Forem

CVE Reports profile picture

CVE Reports

CVEReports provides daily, automated deep-dives into the latest vulnerabilities, transforming emerging threats into comprehensive technical intelligence.

Joined Joined on  Personal website https://www.cvereports.com
CVE-2026-39804: CVE-2026-39804: Remote Code Execution and DoS via Bandit WebSocket Permessage-Deflate Resource Exhaustion
cverports profile

CVE-2026-39804: CVE-2026-39804: Remote Code Execution and DoS via Bandit WebSocket Permessage-Deflate Resource Exhaustion

#security #cve #cybersecurity
1
Comments
2 min read
CVE-2026-42786: CVE-2026-42786: Unbounded WebSocket Fragmented Message Reassembly Denial of Service in Bandit
cverports profile

CVE-2026-42786: CVE-2026-42786: Unbounded WebSocket Fragmented Message Reassembly Denial of Service in Bandit

#security #cve #cybersecurity
1
Comments
2 min read
CVE-2026-20188: CVE-2026-20188: Uncontrolled Resource Consumption in Cisco CNC and NSO
cverports profile

CVE-2026-20188: CVE-2026-20188: Uncontrolled Resource Consumption in Cisco CNC and NSO

#security #cve #cybersecurity
1
Comments
2 min read
CVE-2026-39805: CVE-2026-39805: CL.CL HTTP Request Smuggling in Bandit Web Server
cverports profile

CVE-2026-39805: CVE-2026-39805: CL.CL HTTP Request Smuggling in Bandit Web Server

#security #cve #cybersecurity
1
Comments
2 min read
CVE-2026-39807: CVE-2026-39807: Transport-State Spoofing via Untrusted URI Scheme in Bandit HTTP Server
cverports profile

CVE-2026-39807: CVE-2026-39807: Transport-State Spoofing via Untrusted URI Scheme in Bandit HTTP Server

#security #cve #cybersecurity
1
Comments
2 min read
CVE-2026-42788: CVE-2026-42788: HTTP/2 Frame Size Limit Bypass and Memory Exhaustion in Bandit
cverports profile

CVE-2026-42788: CVE-2026-42788: HTTP/2 Frame Size Limit Bypass and Memory Exhaustion in Bandit

#security #cve #cybersecurity
1
Comments
2 min read
GHSA-MMPX-JH39-WRV6: GHSA-MMPX-JH39-WRV6: Stored Cross-Site Scripting in FileBrowser Quantum via SVG Rendering
cverports profile

GHSA-MMPX-JH39-WRV6: GHSA-MMPX-JH39-WRV6: Stored Cross-Site Scripting in FileBrowser Quantum via SVG Rendering

#security #cve #cybersecurity #ghsa
1
Comments
2 min read
GHSA-FPF5-4JW8-67X8: GHSA-FPF5-4JW8-67X8: Unbounded Memory Allocation in rust-zserio
cverports profile

GHSA-FPF5-4JW8-67X8: GHSA-FPF5-4JW8-67X8: Unbounded Memory Allocation in rust-zserio

#security #cve #cybersecurity #ghsa
1
Comments
2 min read
GHSA-FC67-C4HG-Q653: CVE-2026-7461: OS Command Injection in Amazon ECS Agent for Windows via FSx Volume Credentials
cverports profile

GHSA-FC67-C4HG-Q653: CVE-2026-7461: OS Command Injection in Amazon ECS Agent for Windows via FSx Volume Credentials

#security #cve #cybersecurity
1
Comments
2 min read
GHSA-9G2Q-W3W2-VF7Q: GHSA-9G2Q-W3W2-VF7Q: Improper Authorization and IDOR in Kimai Timesheet Management
cverports profile

GHSA-9G2Q-W3W2-VF7Q: GHSA-9G2Q-W3W2-VF7Q: Improper Authorization and IDOR in Kimai Timesheet Management

#security #cve #cybersecurity #ghsa
1
Comments
2 min read
GHSA-VRQV-52X7-RM4V: GHSA-VRQV-52X7-RM4V: Information Exposure via Unrestricted Twig config() Function in Kimai
cverports profile

GHSA-VRQV-52X7-RM4V: GHSA-VRQV-52X7-RM4V: Information Exposure via Unrestricted Twig config() Function in Kimai

