Lucene search
+L
VeracodeRecent

38468 matches found

Veracode
Veracode
•added 2026/04/11 5:9 a.m.•7 views

DNS Rebinding

MCP Java SDK is vulnerable to DNS Rebinding. The vulnerability is due to lack of Origin Validation, allowing a malicious website to bypass same-origin restrictions and access a local or network-private MCP server via the victim’s browser, enabling unauthorized tool invocation...

7.6CVSS5.7AI score0.00136EPSS
Exploits0References3Affected Software1
Veracode
Veracode
•added 2026/04/11 5:8 a.m.•8 views

Improper Output Handling

Apache Log4j Core is vulnerable to Improper Output Handling. The vulnerability is due to XmlLayout failing to sanitize characters forbidden by the XML 1.0 specification, allowing log messages or MDC values to produce malformed XML or trigger exceptions during logging, which can lead to dropped or...

7.5CVSS5.8AI score0.0086EPSS
Exploits0References7Affected Software1
Veracode
Veracode
•added 2026/04/10 4:13 p.m.•4 views

Improper Authentication

github.com/zitadel/zitadel is vulnerable to improper authentication. The vulnerability is due to MFA being enforced only when explicitly required by policy, which allows an attacker to bypass additional authentication factors and exploit weaker single-factor sessions, potentially compromising...

9.8CVSS5.8AI score0.00336EPSS
Exploits0References3Affected Software1
Veracode
Veracode
•added 2026/04/10 3:25 p.m.•15 views

Host Header Injection

github.com/zitadel/zitadel is vulnerable to Host Header Injection. The vulnerability is due to improper validation of the Forwarded or X-Forwarded-Host headers when generating password reset links, which allows an attacker to manipulate the link to a malicious domain and capture the reset code,...

8.8CVSS5.8AI score0.00345EPSS
Exploits0References3Affected Software1
Veracode
Veracode
•added 2026/04/10 3:10 p.m.•11 views

Missing Authorization

Django is vulnerable to Missing Authorization. The vulnerability is due to missing validation of add permissions for inline model instances in GenericInlineModelAdmin, which allows an attacker to submit forged POST data and create unauthorized objects...

9.8CVSS5.8AI score0.00458EPSS
Exploits0References5Affected Software2
Veracode
Veracode
•added 2026/04/09 7:29 a.m.•7 views

Regular Expression Denial Of Service (ReDoS)

minimatch is vulnerable to Regular Expression Denial of Service ReDoS. The vulnerability is due to inefficient handling of multiple consecutive wildcards in glob patterns, leading to exponential backtracking in regex evaluation, which allows an attacker to cause significant performance degradatio...

8.7CVSS6.6AI score0.00519EPSS
Exploits1References3Affected Software1
Veracode
Veracode
•added 2026/04/09 7:7 a.m.•16 views

Regular Expression Denial Of Service (ReDoS)

minimatch is vulnerable to Regular Expression Denial of Service ReDoS. The vulnerability is due to nested extglob patterns generating regex with unbounded quantifiers, which allows an attacker to trigger catastrophic backtracking via crafted patterns and inputs, leading to significant performance...

7.5CVSS7.1AI score0.00472EPSS
Exploits1References3Affected Software1
Veracode
Veracode
•added 2026/04/08 3:42 p.m.•7 views

Improper Input Validation

OAuth2-Proxy is vulnerable to improper input validation. The vulnerability is due to inconsistent normalization of underscores and dashes in X-Forwarded- headers, which allows an attacker to inject crafted header variants to bypass proxy filtering and potentially escalate privileges in upstream...

8.5CVSS5.8AI score0.00633EPSS
Exploits0References7Affected Software2
Veracode
Veracode
•added 2026/04/08 2:54 p.m.•8 views

Regular Expression Denial Of Service (ReDoS)

minimatch is vulnerable to Regular Expression Denial of Service ReDoS. The vulnerability is due to unbounded recursive processing in matchOne when handling multiple non-adjacent GLOBSTAR patterns, which allows an attacker to supply crafted glob inputs that significantly delay execution and block...

7.5CVSS6AI score0.00517EPSS
Exploits1References3Affected Software1
Veracode
Veracode
•added 2026/04/08 2:5 p.m.•17 views

Type Confusion

Handlebars is vulnerable to Type Confusion. The vulnerability is due to unsanitized handling of pre-parsed AST input in Handlebars.compile, which allows an attacker to inject malicious JavaScript via crafted AST nodes and execute arbitrary code...

