Lucene search
+L
PtsecurityRecent

187258 matches found

ptsecurity
ptsecurity
added 2026/06/18 12:0 a.m.21 views

PT-2026-50632

Nur-Alam39 bus-ticket no released versions; latest commit 459cabdbeb99c00225b26e46e3c2c30ae1de7bad contains an unauthenticated SQL injection vulnerability in bus info.php. The busid parameter received via HTTP POST is concatenated directly into a MySQL query select from bus info where id=$busid...

9.8CVSS5.8AI score0.00366EPSS
Exploits0References2
ptsecurity
ptsecurity
added 2026/06/18 12:0 a.m.16 views

PT-2026-50738

Name of the Vulnerable Software and Affected Versions ZITADEL versions 4.0.0 through 4.11.0 ZITADEL versions 3.0.0 through 3.4.11 Description An authentication bypass exists in the external JWT Identity Provider IdP implementation. While the system validates the cryptographic signature and the...

4.2CVSS5.9AI score0.00112EPSS
Exploits0References8
ptsecurity
ptsecurity
added 2026/06/18 12:0 a.m.21 views

PT-2026-50774

Name of the Vulnerable Software and Affected Versions AzeoTech DAQFactory versions prior to 21.2 Description A Type Confusion issue exists where an attacker can use specially crafted .ctl files to achieve arbitrary code execution. Type Confusion occurs when a program accesses a resource using a...

8.4CVSS6.1AI score0.00148EPSS
Exploits0References8
ptsecurity
ptsecurity
added 2026/06/18 12:0 a.m.18 views

PT-2026-50620

Name of the Vulnerable Software and Affected Versions Event Koi Lite – Events Calendar, Event Management, RSVP, and Tickets plugin for WordPress versions prior to 1.3.13.2 Description Sensitive information exposure occurs via the get events function. This allows unauthenticated attackers to extra...

5.3CVSS5.9AI score0.0031EPSS
Exploits0References14
ptsecurity
ptsecurity
added 2026/06/18 12:0 a.m.25 views

PT-2026-50659

Name of the Vulnerable Software and Affected Versions googleapis/mcp-toolbox affected versions not specified Description An authentication bypass exists in the generic opaque token validation path validateOpaqueToken. When verifying an unparsed opaque token via an OAuth 2.0 introspection endpoint...

9.3CVSS5.8AI score0.00195EPSS
Exploits0References9
ptsecurity
ptsecurity
added 2026/06/18 12:0 a.m.16 views

PT-2026-56003

Name of the Vulnerable Software and Affected Versions Crawl4AI versions prior to 0.9.0 Description The Docker API server allows the browser config.extra args parameter to be passed directly into Chromium launch arguments. Because the Docker API is unauthenticated by default, an attacker can injec...

10CVSS6.1AI score0.00523EPSS
Exploits0References10
ptsecurity
ptsecurity
added 2026/06/18 12:0 a.m.19 views

PT-2026-50666

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Bricksable for Bricks Builder allows Stored XSS. This issue affects Bricksable for Bricks Builder: from n/a through 1.6.83...

5.9CVSS5.2AI score0.0014EPSS
Exploits0References1
ptsecurity
ptsecurity
added 2026/06/18 12:0 a.m.15 views

PT-2026-50822

Name of the Vulnerable Software and Affected Versions Apollo Pharmacy Blood Glucose Monitoring System APG-01 BT affected versions not specified Description An attacker within Bluetooth Low Energy BLE communication range can monopolize the only available BLE connection slot of the device. This...

7.1CVSS5.9AI score0.00222EPSS
Exploits0References10
ptsecurity
ptsecurity
added 2026/06/18 12:0 a.m.14 views

PT-2026-50721

Name of the Vulnerable Software and Affected Versions Kirby versions prior to 4.9.4 Kirby versions prior to 5.4.4 Description Kirby sites using the writer field in any blueprint are susceptible to cross-site scripting XSS. The link and email marks within the writer components fail to prevent the...

7.4CVSS5.9AI score0.00289EPSS
Exploits0References6
ptsecurity
ptsecurity
added 2026/06/18 12:0 a.m.18 views

PT-2026-50824

Name of the Vulnerable Software and Affected Versions Daytona versions prior to 0.186 Description A sandbox volume reference volumeId which may also be a volume name was forwarded to the runner and used to build the host bind-mount source path without confinement. A reference containing...

