Recent Advisories

Severity ID Title Vendor Product Date Type
NONE THN:381C544F332...

OceanLotus Hits Vietnam Investors With SPECTRALVIPER in FireAnt Attack_THN:381C544F3322064D82C21C21795E1ED7

![](https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEi2WExeCWTOdaaW7iQfV9dxGz0_rzPShImjBUQfoeRsJeTLg09lrGsSEgA2k05q-weIqQaQ_VVP25lTObup7E...

N/A N/A THN
MEDIUM 6.8 BEC2E52E-1CD0-

Exploit for Improper Input Validation in Nodeca Js-Yaml_BEC2E52E-1CD0-52EF-9716-9449D93392AB

Doceker bulid 취약환경으로 Docker 환경으로 빌드를 한다. docker build -f cve-2013-4660 -t cve-2013-4660 . 공격 성공 시 서버 내부의 민감 정보가 어떻...

N/A N/A GITHUBEXPLOIT
HIGH 7.8 429B6A1D-3268-

Exploit for Untrusted Pointer Dereference in Microsoft_429B6A1D-3268-5649-8F85-06742FFE6649

CVE-2023-21768 PoC...

N/A N/A GITHUBEXPLOIT
HIGH 8.1 F17976B9-4448-

Exploit for CVE-2026-10795_F17976B9-4448-5BEE-AEAE-209CDB4A1A3C

CVE-2026-10795 CVE-2026-10795 – UpdraftPlus Authentication Bypass CVE-2026-10795 – UpdraftPlus Authentication Bypass PoC ⚠️ Disclaimer: This reposi...

N/A N/A GITHUBEXPLOIT
HIGH 8.7 CVE-2026-53901

Cerebrate before v1.37 allows mass assignment of record identifiers during object creation_CVE-2026-53901

Cerebrate before version 1.37 contains a mass-assignment vulnerability in the generic CRUD add path. The add() handler attempted to remove an attac...

cerebrate cerebrate CVE
HIGH 7.5 CVE-2026-5497

Unbounded Frame Count in video/jpeg Base64 Data URL Processing Leads to OOM DoS in vllm-project/vllm_CVE-2026-5497

vLLM versions 0.8.0 and later are vulnerable to an Out-of-Memory (OOM) Denial of Service (DoS) attack due to unbounded frame count processing in th...

vllm-project vllm-project/vllm unspecified CVE
MEDIUM 6.3 CVE-2026-53911

Cerebrate primary key mass assignment in CRUD edit operations allows authenticated users to overwrite unrelated records_CVE-2026-53911

Cerebrate before version 1.37 allowed the id primary key field to be supplied through request input during CRUD edit operations and certain custom ...

cerebrate cerebrate CVE
MEDIUM 5 CVE-2026-11850

Krb5: krb5: integer underflow in berval2tl_data() leads to heap out-of-bounds read_CVE-2026-11850

An integer underflow vulnerability was found in MIT krb5 in the berval2tl_data() function in plugins/kdb/ldap/libkdb_ldap/ldap_principal2.c. The fu...

Red Hat Red Hat Enterprise Linux 10 CVE
MEDIUM 6.6 CVE-2025-7064

Freelance Security Lock – Access to Windows OS_CVE-2025-7064

Authentication bypass by primary weakness vulnerability in ABB Freelance. This issue affects Freelance: through 2013, 2013 SP1, 2016, 2016 SP1, 20...

ABB Freelance CVE
HIGH 7.5 CVE-2026-41856

Spring GraphQL Annotation Detection Vulnerability_CVE-2026-41856

The Spring GraphQL annotation detection mechanism for @Controller data fetchers may not correctly resolve annotations on methods within type hierar...

Spring Spring for GraphQL 2.0.0 CVE