#security #cve #cybersecurity #ghsa
Comments
2 min read
CVE-2024-27354: CVE-2024-27354: Computational Denial of Service via Unbounded Primality Testing in phpseclib
cverports profile

CVE-2024-27354: CVE-2024-27354: Computational Denial of Service via Unbounded Primality Testing in phpseclib

#security #cve #cybersecurity
Comments
2 min read
CVE-2026-42223: CVE-2026-42223: Authenticated Sensitive Information Disclosure in Nginx UI
cverports profile

CVE-2026-42223: CVE-2026-42223: Authenticated Sensitive Information Disclosure in Nginx UI

#security #cve #cybersecurity
Comments
2 min read
CVE-2026-6970: CVE-2026-6970: Local Privilege Escalation via Improper GID Assignment in Canonical authd
cverports profile

CVE-2026-6970: CVE-2026-6970: Local Privilege Escalation via Improper GID Assignment in Canonical authd

#security #cve #cybersecurity
Comments
2 min read
GHSA-MGGX-P7JF-JGW4: GHSA-mggx-p7jf-jgw4: Remote Code Execution via FreeMarker Template Injection in Jdbi
cverports profile

GHSA-MGGX-P7JF-JGW4: GHSA-mggx-p7jf-jgw4: Remote Code Execution via FreeMarker Template Injection in Jdbi

#security #cve #cybersecurity #ghsa
Comments
2 min read
GHSA-7WW3-XVF5-CXWM: GHSA-7ww3-xvf5-cxwm: Missing Defense-in-Depth HTTP Headers in ciguard Web UI
cverports profile

GHSA-7WW3-XVF5-CXWM: GHSA-7ww3-xvf5-cxwm: Missing Defense-in-Depth HTTP Headers in ciguard Web UI

#security #cve #cybersecurity #ghsa
Comments
2 min read
GHSA-FW8G-CG8F-9J28: GHSA-FW8G-CG8F-9J28: Stored Cross-Site Scripting in Prometheus Legacy Web UI Heatmap
cverports profile

GHSA-FW8G-CG8F-9J28: GHSA-FW8G-CG8F-9J28: Stored Cross-Site Scripting in Prometheus Legacy Web UI Heatmap

#security #cve #cybersecurity #ghsa
Comments
2 min read
CVE-2026-42220: CVE-2026-42220: Privilege Escalation via Information Disclosure in Nginx UI
cverports profile

CVE-2026-42220: CVE-2026-42220: Privilege Escalation via Information Disclosure in Nginx UI

#security #cve #cybersecurity
Comments
2 min read
CVE-2025-8267: CVE-2025-8267: Server-Side Request Forgery Bypass via Multicast Address Exclusion in ssrfcheck
cverports profile

CVE-2025-8267: CVE-2025-8267: Server-Side Request Forgery Bypass via Multicast Address Exclusion in ssrfcheck

#security #cve #cybersecurity
Comments
2 min read
CVE-2026-42154: CVE-2026-42154: Unauthenticated Denial of Service via Snappy Bomb in Prometheus Remote Read Endpoint
cverports profile

CVE-2026-42154: CVE-2026-42154: Unauthenticated Denial of Service via Snappy Bomb in Prometheus Remote Read Endpoint

#security #cve #cybersecurity
Comments
2 min read
CVE-2026-42080: CVE-2026-42080: Arbitrary File Write and Path Traversal in PPTAgent MCP Server
cverports profile

CVE-2026-42080: CVE-2026-42080: Arbitrary File Write and Path Traversal in PPTAgent MCP Server

#security #cve #cybersecurity
Comments
2 min read
GHSA-R7CG-QJJM-XHQQ: GHSA-R7CG-QJJM-XHQQ: Unbounded Recursion Denial of Service in webonyx/graphql-php
cverports profile

GHSA-R7CG-QJJM-XHQQ: GHSA-R7CG-QJJM-XHQQ: Unbounded Recursion Denial of Service in webonyx/graphql-php

#security #cve #cybersecurity #ghsa
Comments
2 min read
CVE-2026-26956: CVE-2026-26956: WebAssembly Exception Handling Sandbox Escape in vm2
cverports profile

CVE-2026-26956: CVE-2026-26956: WebAssembly Exception Handling Sandbox Escape in vm2

#security #cve #cybersecurity
Comments
2 min read
CVE-2026-24120: CVE-2026-24120: Remote Code Execution via Promise Species Hijacking in vm2 Sandbox
cverports profile

