Lucene search
K
PtsecurityRecent

184452 matches found

Positive Technologies
Positive Technologies
•added 2026/06/30 12:0 a.m.•9 views

PT-2026-54258

Name of the Vulnerable Software and Affected Versions Google Chrome versions prior to 150.0.7871.47 Description Incorrect security UI in the Passwords component allows a remote attacker who has compromised the renderer process to perform UI spoofing using a crafted HTML page. UI spoofing is a...

9.6CVSS6AI score0.00413EPSS
Exploits0References439
Positive Technologies
Positive Technologies
•added 2026/06/30 12:0 a.m.•9 views

PT-2026-53826

Nokia MantaRay NM is subject to an unrestricted file upload vulnerability due to insufficient file type validation. Successful exploitation could allow an authenticated attacker to upload malicious files onto the system...

5.8AI score0.0015EPSS
Exploits0References2
Positive Technologies
Positive Technologies
•added 2026/06/30 12:0 a.m.•11 views

PT-2026-53880

Name of the Vulnerable Software and Affected Versions NetScaler ADC affected versions not specified NetScaler Gateway affected versions not specified Description A memory overflow issue exists when the appliance is configured as an AAA virtual server or a Gateway including SSL VPN, ICA Proxy, CVP...

9.8CVSS6.2AI score0.00486EPSS
Exploits0References13
Positive Technologies
Positive Technologies
•added 2026/06/30 12:0 a.m.•8 views

PT-2026-53995

Presenton before 0.8.8-beta bundles an MCP server that, on server/Docker deployments configured with session authentication AUTH USERNAME/AUTH PASSWORD, is reachable unauthenticated at /mcp because the nginx front-end does not apply the auth request gate to that path and the MCP server auto-mints...

6.9CVSS5.8AI score0.00437EPSS
Exploits0References6
Positive Technologies
Positive Technologies
•added 2026/06/30 12:0 a.m.•5 views

PT-2026-53990

Name of the Vulnerable Software and Affected Versions IBM WebSphere Application Server version 9.0 IBM WebSphere Application Server version 8.5 IBM WebSphere Application Server - Liberty versions 17.0.0.3 through 26.0.0.6 Description An HTTP request smuggling issue exists, which occurs when there...

9.8CVSS6AI score0.00418EPSS
Exploits0References8
Positive Technologies
Positive Technologies
•added 2026/06/30 12:0 a.m.•9 views

PT-2026-55182

These are all security issues fixed in the radvd-2.21-1.1 package on the GA media of openSUSE Tumbleweed...

8.8CVSS5.8AI score0.00203EPSS
Exploits0References2
Positive Technologies
Positive Technologies
•added 2026/06/30 12:0 a.m.•6 views

PT-2026-55075

Ghost is a Node.js content management system. From 5.46.1 until 6.21.2, the validation applied to filters on the public API endpoints could be partially bypassed, making it possible to reveal private fields via a brute force attack. If SQLite was used as the database password hashes were fully...

5.3CVSS5.8AI score0.00214EPSS
Exploits0References3
Positive Technologies
Positive Technologies
•added 2026/06/30 12:0 a.m.•11 views

PT-2026-54016

Buffer Overflow vulnerability in UTT nv518G nv518GV3v3.2.7-210919-161313 allows a remote attacker to cause a denial of service via the gohead/sub 472f08 component...

5.8AI score0.00452EPSS
Exploits0References2
Positive Technologies
Positive Technologies
•added 2026/06/30 12:0 a.m.•5 views

PT-2026-55187

Part of the "Hades" wave of the Shai-Hulud supply-chain campaign. On 2026-06-08, malicious phantom releases of executor-http were published to PyPI using stolen credentials. The package executes a bundled JavaScript payload via the Bun runtime on import that harvests and exfiltrates credentials a...

5.8AI score
Exploits0References4
Positive Technologies
Positive Technologies
•added 2026/06/30 12:0 a.m.•11 views

PT-2026-53823

The Fluent Booking WordPress plugin before 2.1.2 does not verify ownership of the requested group id before exporting attendee data via the export endpoint, allowing users with at least the Calendar Manager role to retrieve attendees' PII name, email, phone, address, payment information from...

