Vulnerabilities

search
ID
Packages
Summary
Published
arrow_upward
Attributes
CVE-2026-24780
  • github.com/significant-gravitas/autogpt
 AutoGPT is Vulnerable to RCE via Disabled Block Execution 6 hours ago
  • Fix available
  • Severity - 8.6 (High)
CVE-2026-24414
  • github.com/icinga/icinga-powershell-framework
 Icinga for Windows certificate can have too-open permissions 6 hours ago
  • Fix available
  • Severity - 6.8 (Medium)
CVE-2026-24413
  • github.com/icinga/icinga2
 Icinga has insecure permission of %ProgramData%\icinga2\var on Windows 6 hours ago
  • Fix available
  • Severity - 6.8 (Medium)
CVE-2026-24054
  • github.com/kata-containers/kata-containers
 Kata Containers Runtime: Host block device can be hotplugged to the VM if the container image is malformed or contains no layers 6 hours ago
  • Fix available
  • Severity - 8.8 (High)
CVE-2026-23896
  • github.com/immich-app/immich
 immich API Key Privilege Escalation vulnerability 7 hours ago
  • Fix available
  • Severity - 7.2 (High)
CVE-2025-62514
  • github.com/scille/parsec-cloud
 `libparsec_crypto` does not check for weak order point of curve 25519 8 hours ago
  • Fix available
  • Severity - 8.3 (High)
CVE-2026-24897
  • github.com/erugooss/erugo
 Authenticated Remote Code Execution via Arbitrary File Upload yesterday
  • Fix available
  • Severity - 10.0 (Critical)
CVE-2026-24889
  • github.com/stellar/rs-soroban-sdk
 soroban-sdk has overflow in Bytes::slice, Vec::slice, GenRange::gen_range for u64 yesterday
  • Fix available
  • Severity - 5.3 (Medium)
CVE-2026-24888
  • github.com/microsoft/maker.js
 Maker.js Vulnerable to Unsafe Property Copying in makerjs.extendObject yesterday
  • Fix available
  • Severity - 6.5 (Medium)
CVE-2026-24857
  • github.com/simsong/bulk_extractor
 bulk_extractor has Heap-based Buffer Overflow vulnerability yesterday
  • No fix available
  • Severity - 5.5 (Medium)
CVE-2026-24856
  • github.com/internationalcolorconsortium/iccdev
 iccDEV has UB runtime error in <icTagTypeSignature> yesterday
  • Fix available
  • Severity - 7.8 (High)
CVE-2026-24835
  • github.com/podman-desktop/podman-desktop
 Podman Desktop Extension System Vulnerable to Authentication Bypass yesterday
  • Fix available
  • Severity - 8.8 (High)
CVE-2026-24769
  • github.com/nocodb/nocodb
 NocoDB Vulnerable to Stored Cross-Site Scripting via SVG upload yesterday
  • Fix available
  • Severity - 8.5 (High)
CVE-2026-24768
  • github.com/nocodb/nocodb
 NocoDB has Unvalidated Redirect in Login Flow via continueAfterSignIn Parameter yesterday
  • Fix available
  • Severity - 5.7 (Medium)
CVE-2026-24767
  • github.com/nocodb/nocodb
 NocoDB has Blind SSRF via Unvalidated HEAD Request in uploadViaURL Functionality yesterday
  • Fix available
  • Severity - 4.9 (Medium)
CVE-2026-24766
  • github.com/nocodb/nocodb
 NocoDB Vulnerable to Prototype Pollution in Connection Test Endpoint, Leading to DoS yesterday
  • Fix available
  • Severity - 4.9 (Medium)
Load more...