CVE-2026-24120: CVE-2026-24120: Remote Code Execution via Promise Species Hijacking in vm2 Sandbox

#security #cve #cybersecurity
Comments
2 min read
CVE-2026-42040: CVE-2026-42040: Null Byte Injection via Improper Parameter Serialization in Axios
cverports profile

CVE-2026-42040: CVE-2026-42040: Null Byte Injection via Improper Parameter Serialization in Axios

#security #cve #cybersecurity
1
Comments
2 min read
CVE-2026-41907: CVE-2026-41907: Out-of-Bounds Write in uuid npm Package via Missing Boundary Checks
cverports profile

CVE-2026-41907: CVE-2026-41907: Out-of-Bounds Write in uuid npm Package via Missing Boundary Checks

#security #cve #cybersecurity
1
Comments
2 min read
CVE-2026-42044: CVE-2026-42044: Invisible JSON Response Tampering via Prototype Pollution Gadget in Axios
cverports profile

CVE-2026-42044: CVE-2026-42044: Invisible JSON Response Tampering via Prototype Pollution Gadget in Axios

#security #cve #cybersecurity
1
Comments
2 min read
CVE-2026-42043: CVE-2026-42043: Axios NO_PROXY Protection Bypass via RFC 1122 Loopback Subnet
cverports profile

CVE-2026-42043: CVE-2026-42043: Axios NO_PROXY Protection Bypass via RFC 1122 Loopback Subnet

#security #cve #cybersecurity
1
Comments
2 min read
CVE-2026-42041: CVE-2026-42041: Prototype Pollution Gadget in Axios Leading to Authentication Bypass
cverports profile

CVE-2026-42041: CVE-2026-42041: Prototype Pollution Gadget in Axios Leading to Authentication Bypass

#security #cve #cybersecurity
1
Comments
2 min read
CVE-2026-42042: CVE-2026-42042: XSRF Token Cross-Origin Leakage via Prototype Pollution in Axios
cverports profile

CVE-2026-42042: CVE-2026-42042: XSRF Token Cross-Origin Leakage via Prototype Pollution in Axios

#security #cve #cybersecurity
1
Comments
2 min read
CVE-2026-42035: CVE-2026-42035: Axios Header Injection via Prototype Pollution Gadget
cverports profile

CVE-2026-42035: CVE-2026-42035: Axios Header Injection via Prototype Pollution Gadget

#security #cve #cybersecurity
Comments
2 min read
CVE-2026-42033: CVE-2026-42033: Prototype Pollution Gadget Chain in Axios HTTP Client
cverports profile

CVE-2026-42033: CVE-2026-42033: Prototype Pollution Gadget Chain in Axios HTTP Client

#security #cve #cybersecurity
Comments
2 min read
CVE-2026-42034: CVE-2026-42034: maxBodyLength Bypass in Axios Node.js Stream Transport
cverports profile

CVE-2026-42034: CVE-2026-42034: maxBodyLength Bypass in Axios Node.js Stream Transport

#security #cve #cybersecurity
Comments
2 min read
CVE-2026-42039: CVE-2026-42039: Uncontrolled Recursion Denial of Service in Axios toFormData
cverports profile

CVE-2026-42039: CVE-2026-42039: Uncontrolled Recursion Denial of Service in Axios toFormData

#security #cve #cybersecurity
Comments
2 min read
CVE-2026-42038: CVE-2026-42038: Server-Side Request Forgery via Incomplete Hostname Normalization in Axios Proxy Logic
cverports profile

CVE-2026-42038: CVE-2026-42038: Server-Side Request Forgery via Incomplete Hostname Normalization in Axios Proxy Logic

#security #cve #cybersecurity
Comments
2 min read
CVE-2026-42037: CVE-2026-42037: CRLF Injection in Axios Multipart Form Data Generation
cverports profile

CVE-2026-42037: CVE-2026-42037: CRLF Injection in Axios Multipart Form Data Generation

#security #cve #cybersecurity
Comments
2 min read
CVE-2026-42036: CVE-2026-42036: maxContentLength Bypass and Resource Exhaustion in Axios
cverports profile

CVE-2026-42036: CVE-2026-42036: maxContentLength Bypass and Resource Exhaustion in Axios

