Vulnerabilities

search
ID
Packages
Summary
Published
arrow_upward
Attributes
BIT-gitlab-2026-2370
  • Bitnami/gitlab
 Improper Handling of Parameters in GitLab 16 hours ago
  • Fix available
  • Severity - 8.8 (High)
BIT-mastodon-2026-33869
  • Bitnami/mastodon
 Mastodon has a denial of service for quote authorization 16 hours ago
  • Fix available
  • Severity - 4.8 (Medium)
BIT-mastodon-2026-33868
  • Bitnami/mastodon
 Mastodon has a GET-Based Open Redirect via '/web/%2F<domain>' 16 hours ago
  • Fix available
  • Severity - 6.1 (Medium)
BIT-prestashop-2026-33674
  • Bitnami/prestashop
 PrestaShop: Improper Use of Validation Framework yesterday
  • Fix available
  • Severity - 2.0 (Low)
BIT-prestashop-2026-33673
  • Bitnami/prestashop
 PrestaShop has multiple stored XSS vulnerabilities via unprotected Template variables yesterday
  • Fix available
  • Severity - 7.6 (High)
BIT-nats-2026-33249
  • Bitnami/nats
 NATS: Message tracing can be redirected to arbitrary subject yesterday
  • Fix available
  • Severity - 4.3 (Medium)
BIT-nats-2026-33248
  • Bitnami/nats
 NATS has mTLS verify_and_map authentication bypass via incorrect Subject DN matching 4 days ago
  • Fix available
  • Severity - 4.2 (Medium)
BIT-nats-2026-33247
  • Bitnami/nats
 NATS credentials are exposed in monitoring port via command-line argv 4 days ago
  • Fix available
  • Severity - 5.3 (Medium)
BIT-nats-2026-33246
  • Bitnami/nats
 NATS: Leafnode connections allow spoofing of Nats-Request-Info identity headers 4 days ago
  • Fix available
  • Severity - 5.4 (Medium)
BIT-nats-2026-33223
  • Bitnami/nats
 NATS Server: Incomplete Stripping of Nats-Request-Info Header Allows Identity Spoofing 4 days ago
  • Fix available
  • Severity - 5.4 (Medium)
BIT-nats-2026-33222
  • Bitnami/nats
 NATS JetStream has an authorization bypass through its Management API 4 days ago
  • Fix available
  • Severity - 4.9 (Medium)
BIT-nats-2026-33219
  • Bitnami/nats
 NATS is vulnerable to pre-auth DoS through WebSockets client service 4 days ago
  • Fix available
  • Severity - 5.3 (Medium)
BIT-nats-2026-33218
  • Bitnami/nats
 NATS has pre-auth server panic via leafnode handling 4 days ago
  • Fix available
  • Severity - 7.5 (High)
BIT-nats-2026-33217
  • Bitnami/nats
 NATS allows MQTT clients to bypass ACL checks 4 days ago
  • Fix available
  • Severity - 6.5 (Medium)
BIT-nats-2026-33216
  • Bitnami/nats
 NATS has MQTT plaintext password disclosure 4 days ago
  • Fix available
  • Severity - 7.5 (High)
BIT-nats-2026-29785
  • Bitnami/nats
 NATS Server panic via malicious compression on leafnode port 4 days ago
  • Fix available
  • Severity - 7.5 (High)
Load more...