Vulnerabilities

ID
Packages
Summary
Published
arrow_upward
Attributes
GHSA-v66x-68f2-pxf5
  • Maven/org.dspace:dspace-api
DSpace has a possible Path Traversal Vulnerability in its Curation Task Reporter output path 5 minutes ago
  • Fix available
  • Severity - 5.5 (Medium)
GHSA-9x82-rm84-c6x7
  • Maven/org.dspace:dspace-api
DSpace has possible Remote Code Execution (RCE) through Velocity Templates used by LDN 5 minutes ago
  • Fix available
  • Severity - 8.0 (High)
DRUPAL-CONTRIB-2026-078
  • Packagist:https://packages.drupal.org/8/drupal/clean_node_api
See record for full details 3 hours ago
  • No fix available
RHSA-2026:36344
  • Red Hat:jboss_enterprise_application_platform:8.1::el10/eap8
  • Red Hat:jboss_enterprise_application_platform:8.1::el10/eap8-activemq-artemis
  • Red Hat:jboss_enterprise_application_platform:8.1::el10/eap8-activemq-artemis-cli
  • Red Hat:jboss_enterprise_application_platform:8.1::el10/eap8-activemq-artemis-commons
  • Red Hat:jboss_enterprise_application_platform:8.1::el10/eap8-activemq-artemis-core-client
  • ... 451 more
Red Hat Security Advisory: Red Hat JBoss Enterprise Application Platform 8.1.7 security update 10 hours ago
  • Fix available
  • Severity - 6.5 (Medium)
PYSEC-2026-1358
  • PyPI/fastapi-api-key
FastAPI Api Key has a timing side-channel in verify_key that allows statistical key validity detection yesterday
  • Fix available
  • Severity - 3.7 (Low)
MAL-2026-6926
  • PyPI/paysafe-api
Malicious code in paysafe-api (PyPI) yesterday
  • No fix available
GHSA-26v7-h57m-gh9m
  • Go/github.com/QuantumNous/new-api
New API is vulnerable to CSRF through user email binding yesterday
  • Fix available
  • Severity - 5.3 (Medium)
GHSA-6qcr-qxgr-m7fv
  • Go/github.com/QuantumNous/new-api
New API: SSRF Protection Bypass via Unresolved Hostname in Notification URLs yesterday
  • Fix available
  • Severity - 7.7 (High)
RHSA-2026:35996
  • Red Hat:rhel_e4s:8.8::appstream/apache-commons-cli
  • Red Hat:rhel_e4s:8.8::appstream/apache-commons-codec
  • Red Hat:rhel_e4s:8.8::appstream/apache-commons-io
  • Red Hat:rhel_e4s:8.8::appstream/apache-commons-lang3
  • Red Hat:rhel_e4s:8.8::appstream/atinject
  • ... 61 more
Red Hat Security Advisory: maven:3.8 security update yesterday
  • Fix available
  • Severity - 8.3 (High)
ROOT-APP-NUGET-CVE-2026-40894
  • Root:NuGet/Rootio.OpenTelemetry.Api
CVE-2026-40894 in Rootio.OpenTelemetry.Api - Patched by Root 2 days ago
  • Fix available
  • Severity - 5.3 (Medium)
SUSE-SU-2026:2774-1
  • SUSE:Multi-Linux Manager Proxy Extension for SLE 5.1/suse-multi-linux-manager-5.1-aarch64-proxy-httpd-image
  • SUSE:Multi-Linux Manager Proxy Extension for SLE 5.1/suse-multi-linux-manager-5.1-aarch64-proxy-salt-broker-image
  • SUSE:Multi-Linux Manager Proxy Extension for SLE 5.1/suse-multi-linux-manager-5.1-aarch64-proxy-squid-image
  • SUSE:Multi-Linux Manager Proxy Extension for SLE 5.1/suse-multi-linux-manager-5.1-aarch64-proxy-ssh-image
  • SUSE:Multi-Linux Manager Proxy Extension for SLE 5.1/suse-multi-linux-manager-5.1-aarch64-proxy-tftpd-image
  • ... 41 more
Security update 5.1.4 for Multi-Linux Manager Server 2 days ago
  • Fix available
UBUNTU-CVE-2026-8804
  • Ubuntu:24.04:LTS/ruby-puppet-resource-api
  • Ubuntu:25.10/ruby-puppet-resource-api
  • Ubuntu:26.04:LTS/ruby-puppet-resource-api
See record for full details 2 days ago
  • No fix available
  • Severity - 6.7 (Medium)
MINI-38wh-4m8p-jpch
  • MinimOS/cluster-api-helm-controller-fips
See record for full details 3 days ago
  • Fix available
MINI-42gj-fp3h-r9f8
  • MinimOS/cluster-api-provider-vsphere-1.15
See record for full details 3 days ago
  • Fix available
MINI-4xf9-5w8m-4698
  • MinimOS/cluster-api-aws-controller-fips-2.11
See record for full details 3 days ago
  • Fix available
MINI-5673-qrhv-wc2q
  • MinimOS/cluster-api-aws-controller-fips-2.11
See record for full details 3 days ago
  • Fix available