5.8AI score0.00234EPSS
Exploits0References2
Positive Technologies
Positive Technologies
•added 2026/06/30 12:0 a.m.•5 views

PT-2026-55191

Part of the "Hades" wave of the Shai-Hulud supply-chain campaign. On 2026-06-08, malicious phantom releases of mrbios were published to PyPI using stolen credentials. The package executes a bundled JavaScript payload via the Bun runtime on import that harvests and exfiltrates credentials and...

5.8AI score
Exploits0References4
Positive Technologies
Positive Technologies
•added 2026/06/30 12:0 a.m.•7 views

PT-2026-53945

Name of the Vulnerable Software and Affected Versions IBM App Connect Enterprise versions 13.0.1.0 through 13.0.7.2 IBM App Connect Enterprise versions 12.0.1.0 through 12.0.12.26 IBM Integration Bus for z/OS versions 10.1.0.0 through 10.1.0.7 Description SQL injection allows a remote attacker to...

5.5CVSS6AI score0.00183EPSS
Exploits0References5
Positive Technologies
Positive Technologies
•added 2026/06/30 12:0 a.m.•7 views

PT-2026-53959

Name of the Vulnerable Software and Affected Versions IBM Langflow OSS versions 1.0.0 through 1.9.6 Description An authenticated attacker can perform a Server-Side Request Forgery SSRF, which occurs when a server is tricked into making requests to an unintended location. The issue exists because...

8.2CVSS6AI score0.00199EPSS
Exploits0References6
Positive Technologies
Positive Technologies
•added 2026/06/30 12:0 a.m.•13 views

PT-2026-53910

ColdFusion versions 2025.9, 2023.20 and earlier are affected by an Improper Input Validation vulnerability that could result in arbitrary code execution in the context of the current user. An attacker could exploit this vulnerability to inject malicious scripts into a web page, potentially gainin...

9.3CVSS6.4AI score0.00548EPSS
Exploits0References5
Positive Technologies
Positive Technologies
•added 2026/06/30 12:0 a.m.•10 views

PT-2026-53955

Name of the Vulnerable Software and Affected Versions IBM Langflow OSS versions 1.0.0 through 1.9.3 Description The API Request component contains a Server-Side Request Forgery SSRF protection bypass. An authenticated attacker with flow author privileges can bypass security controls by enabling t...

8.5CVSS5.9AI score0.00185EPSS
Exploits0References4
Positive Technologies
Positive Technologies
•added 2026/06/30 12:0 a.m.•10 views

PT-2026-53806

The Team Members – Multi Language Supported Team Plugin plugin for WordPress is vulnerable to Stored Cross-Site Scripting via admin settings in all versions up to, and including, 8.7 due to insufficient input sanitization and output escaping. This makes it possible for authenticated attackers, wi...

4.4CVSS5.9AI score0.00212EPSS
Exploits0References9
Positive Technologies
Positive Technologies
•added 2026/06/30 12:0 a.m.•7 views

PT-2026-53976

Name of the Vulnerable Software and Affected Versions IBM watsonx.data intelligence versions 5.2.0 through 5.3.0 Description An HTML injection flaw allows a remote attacker to inject malicious HTML code. When this code is viewed, it is executed in the victim's web browser within the security...

5.7CVSS6.1AI score0.00407EPSS
Exploits0References6
Positive Technologies
Positive Technologies
•added 2026/06/30 12:0 a.m.•11 views

PT-2026-53942

Name of the Vulnerable Software and Affected Versions IBM WebSphere Extreme Scale versions 8.6.1.0 through 8.6.1.6 Description Three ObjectInputStream subclasses WsObjectInputStream, ObjectStreamPool$ReusableInputStream, and ObjectInputStreamResolver do not install a JEP-290 class filter, which i...

8.8CVSS6.9AI score0.00303EPSS
Exploits0References5
Positive Technologies
Positive Technologies
•added 2026/06/30 12:0 a.m.•6 views

PT-2026-54442

Summary @cedar-policy/authorization-for-expressjs is an open-source Express.js middleware that integrates Cedar authorization into Express applications by mapping HTTP requests to Cedar actions and evaluating authorization policies before allowing requests to proceed. An issue exists where, under...

8.8CVSS5.9AI score
Exploits0References4
Positive Technologies
Positive Technologies
•added 2026/06/30 12:0 a.m.•7 views

PT-2026-55194

NLTK version 3.9.4 is vulnerable to a path traversal attack due to an incomplete fix for GitHub Issue 3504. The UNSAFE NO PROTOCOL RE regex in nltk/data.py checks for literal ../ sequences but fails to account for percent-encoded traversal sequences such as ..%2f. The url2pathname function decode...