4.2CVSS5.8AI score0.00171EPSS
Exploits0References5
ptsecurity
ptsecurity
added 2026/06/18 12:0 a.m.13 views

PT-2026-50815

Name of the Vulnerable Software and Affected Versions pgAdmin 4 versions 6.0 through 9.15 Description An open redirect exists in the multi-factor authentication MFA flow. The MFA validate and register endpoints, specifically '/mfa/validate', process the user-supplied next query or form parameter...

5.3CVSS5.8AI score0.00218EPSS
Exploits0References6
ptsecurity
ptsecurity
added 2026/06/18 12:0 a.m.12 views

PT-2026-50856

These are all security issues fixed in the containerized-data-importer-1.65-api-1.65.0-1.1 package on the GA media of openSUSE Tumbleweed...

8.3CVSS6.6AI score0.01279EPSS
Exploits0References2
ptsecurity
ptsecurity
added 2026/06/18 12:0 a.m.5 views

PT-2026-54003

Name of the Vulnerable Software and Affected Versions pypdf versions prior to 6.13.3 Description A flaw in the library allows a maliciously crafted PDF to cause a Denial of Service DoS. This occurs when the system parses a content stream that lacks a /Length value, causing the MAX DECLARED STREAM...

6.9CVSS6AI score0.00206EPSS
Exploits0References10
ptsecurity
ptsecurity
added 2026/06/18 12:0 a.m.22 views

PT-2026-50619

Name of the Vulnerable Software and Affected Versions cifs-utils affected versions not specified Description A flaw exists in the cifs.upcall helper that fails to securely drop root privileges before performing user information lookups within a user-controlled environment. A local, low-privileged...

7.8CVSS6.1AI score0.00121EPSS
Exploits0References29
ptsecurity
ptsecurity
added 2026/06/18 12:0 a.m.26 views

PT-2026-50678

I got six CVEs in a major npm package including 4 RCEs. CVE-2026-54662, CVE-2026-54661, CVE-2026-54666, CVE-2026-54664, CVE-2026-54660, CVE-2026-54663 Full writeup with every sink and payload here: https://t.co/Pgwn5lgb9y infosec cybersecurity rce...

5.2AI score
Exploits0References1
ptsecurity
ptsecurity
added 2026/06/18 12:0 a.m.13 views

PT-2026-50860

These are all security issues fixed in the python311-starlette-1.3.1-1.1 package on the GA media of openSUSE Tumbleweed...

5.9AI score0.00187EPSS
Exploits0References2
ptsecurity
ptsecurity
added 2026/06/18 12:0 a.m.20 views

PT-2026-50715

Name of the Vulnerable Software and Affected Versions Bitnami Cassandra container images versions 4.0.x prior to 4.0.20-photon-5-r7 Bitnami Cassandra container images versions 4.1.x prior to 4.1.11-photon-5-r7 Bitnami Cassandra container images versions 5.0.x prior to 5.0.8-photon-5-r4 /...

9.8CVSS6AI score0.00338EPSS
Exploits0References9
ptsecurity
ptsecurity
added 2026/06/18 12:0 a.m.16 views

PT-2026-56002

Name of the Vulnerable Software and Affected Versions Crawl4AI versions prior to 0.9.0 Description An issue exists when the crawler saves downloaded files, as the destination filename is derived from attacker-influenced input and joined to the downloads directory without proper confinement. This...

9.6CVSS6.5AI score0.00502EPSS
Exploits1References9
ptsecurity
ptsecurity
added 2026/06/18 12:0 a.m.19 views

PT-2026-50645

Cotonti 1.0.0 master branch, commit f43f1fc3 is vulnerable to Cross-Site Request Forgery in the Personal File Storage PFS module. In modules/pfs/inc/pfs.editfolder.php, the folder update action 'a=update' updates folder metadata title, description, public/gallery flags without calling cot check x...