9.8CVSS6AI score0.0178EPSS
Exploits2References9Affected Software1
Veracode
Veracode
•added 2026/04/08 9:42 a.m.•12 views

Content-Type Override

Parse Server is vulnerable to Content-Type Override. The vulnerability is due to missing consistency validation between the file extension and the provided Content-Type header, where the Content-Type is passed unchanged to storage adapters that serve files based on this header, allowing an attack...

5.4CVSS5.9AI score0.00162EPSS
Exploits0References4Affected Software1
Veracode
Veracode
•added 2026/04/08 8:29 a.m.•9 views

Path Traversal

OpenCart is vulnerable to Path Traversal. The vulnerability is due to insufficient validation of file paths in the installer.php component of the Extension Installer Page, where crafted input can traverse directories and an attacker can exploit it remotely...

5.8CVSS5.9AI score0.00396EPSS
Exploits0References5Affected Software1
Veracode
Veracode
•added 2026/04/08 3:28 a.m.•7 views

Server-Side Request Forgery (SSRF)

github.com/charmbracelet/soft-serve is vulnerable to Server-Side Request Forgery SSRF. The vulnerability is due to lack of validation in webhook URLs, which allows an attacker to create malicious webhooks that target internal services, private networks, and cloud metadata endpoints...

9.1CVSS5.8AI score0.00335EPSS
Exploits1References5Affected Software1
Veracode
Veracode
•added 2026/04/07 4:37 p.m.•7 views

Improper Privilege Management

kubevirt.io/kubevirt is vulnerable to improper privilege management. The vulnerability is due to excessive permissions granted to the virt-handler service account, which allows an attacker to abuse update and patch capabilities to force VMI migration or schedule privileged pods onto a compromised...

6.9CVSS5.9AI score0.00254EPSS
Exploits1References2Affected Software1
Veracode
Veracode
•added 2026/04/07 4:26 p.m.•8 views

Improper Certificate Validation

kubevirt.io/kubevirt is vulnerable to improper certificate validation. The vulnerability is due to flawed peer verification logic in virt-handler, which allows an attacker to exploit shared credentials from a compromised instance to impersonate virt-api and execute privileged operations on other...

6.3CVSS6AI score0.00181EPSS
Exploits1References5Affected Software1
Veracode
Veracode
•added 2026/04/07 4:11 p.m.•7 views

Improper Link Resolution

kubevirt.io/kubevirt is vulnerable to improper link resolution. The vulnerability is due to lack of verification of whether the launcher-sock is a symlink or regular file, which allows an attacker with control over the virt-launcher pod file system to manipulate file ownership on the host and...

5CVSS6AI score0.0021EPSS
Exploits1References5Affected Software1
Veracode
Veracode
•added 2026/04/07 4:0 p.m.•7 views

Uncontrolled Resource Consumption

github.com/containerd/containerd is vulnerable to uncontrolled resource consumption. The vulnerability is due to goroutine leaks in the attach mechanism, which allows an attacker to exhaust host memory by repeatedly initiating attach requests...

6.9CVSS5.9AI score0.00162EPSS
Exploits1References3Affected Software1
Veracode
Veracode
•added 2026/04/07 3:46 p.m.•8 views

Logic Flaw

KubeVirt is vulnerable to a logic flaw. The vulnerability is due to improper validation in the virt-controller, which allows an attacker to create a malicious pod with matching labels to mislead the controller and disrupt VMI management, leading to denial-of-service...

5.3CVSS5.9AI score0.00347EPSS
Exploits1References3Affected Software1
Veracode
Veracode
•added 2026/04/07 3:26 p.m.•8 views

Improper Symlink Handling

kubevirt.io/kubevirt is vulnerable to improper symlink handling. The vulnerability is due to improper validation of symbolic links in PVC disk mounting along with incorrect file ownership changes, which allows an attacker with control over PVC contents to create malicious symlinks and read...

6.5CVSS6AI score0.00475EPSS
Exploits1References5Affected Software1
Veracode
Veracode
•added 2026/04/07 1:8 p.m.•9 views

XML Entity Expansion

fast-xml-parser is vulnerable to XML Entity Expansion. The vulnerability is due to missing enforcement of entity expansion limits for numeric and standard XML entities, which allows an attacker to supply crafted XML with excessive entity references to trigger high memory and CPU consumption leadi...