7.5CVSS5.9AI score
Exploits0References2
Positive Technologies
Positive Technologies
•added 2026/06/30 12:0 a.m.•8 views

PT-2026-53809

Name of the Vulnerable Software and Affected Versions ProfileGrid – User Profiles, Groups and Communities versions prior to 5.9.9.6 Description An issue allows unauthenticated attackers to perform privilege escalation via account takeover. The flaw exists because the plugin fails to validate the...

9.8CVSS6AI score0.0031EPSS
Exploits0References10
Positive Technologies
Positive Technologies
•added 2026/06/30 12:0 a.m.•11 views

PT-2026-53814

The WP Support Plus Responsive Ticket System WordPress plugin through 9.1.2 does not properly validate uploaded files, allowing unauthenticated users to upload files containing malicious JavaScript such as HTML or SVG to a publicly accessible location, leading to Stored Cross-Site Scripting attac...

5.6AI score0.00276EPSS
Exploits0References2
Positive Technologies
Positive Technologies
•added 2026/06/30 12:0 a.m.•13 views

PT-2026-53815

The WP Support Plus Responsive Ticket System WordPress plugin through 9.1.2 does not sanitize user-supplied array keys before using them in a SQL statement, allowing unauthenticated users to perform SQL injection attacks...

5.8AI score0.00262EPSS
Exploits0References2
Positive Technologies
Positive Technologies
•added 2026/06/30 12:0 a.m.•8 views

PT-2026-53977

Name of the Vulnerable Software and Affected Versions IBM watsonx.data intelligence versions 5.2.0 through 5.3.0 Description An authenticated user can perform cross-site scripting XSS, which involves injecting malicious scripts into benign and trusted websites. This allows the attacker to embed...

5.4CVSS5.9AI score0.00231EPSS
Exploits0References6
Positive Technologies
Positive Technologies
•added 2026/06/30 12:0 a.m.•8 views

PT-2026-53888

KTM System e-BOK does not implement any limit or timeout on consecutive login attempts, allowing an attacker to perform unlimited authentication requests. This lack of rate‑limiting enables efficient brute‑force attacks against user accounts. When combined with vulnerability CVE-2026-35097, where...

6.9CVSS5.8AI score0.00323EPSS
Exploits0References3
Positive Technologies
Positive Technologies
•added 2026/06/30 12:0 a.m.•7 views

PT-2026-53860

A vulnerability was discovered in Keycloak's Admin UI extension that allows certain administrative users to bypass security restrictions. When Fine-Grained Admin Permissions FGAPv2 are enabled, an administrator who should only be able to search for users but not view their full details can use a...

4.3CVSS5.7AI score0.00173EPSS
Exploits0References2
Positive Technologies
Positive Technologies
•added 2026/06/30 12:0 a.m.•12 views

PT-2026-54441

Summary FolderSchemeHandlerFactory was intended to restrict served files to a configured rootFolder, but its path validation used a raw string prefix check. A request could escape to a sibling directory whose full path starts with the root folder path, allowing files outside the configured root t...

5.3CVSS5.8AI score
Exploits0References3
Positive Technologies
Positive Technologies
•added 2026/06/30 12:0 a.m.•17 views

PT-2026-54433

Buffer Overflow vulnerability in UTT nv518G nv518GV3v3.2.7-210919-161313 allows a remote attacker to cause a denial of service via the gohead/sub 447CAC component...

5.8AI score0.00423EPSS
Exploits0References3
Positive Technologies
Positive Technologies
•added 2026/06/30 12:0 a.m.•12 views

PT-2026-53853

Redeight CMS version 1.0 uses the MD5 algorithm without a salt to store user passwords. Because MD5 is a cryptographically broken algorithm and lacks salting, attackers who obtain the password hashes can trivially reverse them using rainbow tables, leading to the exposure of plaintext credentials...

5.9CVSS5.8AI score0.00082EPSS
Exploits0References2
Positive Technologies
Positive Technologies
•added 2026/06/30 12:0 a.m.•11 views

PT-2026-53876

Name of the Vulnerable Software and Affected Versions LLaMA-Factory versions prior to 0.9.6 Description Remote code execution is possible via the WebUI Chat and Training interfaces. The application fails to validate user-supplied model paths before passing them to the AutoTokenizer.from pretraine...