5.4CVSS5.3AI score0.00116EPSS
Exploits0References2
ptsecurity
ptsecurity
added 2026/06/18 12:0 a.m.8 views

PT-2026-53148

Jobs webhook SSRF protection bypass via DNS rebinding Summary PraisonAI's Async Jobs API validates webhook url when a job request is parsed and again when the internal Job object is constructed. That validation blocks direct loopback/private targets, but it is not bound to the later network...

7.2CVSS5.8AI score
Exploits0References3
ptsecurity
ptsecurity
added 2026/06/18 12:0 a.m.7 views

PT-2026-53183

Summary A low-privileged authenticated AgenticMail agent can enumerate another agent's pending/claimed tasks by supplying the target agent name to GET /api/agenticmail/tasks/pending?assignee=. The returned task objects include the task IDs and payloads. The same task IDs can then be used with the...

7.1CVSS6AI score
Exploits0References3
ptsecurity
ptsecurity
added 2026/06/18 12:0 a.m.9 views

PT-2026-53155

Root has patched GHSA-fw8g-cg8f-9j28 in the rootio-github.com/prometheus/prometheus package for Root:Go. Multiple fixed versions available...

5.8AI score
Exploits0References1
ptsecurity
ptsecurity
added 2026/06/18 12:0 a.m.6 views

PT-2026-53129

DiscordApproval accepts unrelated channel messages as dangerous-tool approvals Summary praisonai.bots.DiscordApproval approves a pending dangerous tool call when it sees any later non-bot message in the configured Discord channel whose text is classified as approval, such as yes. The decision is...

8.8CVSS5.9AI score
Exploits0References3
ptsecurity
ptsecurity
added 2026/06/18 12:0 a.m.8 views

PT-2026-53127

SpiderTools redirect-target SSRF protection bypass Summary SpiderTools.scrape page validates the initial URL and rejects direct loopback, private, link-local, metadata, and internal hostnames. It then calls requests.Session.get without disabling automatic redirects or validating redirect Location...

6.5CVSS6.4AI score
Exploits0References3
ptsecurity
ptsecurity
added 2026/06/18 12:0 a.m.11 views

PT-2026-51423

Уязвимость программного обеспечения выявления уязвимостей и ошибок PT Application Inspector связана с отсутствием авторизации. Эксплуатация уязвимости может позволить нарушителю, действующему удалённо, повысить свои привилегии...

5.6CVSS5.8AI score
Exploits0References2
ptsecurity
ptsecurity
added 2026/06/18 12:0 a.m.6 views

PT-2026-53131

Summary The published npm package praisonai ships a TypeScript AgentOS HTTP server that defaults to host: "0.0.0.0" and registers sensitive agent routes without any authentication or authorization middleware. When a developer starts AgentOS, a network attacker who can reach the service can: - rea...

9.4CVSS6.5AI score
Exploits0References3
ptsecurity
ptsecurity
added 2026/06/18 12:0 a.m.7 views

PT-2026-53160

This update for rootlesskit rebuilds it against the current go security release...

5.8AI score
Exploits0References2
ptsecurity
ptsecurity
added 2026/06/18 12:0 a.m.5 views

PT-2026-53116

PraisonAI Dynamic Context history and terminal tools read files outside configured storage via path traversal Summary PraisonAI's Dynamic Context module provides filesystem-backed history and terminal-log storage. The SDK reference describes the module as providing: - artifact storage for tool...

7.5CVSS5.7AI score
Exploits0References3
ptsecurity
ptsecurity
added 2026/06/18 12:0 a.m.7 views

PT-2026-53126

HTTPApproval dashboard renders tool arguments as raw HTML, allowing approval-page XSS to approve dangerous tools Summary praisonai.bots.HTTPApproval renders pending tool approval arguments directly into the approval dashboard HTML. An attacker-controlled tool argument can inject JavaScript into...

8.8CVSS5.8AI score
Exploits0References3
ptsecurity
ptsecurity
added 2026/06/18 12:0 a.m.9 views

PT-2026-53186

Summary This advisory covers three distinct SQL Injection vulnerabilities within Budibase's database connectors PostgreSQL, Microsoft SQL Server, and MySQL. Because user-controlled schema and table configurations are interpolated directly into raw SQL queries without proper escaping or...