#security #cve #cybersecurity
Comments
2 min read
GHSA-GXXH-8VCJ-W2MH: Arbitrary File Upload and Stored XSS in mckenziearts/livewire-markdown-editor
cverports profile

GHSA-GXXH-8VCJ-W2MH: Arbitrary File Upload and Stored XSS in mckenziearts/livewire-markdown-editor

#security #cve #cybersecurity #ghsa
Comments
2 min read
GHSA-FC86-6RV6-2JPM: GHSA-FC86-6RV6-2JPM: Denial of Service via Algorithmic Complexity in webonyx/graphql-php
cverports profile

GHSA-FC86-6RV6-2JPM: GHSA-FC86-6RV6-2JPM: Denial of Service via Algorithmic Complexity in webonyx/graphql-php

#security #cve #cybersecurity #ghsa
Comments
2 min read
GHSA-G27R-R6PH-VF5R: GHSA-G27R-R6PH-VF5R: Authentication Bypass via Policy Hash Truncation in sequoia-git
cverports profile

GHSA-G27R-R6PH-VF5R: GHSA-G27R-R6PH-VF5R: Authentication Bypass via Policy Hash Truncation in sequoia-git

#security #cve #cybersecurity #ghsa
Comments
2 min read
GHSA-G38R-8GMR-GHRF: GHSA-G38R-8GMR-GHRF: Malicious Code Execution via build.rs in Rust Crate mysten-metrics
cverports profile

GHSA-G38R-8GMR-GHRF: GHSA-G38R-8GMR-GHRF: Malicious Code Execution via build.rs in Rust Crate mysten-metrics

#security #cve #cybersecurity #ghsa
Comments
2 min read
GHSA-X3H8-JRGH-P8JX: GHSA-X3H8-JRGH-P8JX: Execution Allowlist Bypass in OpenClaw via Heredoc Parsing Discrepancies
cverports profile

GHSA-X3H8-JRGH-P8JX: GHSA-X3H8-JRGH-P8JX: Execution Allowlist Bypass in OpenClaw via Heredoc Parsing Discrepancies

#security #cve #cybersecurity #ghsa
Comments
2 min read
CVE-2026-41326: CVE-2026-41326: Arbitrary File Overwrite in Kata Containers via CopyFile API Symlink Subversion
cverports profile

CVE-2026-41326: CVE-2026-41326: Arbitrary File Overwrite in Kata Containers via CopyFile API Symlink Subversion

#security #cve #cybersecurity
Comments
2 min read
CVE-2026-41358: CVE-2026-41358: Origin Validation Error and Prompt Injection via OpenClaw Slack Integration
cverports profile

CVE-2026-41358: CVE-2026-41358: Origin Validation Error and Prompt Injection via OpenClaw Slack Integration

#security #cve #cybersecurity
Comments
2 min read
CVE-2026-24118: CVE-2026-24118: Remote Code Execution via Sandbox Escape in vm2
cverports profile

CVE-2026-24118: CVE-2026-24118: Remote Code Execution via Sandbox Escape in vm2

#security #cve #cybersecurity
Comments
2 min read
CVE-2020-0796: CVE-2020-0796: Remote Code Execution in Windows SMBv3 (SMBGhost)
cverports profile

CVE-2020-0796: CVE-2020-0796: Remote Code Execution in Windows SMBv3 (SMBGhost)

#security #cve #cybersecurity
Comments
2 min read
CVE-2025-60724: CVE-2025-60724: Remote Code Execution via Heap-based Buffer Overflow in Microsoft GDI+
cverports profile

CVE-2025-60724: CVE-2025-60724: Remote Code Execution via Heap-based Buffer Overflow in Microsoft GDI+

#security #cve #cybersecurity
Comments
3 min read
CVE-2019-0708: CVE-2019-0708: Unauthenticated Remote Code Execution in Windows Remote Desktop Services (BlueKeep)
cverports profile

CVE-2019-0708: CVE-2019-0708: Unauthenticated Remote Code Execution in Windows Remote Desktop Services (BlueKeep)

#security #cve #cybersecurity
Comments
2 min read
CVE-2025-21376: CVE-2025-21376: Remote Code Execution in Windows LDAP Implementation via Race Condition Weakness Chain
cverports profile

CVE-2025-21376: CVE-2025-21376: Remote Code Execution in Windows LDAP Implementation via Race Condition Weakness Chain