7.5CVSS5.9AI score0.00576EPSS
Exploits1References5Affected Software1
Veracode
Veracode
•added 2026/04/06 3:23 p.m.•23 views

Improper Authentication Validation

github.com/mattermost/mattermost-server is vulnerable to improper authentication validation. The vulnerability is due to failure to verify that the token used during the code exchange originates from the same authentication flow, which allows an authenticated attacker to perform account takeover ...

9.9CVSS6AI score0.00317EPSS
Exploits0References6Affected Software2
Veracode
Veracode
•added 2026/04/04 5:36 a.m.•7 views

Information Disclosure

openexr is vulnerable to an information disclosure. The vulnerability is due to improper handling of heap memory during image decoding, which allows an attacker to craft a malicious EXR file that leaks sensitive memory data when processed...

8.7CVSS5.8AI score0.00482EPSS
Exploits1References4Affected Software1
Veracode
Veracode
•added 2026/04/04 5:36 a.m.•6 views

Memory Exhaustion

aiohttp is vulnerable to Memory Exhaustion. The vulnerability is due to insufficient restrictions in header/trailer handling, where unlimited trailer headers are accepted and an attacker can send a request or response with many trailers to cause uncapped memory usage...

7.5CVSS5.9AI score0.0044EPSS
Exploits0References3Affected Software2
Veracode
Veracode
•added 2026/04/04 5:35 a.m.•16 views

Claude SDK For Python: Memory Tool Path Validation Race Condition Allows Sandbox Escape

The async local filesystem memory tool in the Anthropic Python SDK validated that model-supplied paths resolved inside the sandboxed memory directory, but then returned the unresolved path for subsequent file operations. A local attacker able to write to the memory directory could retarget a...

5.8CVSS5.8AI score0.00138EPSS
Exploits0Affected Software1
Veracode
Veracode
•added 2026/04/04 5:35 a.m.•7 views

Insecure File Permissions

Claude SDK for Python is vulnerable to insecure file permissions. The vulnerability is due to the memory tool creating files with mode 0o666, where the files are world‑readable on systems with a standard umask and world‑writable in environments with a permissive umask, and a local attacker on a...

4.8CVSS5.9AI score0.00122EPSS
Exploits0References3Affected Software1
Veracode
Veracode
•added 2026/04/04 5:34 a.m.•7 views

Multipart Header Bypass

aiohttp is vulnerable to a Multipart Header Bypass. The vulnerability is due to insufficient size checks on multipart headers, where multipart headers are not subject to the same size restrictions as normal headers and an attacker can craft a response with an excessive number of multipart headers...

8.7CVSS5.9AI score0.0044EPSS
Exploits0References3Affected Software2
Veracode
Veracode
•added 2026/04/04 5:34 a.m.•6 views

Out-of-bounds Write

OpenEXR is vulnerable to Out-of-bounds Write. The vulnerability is due to improper bounds checking when decoding crafted B44 or B44A EXR files, which allows an attacker to trigger memory corruption or crash the application...

8.4CVSS5.8AI score0.00244EPSS
Exploits1References3Affected Software1
Veracode
Veracode
•added 2026/04/04 5:34 a.m.•10 views

Header Injection

aiohttp is vulnerable to Header Injection. The vulnerability is due to the C parser llhttp accepting null bytes and control characters in response header values, where crafted header values containing these characters can be interpreted differently by the application or downstream proxies,...

9.1CVSS5.9AI score0.00461EPSS
Exploits0References3Affected Software2
Veracode
Veracode
•added 2026/04/04 5:33 a.m.•11 views

FastMCP OpenAPI Provider Has An SSRF & Path Traversal Vulnerability

Technical Description The "OpenAPIProvider" in FastMCP exposes internal APIs to MCP clients by parsing OpenAPI specifications. The "RequestDirector" class is responsible for constructing HTTP requests to the backend service. A critical vulnerability exists in the "buildurl" method. When an OpenAP...

10CVSS5.9AI score0.01011EPSS
Exploits1References9Affected Software1
Veracode
Veracode
•added 2026/04/04 5:32 a.m.•7 views

SQL Injection

alerta-server is vulnerable to SQL Injection. The vulnerability is due to direct interpolation of user-supplied query parameters into SQL statements without sanitization, which allows an attacker to inject and execute arbitrary SQL queries...