9.8CVSS6.5AI score0.00497EPSS
Exploits2References6
Positive Technologies
Positive Technologies
•added 2026/06/30 12:0 a.m.•4 views

PT-2026-55184

These are all security issues fixed in the libxreaderdocument3-4.6.5-1.1 package on the GA media of openSUSE Tumbleweed...

8.4CVSS5.8AI score0.00529EPSS
Exploits0References2
Positive Technologies
Positive Technologies
•added 2026/06/30 12:0 a.m.•6 views

PT-2026-55076

@tryghost/activitypub is Ghost’s social/federation client app. Prior to 3.1.0, the ActivityPub client in Ghost was vulnerable to JavaScript injection on posts shared by a maliciously customised ActivityPub server. This vulnerability is fixed in 3.1.0...

7.5CVSS5.8AI score0.00204EPSS
Exploits0References3
Positive Technologies
Positive Technologies
•added 2026/06/30 12:0 a.m.•7 views

PT-2026-54032

Capgo before 12.128.2 contains an information disclosure vulnerability in the /private/validate password compliance endpoint that returns different error responses for malformed, non-existent, and existing organization IDs. Unauthenticated attackers can enumerate valid organization UUIDs by...

6.9CVSS5.8AI score0.00261EPSS
Exploits0References2
Positive Technologies
Positive Technologies
•added 2026/06/30 12:0 a.m.•10 views

PT-2026-53858

Improper neutralization of special elements used in an SQL command 'SQL injection' vulnerability in Eksagate Electronic Engineering and Computer Industry Trade Inc. SYSGUARD 6001 allows Blind SQL Injection. This issue affects SYSGUARD 6001: from 2.0.2 before 6.1.16.0. NOTE: The vendor was...

9.8CVSS5.8AI score0.00321EPSS
Exploits0References2
Positive Technologies
Positive Technologies
•added 2026/06/30 12:0 a.m.•6 views

PT-2026-54018

Name of the Vulnerable Software and Affected Versions electron-updater versions prior to 26.15.0 Description AppImage targets built by app-builder-lib can use an empty path component when setting the LD LIBRARY PATH environment variable at runtime. This behavior causes the current working directo...

7.8CVSS6.1AI score0.00129EPSS
Exploits0References10
Positive Technologies
Positive Technologies
•added 2026/06/30 12:0 a.m.•8 views

PT-2026-54411

Name of the Vulnerable Software and Affected Versions Google Chrome on iOS versions prior to 150.0.7871.47 Description Insufficient validation of untrusted input allows a remote attacker to perform UI spoofing, a technique used to trick users by mimicking a legitimate user interface, via a crafte...

9.6CVSS6AI score0.00413EPSS
Exploits0References439
Positive Technologies
Positive Technologies
•added 2026/06/30 12:0 a.m.•8 views

PT-2026-54050

phpMyFAQ before 4.1.5 contains a privilege escalation vulnerability in GroupController::updatePermissions that allows GROUP EDIT administrators to grant arbitrary rights to groups without verifying they hold those rights themselves. A delegated administrator can exploit this by assigning high-val...

8.8CVSS5.8AI score0.00325EPSS
Exploits0References2
Positive Technologies
Positive Technologies
•added 2026/06/30 12:0 a.m.•9 views

PT-2026-54030

Name of the Vulnerable Software and Affected Versions Capgo versions prior to 12.128.2 Description An authentication bypass exists in the account deletion endpoint. This flaw allows the deletion of user accounts without requiring password re-authentication or secondary verification. Exploitation...

8.1CVSS5.8AI score0.00353EPSS
Exploits0References4
Positive Technologies
Positive Technologies
•added 2026/06/30 12:0 a.m.•8 views

PT-2026-54076

Name of the Vulnerable Software and Affected Versions Google Chrome versions prior to 150.0.7871.47 Description A use after free issue exists in the QUIC protocol implementation. This allows a remote attacker to potentially exploit heap corruption by sending malicious network traffic. Use after...

9.8CVSS6AI score0.00413EPSS
Exploits0References451
Positive Technologies
Positive Technologies
•added 2026/06/30 12:0 a.m.•6 views

PT-2026-54226

Name of the Vulnerable Software and Affected Versions Google Chrome versions prior to 150.0.7871.47 Description An uninitialized use in the GPU component allows a remote attacker who has already compromised the renderer process to retrieve potentially sensitive information from process memory. Th...

