Filter
-Infinity
0
Trending
Vendors
oracle
826
linux
649
ibm
636
apple
506
redhat
363
microsoft
361
debian
272
foxit
268
pdf-xchange
242
google
215
red hat
212
drupal
210
sun
180
canonical
165
opensuse
160
qemu
132
gnu
131
mozilla
124
adobe
122
fedoraproject
122
bentley
113
suse
101
hp
100
kofax
93
siemens
88
apache
84
cisco
76
wireshark
71
huawei
66
freebsd
65
samsung
65
netapp
58
gnome
51
wordpress
51
xen
50
fortinet
48
intel
45
openstack
44
cpanel
43
jenkins
42
mariadb
42
imagemagick
41
symantec
39
netbsd
37
php
37
vmware
36
mandrakesoft
35
tungsten automation
35
openbsd
34
phpmyadmin
33
BusyBoxIn netstat in BusyBox through 1.37.0, local users can launch of network application with an argv[0] …
2.5
First published (updated )
OctokitOctokit gem published with world-writable files
3.3
First published (updated )
OctopollerOctopoller gem published with world-writable files
3.3
First published (updated )
Zulip DesktopExpression Always True vulnerability in Zulip Server
2.6
First published (updated )
Flask-AppBuilderPossible to infer sensitive information through query strings in Flask-AppBuilder
2.7
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
NextAuth.jsLeakage of excessive information into log in next-auth
3.3
First published (updated )
Nextcloud ServerFederated share accepting/declining is not logged in audit log in Nextcloud Server
2.7
First published (updated )
Nextcloud Password PolicyNextcloud Password Policy's generated passwords are not fully validated by HIBPValidator
2.7
First published (updated )
Parse Platform Parse ServerParse Server subject to Improper Authentication allowing Auth adapter app ID validation to be circumvented
3.7
First published (updated )
Linux KernelLinux Kernel af_vsock.c vsock_connect memory leak
3.3
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Linux KernelLinux Kernel transport.c j1939_session_destroy memory leak
3.5
First published (updated )
Zulip ServerNon-constant-time SCIM token comparison in Zulip Server
3.7
First published (updated )
pip/mpxjTemporary File Information Disclosure Vulnerability
3.3
First published (updated )
Nextcloud ServerNextcloud Server has no password length limit when creating a user as an administrator
2.7
First published (updated )
Villatheme Orders Tracking For WoocommerceOrders Tracking for WooCommerce < 1.2.6 - Admin+ Arbitrary File Access/Read
2.7
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
BusyBox tarIn tar in BusyBox through 1.37.0, a TAR archive can have filenames hidden from a listing through the…
3.2
First published (updated )
go/github.com/mattermost/mattermost/server/v8Data exfiltration via AI plugin Jira tool
3
First published (updated )
go/github.com/mattermost/mattermost/server/v8Mattermost versions 10.4.x <= 10.4.2, 10.5.x <= 10.5.0, 9.11.x <= 9.11.9 fail to restrict domains th…
3
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
ImageMagickIn multispectral MIFF image processing in ImageMagick before 7.1.1-44, packet_size is mishandled (re…
2.9
First published (updated )
ImageMagickIn MIFF image processing in ImageMagick before 7.1.1-44, image depth is mishandled after SetQuantumF…
2.9
First published (updated )
go/github.com/mattermost/mattermost/server/v8MFA Enforcement Bypass Allows Unauthorized Removal of MFA for Other Users
2.2
First published (updated )
go/github.com/mattermost/mattermost/server/v8Mattermost versions 10.5.x <= 10.5.1, 9.11.x <= 9.11.9 fail to enforce MFA checks in PUT /api/v4/use…
2.2
First published (updated )
go/github.com/mattermost/mattermost/server/v8Unauthorized AI bot activation via Wrangler plugin
3.1
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
go/github.com/mattermost/mattermost/server/v8Mattermost versions 10.5.x <= 10.5.1, 10.4.x <= 10.4.3, 9.11.x <= 9.11.9 fail to prevent Wrangler po…
3.1
First published (updated )
AndroidImproper access control vulnerability in SecTelephonyProvider prior to SMR Dec-2022 Release 1 allows…
3.3
First published (updated )
go/github.com/mattermost/mattermost/server/v8Leaked Metadata of Deleted Files via Bookmark Creation
3.1
First published (updated )
go/github.com/mattermost/mattermost/server/v8Mattermost versions 10.5.x <= 10.5.1, 9.11.x <= 9.11.9 fail to check if a file has been deleted when…
3.1
First published (updated )
go/github.com/mattermost/mattermost/server/v8Unauthorized Access to User Activity Logs API by delegated granular administration roles
2.7
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.