9.8CVSS6.1AI score0.00505EPSS
Exploits0References6Affected Software1
Veracode
Veracode
•added 2026/04/04 5:32 a.m.•16 views

AIOHTTP Leaks Cookie And Proxy-Authorization Headers On Cross-origin Redirect

Summary When following redirects to a different origin, aiohttp drops the Authorization header, but retains the Cookie and Proxy-Authorization headers. Impact The Cookie and Proxy-Authorizations headers could contain sensitive information which may be leaked to an unintended party after following...

6.9CVSS5.8AI score0.00337EPSS
Exploits0Affected Software1
Veracode
Veracode
•added 2026/04/04 5:31 a.m.•8 views

Authentication Bypass

litellm is vulnerable to Authentication Bypass. The vulnerability is due to weak cache key generation using only the first 20 characters of JWT tokens, which allows an attacker to craft a token with a matching prefix and gain unauthorized access by inheriting another user’s identity...

9.4CVSS5.8AI score0.0049EPSS
Exploits1References8Affected Software1
Veracode
Veracode
•added 2026/04/04 5:30 a.m.•10 views

Cross-Origin Data Theft

Glances is vulnerable to Cross-Origin Data Theft via XML-RPC Server CORS Misconfiguration. The vulnerability is due to the XML-RPC handler not validating the Content-Type header, where an attacker-controlled webpage can issue a CORS simple request containing a valid XML-RPC payload, and the serve...

7.1CVSS5.7AI score0.00409EPSS
Exploits1References3Affected Software1
Veracode
Veracode
•added 2026/04/04 5:29 a.m.•9 views

Poetry Has Wheel Path Traversal Which Can Lead To Arbitrary File Write

Summary A crafted wheel can contain ../ paths that Poetry writes to disk without containment checks, allowing arbitrary file write with the privileges of the Poetry process. Impact Arbitrary file write path traversal from untrusted wheel content. Impacts users/CI/CD systems installing malicious o...

7.1CVSS5.8AI score0.00468EPSS
Exploits1Affected Software1
Veracode
Veracode
•added 2026/04/04 5:29 a.m.•9 views

SQL Injection

baserCMS is vulnerable to SQL injection. The vulnerability is due to insufficient input validation in the blog post functionality, where malicious SQL may be executed in blog posts and attackers can inject crafted SQL statements to manipulate the database...

9.8CVSS5.9AI score0.00412EPSS
Exploits0References3Affected Software1
Veracode
Veracode
•added 2026/04/04 5:28 a.m.•10 views

Remote Code Execution

D-Tale is vulnerable to Remote Code Execution. The vulnerability is due to the use of redis or shelf storage layer, where users hosting D-Tale publicly could allow attackers to run malicious code on the server...

9.8CVSS5.5AI score0.00622EPSS
Exploits0References2Affected Software1
Veracode
Veracode
•added 2026/04/04 5:28 a.m.•13 views

JupyterHub Has An Open Redirect Vulnerability

Affected Version JupyterHub = 5.4.3 Impact An open redirect vulnerability in JupyterHub =5.4.3 allows attackers to construct links which, when clicked, take users to the JupyterHub login page, after which they are sent to an arbitrary attacker-controlled site outside JupyterHub instead of a...

6.1CVSS5.9AI score0.00224EPSS
Exploits0Affected Software1
Veracode
Veracode
•added 2026/04/04 5:28 a.m.•9 views

Privilege Escalation

LiteLLM is vulnerable to Privilege Escalation. The vulnerability is due to missing admin authorization checks on the /config/update endpoint, which allows an authenticated attacker to modify configurations, execute arbitrary code, and access sensitive data...

8.8CVSS6AI score0.26409EPSS
Exploits2References10Affected Software1
Veracode
Veracode
•added 2026/04/04 5:27 a.m.•10 views

Path Traversal

ONNX is vulnerable to Path Traversal. The vulnerability is due to improper handling of symlinks allowing directory traversal, which allows an attacker to access and read arbitrary files outside the intended directory...

8.7CVSS5.9AI score0.00593EPSS
Exploits1References6Affected Software1
Veracode
Veracode
•added 2026/04/04 5:24 a.m.•11 views

Improper Privilege Management

ci4-cms-erp/ci4ms is vulnerable to Cross-Site Scripting XSS. The vulnerability is due to improper sanitization and output encoding of user-controlled profile name input, which allows an attacker to inject and execute malicious JavaScript in application views...

