Vulnerabilities

ID
Packages
Summary
Published
arrow_upward
Attributes
ECHO-b6a0-85de-738f
  • Echo/avahi
See record for full details 1 hour ago
  • No fix available
ECHO-7f70-08b9-6df6
  • Echo/avahi
See record for full details 1 hour ago
  • No fix available
ECHO-abcc-913b-5cbc
  • Echo/avahi
See record for full details 1 hour ago
  • No fix available
MAL-2026-237
  • PyPI/formater
Malicious code in formater (PyPI) 2 hours ago
  • No fix available
MAL-2026-236
  • PyPI/graponater
Malicious code in graponater (PyPI) 4 hours ago
  • No fix available
CVE-2026-22785
  • github.com/orval-labs/orval
orval MCP client is vulnerable to a code injection attack. 6 hours ago
  • Fix available
  • Severity - 9.3 (Critical)
MGASA-2026-0007
  • Mageia:9/libtasn1
Updated libtasn1 packages fix security vulnerability 6 hours ago
  • Fix available
CVE-2026-22784
  • github.com/lycheeorg/lychee
Lychee cross-album password propagation on Album unlocking 6 hours ago
  • Fix available
  • Severity - 2.3 (Low)
CVE-2026-22783
  • github.com/dfir-iris/iris-web
Iris Allows Arbitrary File Deletion via Mass Assignment in Datastore File Management 7 hours ago
  • Fix available
  • Severity - 9.6 (Critical)
CVE-2026-22781
  • github.com/maximmasiutin/tinyweb
TinyWeb CGI Command Injection 7 hours ago
  • Fix available
  • Severity - 10.0 (Critical)
CVE-2026-22776
  • github.com/yhirose/cpp-httplib
cpp-httplib vulnerable to a denial of service (DOS) using a zip bomb 7 hours ago
  • Fix available
  • Severity - 8.7 (High)
CVE-2026-22771
  • github.com/envoyproxy/gateway
Envoy Extension Policy lua scripts injection causes arbitrary command execution 7 hours ago
  • Fix available
  • Severity - 8.8 (High)
GHSA-9rp8-h4g8-8766
  • PyPI/wlc
Weblate wlc has insecure API key configuration 7 hours ago
  • Fix available
  • Severity - 5.3 (Medium)
CVE-2026-22252
  • github.com/danny-avila/librechat
LibreChat MCP Stdio Remote Command Execution 7 hours ago
  • Fix available
  • Severity - 9.1 (Critical)
CVE-2026-22251
  • github.com/weblateorg/wlc
wlc may leak API keys due to an insecure API key configuration 7 hours ago
  • Fix available
  • Severity - 5.3 (Medium)
CVE-2026-22250
  • github.com/weblateorg/wlc
wlc can skip SSL verification 7 hours ago
  • Fix available
  • Severity - 2.5 (Low)