#security #cve #cybersecurity
Comments
2 min read
CVE-2025-60704: CVE-2025-60704: Elevation of Privilege via Missing Cryptographic Step in Windows Kerberos S4U (CheckSum)
cverports profile

CVE-2025-60704: CVE-2025-60704: Elevation of Privilege via Missing Cryptographic Step in Windows Kerberos S4U (CheckSum)

#security #cve #cybersecurity
Comments
2 min read
GHSA-RH99-WC69-C255: GHSA-RH99-WC69-C255: CopyFile Policy Subversion via Symlinks in Edgeless Systems Contrast
cverports profile

GHSA-RH99-WC69-C255: GHSA-RH99-WC69-C255: CopyFile Policy Subversion via Symlinks in Edgeless Systems Contrast

#security #cve #cybersecurity #ghsa
Comments
2 min read
GHSA-MQQ7-WXX5-MP8H: GHSA-MQQ7-WXX5-MP8H: Unauthorized Method Invocation in PrestaShop Checkout
cverports profile

GHSA-MQQ7-WXX5-MP8H: GHSA-MQQ7-WXX5-MP8H: Unauthorized Method Invocation in PrestaShop Checkout

#security #cve #cybersecurity #ghsa
Comments
2 min read
GHSA-83HF-93M4-RGWQ: CVE-2026-42254: Cross-Zone DNS Cache Poisoning in Hickory DNS Recursor
cverports profile

GHSA-83HF-93M4-RGWQ: CVE-2026-42254: Cross-Zone DNS Cache Poisoning in Hickory DNS Recursor

#security #cve #cybersecurity
Comments
2 min read
GHSA-28XX-PPPM-VQFF: GHSA-28xx-pppm-vqff: Silent Data Loss via Uncommitted Transactions in ydb-go-sdk
cverports profile

GHSA-28XX-PPPM-VQFF: GHSA-28xx-pppm-vqff: Silent Data Loss via Uncommitted Transactions in ydb-go-sdk

#security #cve #cybersecurity #ghsa
Comments
2 min read
CVE-2026-31431: CVE-2026-31431: Local Privilege Escalation via Page Cache Corruption in Linux Kernel AF_ALG
cverports profile

CVE-2026-31431: CVE-2026-31431: Local Privilege Escalation via Page Cache Corruption in Linux Kernel AF_ALG

#security #cve #cybersecurity
Comments
2 min read
CVE-2026-41680: CVE-2026-41680: Denial of Service via Infinite Recursion in marked Lexer
cverports profile

CVE-2026-41680: CVE-2026-41680: Denial of Service via Infinite Recursion in marked Lexer

#security #cve #cybersecurity
Comments
2 min read
GHSA-84G5-X8J3-7235: GHSA-84G5-X8J3-7235: DNS Filter Bypass via Off-by-one Error in Netfoil Suffix Trie
cverports profile

GHSA-84G5-X8J3-7235: GHSA-84G5-X8J3-7235: DNS Filter Bypass via Off-by-one Error in Netfoil Suffix Trie

#security #cve #cybersecurity #ghsa
Comments
2 min read
GHSA-VJGJ-42F6-7997: GHSA-vjgj-42f6-7997: Protection Mechanism Failure via Incomplete Seccomp Sandbox in Netfoil
cverports profile

GHSA-VJGJ-42F6-7997: GHSA-vjgj-42f6-7997: Protection Mechanism Failure via Incomplete Seccomp Sandbox in Netfoil

#security #cve #cybersecurity #ghsa
Comments
2 min read
GHSA-GFG9-5357-HV4C: GHSA-GFG9-5357-HV4C: Local File Read via Unsandboxed Audio Embedding in OpenClaw Gateway
cverports profile

GHSA-GFG9-5357-HV4C: GHSA-GFG9-5357-HV4C: Local File Read via Unsandboxed Audio Embedding in OpenClaw Gateway

#security #cve #cybersecurity #ghsa
Comments
2 min read
GHSA-C28G-VH7M-FM7V: GHSA-C28G-VH7M-FM7V: Improper Authorization and Privilege Escalation in OpenClaw Command Resolution
cverports profile

GHSA-C28G-VH7M-FM7V: GHSA-C28G-VH7M-FM7V: Improper Authorization and Privilege Escalation in OpenClaw Command Resolution

#security #cve #cybersecurity #ghsa
Comments
2 min read
loading...