9.4CVSS5.9AI score0.00297EPSS
Exploits1References2Affected Software1
Veracode
Veracode
•added 2026/04/04 5:23 a.m.•7 views

PhpMyFAQ Has A LIKE Wildcard Injection In Search.php — Unescaped % And _ Metacharacters Enable Broad Content Disclosure

Summary The "searchCustomPages" method in "phpmyfaq/src/phpMyFAQ/Search.php" uses "realescapestring" via "escape" to sanitize the search term before embedding it in LIKE clauses. However, "realescapestring" does not escape SQL LIKE metacharacters "%" match any sequence and "" match any single...

6.9CVSS5.9AI score0.00336EPSS
Exploits1Affected Software1
Veracode
Veracode
•added 2026/04/04 5:20 a.m.•10 views

OS Command Injection

baserCMS is vulnerable to OS command injection. The vulnerability is due to insufficient validation in the installer, where user‑controlled input is passed to the operating system and attackers can execute arbitrary commands by accessing the uninstalled application...

9.8CVSS7.4AI score0.02059EPSS
Exploits0References3Affected Software1
Veracode
Veracode
•added 2026/04/02 2:24 p.m.•12 views

Arbitrary Code Injection

org.springframework.ai:spring-ai-vector-store is vulnerable to Arbitrary Code Injection. The vulnerability is due to unsafe use of user-supplied input as a filter expression key in SimpleVectorStore, which allows an attacker to inject malicious expressions and execute arbitrary code...

9.8CVSS6.1AI score0.00821EPSS
Exploits0References5Affected Software1
Veracode
Veracode
•added 2026/04/01 9:53 a.m.•9 views

Improper Access Control

Cilium is vulnerable to improper access control. The vulnerability is due to missing validation of non-existent or unattached AWS security group IDs in egress policies, which allows an attacker to gain broader outbound network access than intended by the policy configuration...

5.5CVSS7.1AI score0.00164EPSS
Exploits0References6Affected Software2
Veracode
Veracode
•added 2026/03/31 11:2 a.m.•7 views

Arbitrary Code Execution.

@anthropic-ai/claude-code is vulnerable to Arbitrary code execution. The vulnerability is due to improper parsing of shell commands involving $IFS and short CLI flags, which allows an attacker to bypass read-only validation and execute arbitrary code by injecting untrusted content into the contex...

9.8CVSS6.2AI score0.00639EPSS
Exploits0References2Affected Software1
Veracode
Veracode
•added 2026/03/31 10:44 a.m.•7 views

Improper Access Control

github.com/mattermost/mattermost is vulnerable to improper access control. The vulnerability is due to insufficient validation of user permissions when accessing files and subscribing to board blocks, which allows an authenticated attacker to access files and subscribe to blocks from boards they...

4.3CVSS7.1AI score0.00193EPSS
Exploits0References3Affected Software2
Veracode
Veracode
•added 2026/03/31 10:6 a.m.•7 views

Improper Certificate Validation

github.com/envoyproxy/envoy is vulnerable to improper certificate validation. The vulnerability is due to incorrect handling of embedded null bytes \0 in OTHERNAME SAN values within mTLS certificate matching, which allows an attacker to bypass certificate validation and achieve unauthorized acces...

7.1CVSS5.9AI score0.00164EPSS
Exploits1References2Affected Software1
Veracode
Veracode
•added 2026/03/31 9:31 a.m.•5 views

Improper Input Validation

github.com/eclipse/paho.mqtt.golang is vulnerable to improper input validation. The vulnerability is due to unsafe conversion of string length from int32/int64 to int16 without overflow checks, which allows an attacker to craft oversized UTF-8 inputs that cause packet corruption or unintended dat...

6.3CVSS7.2AI score0.00197EPSS
Exploits0References6Affected Software1
Veracode
Veracode
•added 2026/03/31 8:45 a.m.•10 views

Prototype Pollution

Axios is vulnerable to Prototype Pollution. The vulnerability is due to the mergeConfig function crashing with a TypeError when processing configuration objects containing proto as an own property, where an attacker can trigger this by providing a malicious configuration object created via...

7.5CVSS7AI score0.025EPSS
Exploits1References50Affected Software2
Veracode
Veracode
•added 2026/03/31 3:55 a.m.•7 views

Predictable UUID Generation

github.com/gofiber/utils is vulnerable to predictable UUID generation.The vulnerability is due to fallback to predictable UUID values when crypto/rand.Read fails, which allows an attacker to guess UUIDs and exploit security-critical operations relying on them...

9.8CVSS5.9AI score0.00409EPSS
Exploits0References4Affected Software1
Total number of security vulnerabilities38468