8.4CVSS6.3AI score
Exploits0References3
ptsecurity
ptsecurity
added 2026/06/18 12:0 a.m.7 views

PT-2026-53188

Summary The Docker API server applied its SSRF destination check validate url destination on the non-streaming /crawl path but not on the streaming path. handle stream crawl request passed seed URLs straight to the crawler with no destination validation. A remote, unauthenticated client could cal...

8.6CVSS5.8AI score
Exploits0References3
ptsecurity
ptsecurity
added 2026/06/18 12:0 a.m.5 views

PT-2026-53138

Summary The published npm package praisonai exports a TypeScript SandboxExecutor with a network-isolated mode. The CLI lists that mode as: text network-isolated No network access proxy blocked The implementation does not create a network namespace, firewall rule, socket filter, or proxy-enforced...

7.6CVSS6AI score
Exploits0References3
ptsecurity
ptsecurity
added 2026/06/18 12:0 a.m.7 views

PT-2026-53137

PraisonAI Code agent tools fail open without a workspace boundary Summary PraisonAI Code's agent-compatible CODE TOOLS wrappers keep a global workspace root initialized to None. If an application uses CODE TOOLS, code read file, code search replace, or code apply diff before calling set workspace...

7.3CVSS6AI score
Exploits0References3
ptsecurity
ptsecurity
added 2026/06/18 12:0 a.m.8 views

PT-2026-53182

@acastellon/auth v2.2.0 appears to allow an unauthenticated authentication bypass in validateToken through spoofable auth-user and Host request headers. The validateToken middleware contains a service-to-service bypass for auth-user: service-brother when req.get'host'.startsWithgetHostName. Both...

9.3CVSS5.8AI score
Exploits0References5
ptsecurity
ptsecurity
added 2026/06/18 12:0 a.m.10 views

PT-2026-53141

On case-insensitive filesystems macOS, Windows, PathFilter compiled its deny-list patterns case-sensitively and matched the path verbatim, so names like .Git/config, .GIT/config, or .oBsIdIaN/secrets.md slipped past the .git/.obsidian/node modules restriction while the OS opened the real file. On...

6.9CVSS5.8AI score
Exploits0References3
ptsecurity
ptsecurity
added 2026/06/18 12:0 a.m.6 views

PT-2026-53153

PraisonAI AgentTeam.launch exposes unauthenticated remote agent invocation endpoints Summary PraisonAI's documented Python AgentTeam.launch / Agents.launch HTTP server starts externally reachable agent invocation endpoints without any authentication enforcement. The current implementation registe...

9.8CVSS6AI score
Exploits0References3
ptsecurity
ptsecurity
added 2026/06/18 12:0 a.m.9 views

PT-2026-53161

This update for rootlesskit rebuilds it against the current go security release...

5.8AI score
Exploits0References2
ptsecurity
ptsecurity
added 2026/06/18 12:0 a.m.10 views

PT-2026-53149

PraisonAI recipe.run stream skips dangerous-tool policy enforcement Summary PraisonAI recipe execution blocks default-denied dangerous tools unless the caller explicitly passes allow dangerous tools=True. The normal recipe.run path enforces this with check tool policy. The streaming path,...

7.8CVSS6.1AI score
Exploits0References3
ptsecurity
ptsecurity
added 2026/06/18 12:0 a.m.9 views

PT-2026-53147

Summary A workspace member can permanently delete any resource — projects, agents, issues, labels, issue dependencies, and issue-label attachments — created by the workspace owner or other members. All six content DELETE endpoints enforce workspace membership but perform no ownership or role chec...

8.1CVSS5.8AI score
Exploits0References3
ptsecurity
ptsecurity
added 2026/06/18 12:0 a.m.8 views

PT-2026-53181

Summary The digits parameter parsed from a provisioning URI is validated only with a lower bound $value 0 and has no upper bound src/OTP.php:353-357. OTP generation computes $code % 10 $this-getDigits src/OTP.php:283. When digits is large enough that 10 digits overflows PHP's integer range and th...

8.7CVSS5.8AI score
Exploits0References4
ptsecurity
ptsecurity
added 2026/06/18 12:0 a.m.6 views

PT-2026-53124

Summary The published npm package praisonai ships dist/tools/utility-tools.js, which exports a shellcommand helper described in source as: text Execute shell command safe version - read-only commands The helper attempts to enforce a safe read-only command allowlist by checking only the first...