9.8CVSS6AI score0.00413EPSS
Exploits0References449
Positive Technologies
Positive Technologies
•added 2026/06/30 12:0 a.m.•8 views

PT-2026-54145

Name of the Vulnerable Software and Affected Versions Google Chrome on Android versions prior to 150.0.7871.47 Description An inappropriate implementation in the Network component allows a remote attacker who has compromised the renderer process to bypass site isolation. This is achieved through...

9.6CVSS6AI score0.00413EPSS
Exploits0References438
Positive Technologies
Positive Technologies
•added 2026/06/30 12:0 a.m.•10 views

PT-2026-55068

Envoy is an open source edge and service proxy designed for cloud-native applications. Prior to 1.35.11, 1.36.7, 1.37.3, and 1.38.1, Envoy can translate a downstream HTTP/3 request that is complete at the transport layer HEADERS with FIN / headers-only close but still carries a nonzero...

7.5CVSS5.7AI score0.00298EPSS
Exploits1References3
Positive Technologies
Positive Technologies
•added 2026/06/30 12:0 a.m.•14 views

PT-2026-53827

Nokia MantaRay is subject to an Improper Access Control vulnerability due to insufficient authorization within the API. Successful exploitation could allow an authenticated attacker to retrieve confidential information beyond their assigned privileges...

5.8AI score0.00276EPSS
Exploits0References2
Positive Technologies
Positive Technologies
•added 2026/06/30 12:0 a.m.•6 views

PT-2026-53832

Name of the Vulnerable Software and Affected Versions brace-expansion versions prior to 5.0.7 Description A denial of service issue exists where the expand function exhibits exponential-time complexity when processing consecutive non-expanding '' brace groups. An attacker can provide a crafted...

8.7CVSS6.2AI score0.00361EPSS
Exploits0References15
Positive Technologies
Positive Technologies
•added 2026/06/30 12:0 a.m.•12 views

PT-2026-54444

Name of the Vulnerable Software and Affected Versions probod versions prior to 0.194.1 Description The saferedirect package in go.probo.inc/probo fails to properly validate redirect URLs used in authentication flows, such as OIDC, SAML, session transfer, OAuth connectors, and trust-center magic...

4.7CVSS6AI score
Exploits0References5
Positive Technologies
Positive Technologies
•added 2026/06/30 12:0 a.m.•5 views

PT-2026-54443

Name of the Vulnerable Software and Affected Versions Fulcio versions prior to 1.8.6 Description Three security issues were identified in the OIDC Discovery client. First, a blind Server-Side Request Forgery SSRF occurs because the HTTP client used to fetch OIDC discovery metadata from the...

8.7CVSS5.8AI score
Exploits0References5
Positive Technologies
Positive Technologies
•added 2026/06/30 12:0 a.m.•7 views

PT-2026-53916

Name of the Vulnerable Software and Affected Versions OpenZiti versions prior to 2.0.1 Description A privilege escalation flaw exists in the controller enrollment management path. An authenticated non-admin identity with fine-grained enrollment management permissions can create enrollments for an...

8.8CVSS6AI score0.00244EPSS
Exploits0References11
Positive Technologies
Positive Technologies
•added 2026/06/30 12:0 a.m.•6 views

PT-2026-54005

Name of the Vulnerable Software and Affected Versions picklescan versions prior to 0.0.29 Description The software fails to detect the built-in trace.Trace.run function during the analysis of pickle files. This allows remote attackers to embed malicious code within the reduce method of a crafted...

8.1CVSS6.2AI score0.00562EPSS
Exploits0References5
Positive Technologies
Positive Technologies
•added 2026/06/30 12:0 a.m.•7 views

PT-2026-55069

Ghost is a Node.js content management system. From until 6.37.0, when Ghost is behind a shared caching layer that results in cached content being shared between different visitors, an unauthenticated user could send an x-ghost-preview header that altered the rendered frontend response. In affecte...

9.6CVSS5.8AI score0.00244EPSS
Exploits0References3
Positive Technologies
Positive Technologies
•added 2026/06/30 12:0 a.m.•6 views

PT-2026-55070

Ghost is a Node.js content management system. From 6.0.9 until 6.21.1, when making an external request, it is possible to bypass the IP filter that ensures the request isn't going to an internal service using an IPv6 literal which maps to a private IPv4 address. This vulnerability is fixed in...

5.8CVSS5.8AI score0.00197EPSS
Exploits0References3
Total number of security vulnerabilities184452