to write files outside the intended...

9.8CVSS6.9AI score0.27095EPSS
Exploits4References4Affected Software1
Github Security Blog
Github Security Blog
added 2026/04/08 12:4 a.m.4 views

pyload-ng: Authorization Bypass for SSL Certificate/Key Configuration Due to Option Name Mismatch in pyload-ng

Summary The ADMINONLYCOREOPTIONS authorization set in setconfigvalue uses incorrect option names sslcert and sslkey, while the actual configuration option names are sslcertfile and sslkeyfile. This name mismatch causes the admin-only check to always evaluate to False, allowing any user with...

6.8CVSS6AI score0.00142EPSS
Exploits1References4Affected Software1
Github Security Blog
Github Security Blog
added 2026/04/08 12:4 a.m.7 views

File Browser has a Command Injection via Hook Runner

!NOTE This feature has been disabled by default for all installations from v2.33.8 onwards, including for existent installations. To exploit this vulnerability, the instance administrator must turn on a feature and ignore all the warnings about known vulnerabilities. We're publishing this new...

7.5CVSS6AI score0.01922EPSS
Exploits2References4Affected Software1
Github Security Blog
Github Security Blog
added 2026/04/08 12:4 a.m.20 views

LiteLLM: Password hash exposure and pass-the-hash authentication bypass

Impact Three issues combine into a full authentication bypass chain: 1. Weak hashing: User passwords are stored as unsalted SHA-256 hashes, making them vulnerable to rainbow table attacks and trivially identifying users with identical passwords. 2. Hash exposure: Multiple API endpoints /user/info...

5.9AI score
Exploits0References2Affected Software1
Github Security Blog
Github Security Blog
added 2026/04/07 9:32 p.m.7 views

PowerJob's GroovyEvaluator.evaluate endpoint vulnerable to code injection

A security flaw has been discovered in PowerJob 5.1.0/5.1.1/5.1.2. The affected element is the function GroovyEvaluator.evaluate of the file /openApi/addWorkflowNode of the component OpenAPI Endpoint. The manipulation of the argument nodeParams results in code injection. The attack can be execute...

7.5CVSS5.7AI score0.00388EPSS
Exploits0References7Affected Software1
Github Security Blog
Github Security Blog
added 2026/04/07 9:32 p.m.12 views

GenieACS has an unauthenticated access vulnerability via the NBI API endpoint

In GenieACS 1.2.13, an unauthenticated access vulnerability exists in the NBI API endpoint...

7.5CVSS5.8AI score0.00438EPSS
Exploits2References3Affected Software1
Github Security Blog
Github Security Blog
added 2026/04/07 9:32 p.m.12 views

PowerJob vulnerable to SQL injection

A vulnerability was identified in PowerJob 5.1.0/5.1.1/5.1.2. Impacted is an unknown function of the file powerjob-server/powerjob-server-starter/src/main/java/tech/powerjob/server/web/controller/InstanceController.java of the component detailPlus Endpoint. The manipulation of the argument...

7.5CVSS5.8AI score0.00269EPSS
Exploits0References7Affected Software1
Github Security Blog
Github Security Blog
added 2026/04/07 8:17 p.m.13 views

MONAI: Unsafe functions lead to pickle deserialization rce

Summary The algofrompickle function in monai/auto3dseg/utils.py causes pickle.loadsdatabytes to be executed, and it does not perform any validation on the input parameters. This ultimately leads to insecure deserialization and can result in code execution vulnerabilities. Details poc import pickl...

6.3AI score
Exploits0References3Affected Software1
Github Security Blog
Github Security Blog
added 2026/04/07 8:17 p.m.6 views

Emissary has Stored XSS via Navigation Template Link Injection

Summary Mustache navigation templates interpolated configuration-controlled link values directly into href attributes without URL scheme validation. An administrator who could modify the navItems configuration could inject javascript: URIs, enabling stored cross-site scripting XSS against other...

4.8CVSS5.9AI score0.00176EPSS
Exploits1References5Affected Software1
Github Security Blog
Github Security Blog
added 2026/04/07 8:13 p.m.8 views

Java-SDK has a DNS Rebinding Vulnerability

Summary The java-sdk contains a DNS rebinding vulnerability. This vulnerability allows an attacker to access a locally or network-private java-sdk MCP server via a victims browser that is either local, or network adjacent. This allows an attacker to make any tool call to the server as if they wer...

7.6CVSS5.9AI score0.00136EPSS
Exploits0References4Affected Software1
Github Security Blog
Github Security Blog
added 2026/04/07 8:13 p.m.8 views

Local settings bypass config trust checks

Summary mise loads trust-control settings from a local project .mise.toml before the trust check runs. An attacker who can place a malicious .mise.toml in a repository can make that same file appear trusted and then reach dangerous directives such as env .source, templates, hooks, or tasks. The...

7.8CVSS6AI score0.00154EPSS
Exploits1References3Affected Software1
Total number of security vulnerabilities33187