8.8CVSS6.1AI score
Exploits0References3
ptsecurity
ptsecurity
added 2026/06/18 12:0 a.m.27 views

PT-2026-50628

The Form Maker by 10Web – Mobile-Friendly Drag & Drop Contact Form Builder plugin for WordPress is vulnerable to generic SQL Injection via the 'name' parameter in all versions up to, and including, 1.15.43 due to insufficient escaping on the user supplied parameter and lack of sufficient...

4.9CVSS5.8AI score0.00355EPSS
Exploits0References10
ptsecurity
ptsecurity
added 2026/06/18 12:0 a.m.17 views

PT-2026-50633

The Equalize Digital Accessibility Checker – WCAG, ADA, EAA and Section 508 compliance plugin for WordPress is vulnerable to authorization bypass in all versions up to, and including, 1.42.1. This is due to the plugin not properly verifying that a user is authorized to perform an action. This mak...

4.3CVSS5.3AI score0.00245EPSS
Exploits0References8
ptsecurity
ptsecurity
added 2026/06/18 12:0 a.m.16 views

PT-2026-50638

The Appointment Booking Calendar plugin for WordPress is vulnerable to Sensitive Information Exposure in versions up to, and including, 1.4.01. This is due to insufficient authorization and missing per-calendar ownership checks in the cpabc appointments calendar load2 function, which is reachable...

4.3CVSS5.4AI score0.00285EPSS
Exploits0References10
ptsecurity
ptsecurity
added 2026/06/18 12:0 a.m.16 views

PT-2026-50729

Component: tract-nnef nnef/src/tensors.rs::read tensor + tract-data data/src/tensor.rs - Affected versions: 0.21.16, 0.22.0–0.22.2, 0.23.0–0.23.1 — the dense DatLoader path was unguarded across all three release lines; patched in 0.21.16 / 0.22.2 / 0.23.1 - Class: CWE-190 integer overflow →...

6.1CVSS5.8AI score
Exploits0References3
ptsecurity
ptsecurity
added 2026/06/18 12:0 a.m.18 views

PT-2026-50821

Name of the Vulnerable Software and Affected Versions Apollo Pharmacy Blood Glucose Monitoring System APG-01 affected versions not specified Description An attacker within Bluetooth Low Energy BLE communication range can passively intercept wireless traffic to obtain sensitive health-related...

7.1CVSS5.9AI score0.00145EPSS
Exploits0References10
ptsecurity
ptsecurity
added 2026/06/18 12:0 a.m.22 views

PT-2026-50646

Cotonti 1.0.0 master branch, commit f43f1fc3 is vulnerable to stored Cross-Site Scripting in the Personal File Storage PFS module. A folder title pff title is imported with the 'TXT' filter, which does not strip or encode HTML the tag check in cot import is disabled, so an authenticated user can...

7.6CVSS5.2AI score0.00171EPSS
Exploits0References2
ptsecurity
ptsecurity
added 2026/06/18 12:0 a.m.23 views

PT-2026-50657

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in OceanWP Ocean Product Sharing allows Stored XSS. This issue affects Ocean Product Sharing: from n/a through 2.2.2...

5.9CVSS5.2AI score0.00143EPSS
Exploits0References1
ptsecurity
ptsecurity
added 2026/06/18 12:0 a.m.20 views

PT-2026-50799

Name of the Vulnerable Software and Affected Versions Cost Management Interactive Experiences affected versions not specified Description Exposure of sensitive information in Cost Management Interactive Experiences allows an unauthorized attacker to disclose information over a network...

7.5CVSS5.8AI score0.0057EPSS
Exploits0References6
ptsecurity
ptsecurity
added 2026/06/18 12:0 a.m.17 views

PT-2026-50622

The Tutor LMS – eLearning and online course solution plugin for WordPress is vulnerable to generic SQL Injection via the 'data' parameter in all versions up to, and including, 3.9.11 due to insufficient escaping on the user supplied parameter and lack of sufficient preparation on the existing SQL...

4.9CVSS5.8AI score0.00363EPSS
Exploits0References10
Total number of security vulnerabilities187258