Vulnerabilities

search
ID
Packages
Summary
Published
arrow_upward
Attributes
GHSA-7p9h-m7m8-vhhv
  • Packagist/phpmyfaq/phpmyfaq
  • Packagist/thorsten/phpmyfaq
 phpMyFAQ: Attachment download allowed without dlattachment right (broken access control) 19 minutes ago
  • Fix available
  • Severity - 6.5 (Medium)
MAL-2026-494
  • npm/eits
 Malicious code in eits (npm) 2 hours ago
  • No fix available
MAL-2026-495
  • npm/h-jsencrypt
 Malicious code in h-jsencrypt (npm) 2 hours ago
  • No fix available
MAL-2026-496
  • npm/hemi-btc-staking-actions
 Malicious code in hemi-btc-staking-actions (npm) 2 hours ago
  • No fix available
MAL-2026-497
  • npm/test-on-other
 Malicious code in test-on-other (npm) 2 hours ago
  • No fix available
CGA-9m54-986w-g7rm
  • Chainguard/gh
  • Wolfi/gh
 See record for full details 3 hours ago
  • Fix available
CGA-6h22-55xm-mr2f
  • Chainguard/gh
  • Wolfi/gh
 See record for full details 3 hours ago
  • Fix available
CGA-28f7-f37x-xfxj
  • Chainguard/gh
  • Wolfi/gh
 See record for full details 3 hours ago
  • Fix available
MAL-2026-493
  • npm/oxnoxon
 Malicious code in oxnoxon (npm) 3 hours ago
  • No fix available
GHSA-c32p-wcqj-j677
  • Go/github.com/cometbft/cometbft
 CometBFT has inconsistencies between how commit signatures are verified and how block time is derived 3 hours ago
  • Fix available
  • Severity - 7.1 (High)
GHSA-wvqx-m5px-6cmp
  • Maven/org.xwiki.platform:xwiki-platform-web-templates
 XWiki Affected by Reflected Cross-Site Scripting (XSS) in Error Messages 4 hours ago
  • Fix available
  • Severity - 6.5 (Medium)
GHSA-7gcm-g887-7qv7
  • PyPI/protobuf
 protobuf affected by a JSON recursion depth bypass 5 hours ago
  • No fix available
  • Severity - 8.2 (High)
CVE-2026-22995
  • Linux/Kernel
  • git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
 ublk: fix use-after-free in ublk_partition_scan_work 5 hours ago
  • Fix available
CVE-2026-22994
  • Linux/Kernel
  • git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
 bpf: Fix reference count leak in bpf_prog_test_run_xdp() 5 hours ago
  • Fix available
CVE-2026-22993
  • Linux/Kernel
  • git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
 idpf: Fix RSS LUT NULL ptr issue after soft reset 5 hours ago
  • Fix available
CVE-2026-22992
  • Linux/Kernel
  • git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
 libceph: return the handler error from mon_handle_auth_done() 5 hours ago
  • Fix available
Load more...