Forem

# cve

Posts

đź‘‹ Sign in for the ability to sort posts by relevant, latest, or top.
GHSA-XFX2-PRG5-JQ3G: Gin-Gonic Middleware Bypass: Authorization Failure in INSATutorat
cverports profile

GHSA-XFX2-PRG5-JQ3G: Gin-Gonic Middleware Bypass: Authorization Failure in INSATutorat

#security #cve #cybersecurity #ghsa
1
Comments
2 min read
CVE-2026-27628: The Ouroboros Document: Infinite Loops in pypdf
cverports profile

CVE-2026-27628: The Ouroboros Document: Infinite Loops in pypdf

#security #cve #cybersecurity
Comments
2 min read
CVE-2026-25545: Astro-nomical Screw Up: Full-Read SSRF via Host Header Injection
cverports profile

CVE-2026-25545: Astro-nomical Screw Up: Full-Read SSRF via Host Header Injection

#security #cve #cybersecurity
Comments
2 min read
CVE-2026-27469: Isso... You Have Chosen Death: Analyzing CVE-2026-27469
cverports profile

CVE-2026-27469: Isso... You Have Chosen Death: Analyzing CVE-2026-27469

#security #cve #cybersecurity
Comments
2 min read
CVE-2026-27568: Comments That Kill: Inside the AVideo Stored XSS (CVE-2026-27568)
cverports profile

CVE-2026-27568: Comments That Kill: Inside the AVideo Stored XSS (CVE-2026-27568)

#security #cve #cybersecurity
Comments
2 min read
CVE-2026-27129: Craft CMS SSRF: The IPv6 Ghost in the Machine
cverports profile

CVE-2026-27129: Craft CMS SSRF: The IPv6 Ghost in the Machine

#security #cve #cybersecurity
Comments
2 min read
CVE-2026-26331: yt-dlp: Downloading Shells Instead of Videos via --netrc-cmd
cverports profile

CVE-2026-26331: yt-dlp: Downloading Shells Instead of Videos via --netrc-cmd

#security #cve #cybersecurity
Comments
2 min read
CVE-2026-26198: Ormar's Aggregate Amnesia: Critical SQL Injection in min() and max()
cverports profile

CVE-2026-26198: Ormar's Aggregate Amnesia: Critical SQL Injection in min() and max()

#security #cve #cybersecurity
Comments
2 min read
GHSA-JH8H-6C9Q-7GMW: The Empty Badge: n8n Chat Trigger Auth Bypass
cverports profile

GHSA-JH8H-6C9Q-7GMW: The Empty Badge: n8n Chat Trigger Auth Bypass

#security #cve #cybersecurity #ghsa
1
Comments
2 min read
CVE-2026-27206: The Zumba Class Dance: RCE via PHP Object Injection in json-serializer
cverports profile

CVE-2026-27206: The Zumba Class Dance: RCE via PHP Object Injection in json-serializer

#security #cve #cybersecurity
Comments
2 min read
GHSA-6QR9-G2XW-CW92: Dagu: The Friendly Ghost that Runs Your Malware (GHSA-6QR9-G2XW-CW92)
cverports profile

GHSA-6QR9-G2XW-CW92: Dagu: The Friendly Ghost that Runs Your Malware (GHSA-6QR9-G2XW-CW92)

#security #cve #cybersecurity #ghsa
Comments
2 min read
GHSA-GV8R-9RW9-9697: The Ghost in the Handshake: Traefik & Go mTLS Bypass in HTTP/3
cverports profile

GHSA-GV8R-9RW9-9697: The Ghost in the Handshake: Traefik & Go mTLS Bypass in HTTP/3

#security #cve #cybersecurity
Comments
2 min read
CVE-2026-2472: Poisoned Notebooks: Stored XSS in Google Vertex AI SDK
cverports profile

CVE-2026-2472: Poisoned Notebooks: Stored XSS in Google Vertex AI SDK

#security #cve #cybersecurity
Comments
2 min read
CVE-2026-25896: Regex Injection in fast-xml-parser: Shadowing the <
cverports profile

CVE-2026-25896: Regex Injection in fast-xml-parser: Shadowing the <

#security #cve #cybersecurity
Comments
2 min read
GHSA-33HQ-FVWR-56PM: The Billion-Comma Attack: Nuking Svelte SSR with Sparse Arrays
cverports profile

GHSA-33HQ-FVWR-56PM: The Billion-Comma Attack: Nuking Svelte SSR with Sparse Arrays

#security #cve #cybersecurity #ghsa
Comments
2 min read
đź‘‹ Sign in for the ability to sort posts by relevant, latest, or top.