ssh in OpenSSH before 10.1 allows the '\0' character in an ssh:// URI, potentially leading to code execution when a ProxyCommand is used.
Emlog is an open source website building system. A cross-site scripting (XSS) vulnerability in emlog up to and including version 2.5.22 allows auth...
A user with the appropriate authorization can create any number of user accounts via an API endpoint using a POST request. There are no qu...
When an error occurs in the application a full stacktrace is provided to the user. The stacktrace lists class and method names as well as other int...
A vulnerability has been found in Frappe LMS 2.35.0. The affected element is an unknown function of the file /courses/ of the component Unpublished...
DataChain is a Python-based AI-data warehouse for transforming and analyzing unstructured data. Versions 0.34.1 and below allow for deseriaization ...
Claude Code is an agentic coding tool. Versions below 1.0.120 failed to account for symlinks when checking permission deny rules. If a user explici...
HCL MyXalytics 6.6. product is affected by Use of Vulnerable/Outdated Versions Vulnerability
The Backup Bolt plugin for WordPress is vulnerable to arbitrary file downloads and backup location writes in all versions up to, and including, 1.4...
A regular Zabbix user can search other users in their user group via Zabbix API by select fields the user does not have access to view. This allows...
AI-powered asset discovery, dark web monitoring, CVE alerting, and vulnerability scanning — all in one platform.
