Security Vulnerabilities Database

HIGH 7.5

NuGet

CVE-2026-45591

Microsoft Security Advisory CVE-2026-45591 – ASP.NET Core Denial of Service Vulnerability

Jun 15, 2026

MEDIUM 4.2

PyPI

CVE-2026-48522

PyJWKClient: missing scheme allowlist enables CVE-2024-21643-class SSRF + token forgery via file://, ftp://, data: schemes

Jun 15, 2026

MEDIUM 5.4

PyPI

CVE-2026-48523

PyJWT: Algorithm allow-list bypass when decoding with `PyJWK` / `PyJWKClient` keys

Jun 15, 2026

HIGH 7.4

PyPI

CVE-2026-48526

PyJWT: Public-key JWK accepted as HMAC secret enables forged HS256 tokens when mixed families are allowed

Jun 15, 2026

MEDIUM 5.3

PyPI

CVE-2026-48525

PyJWT: Unauthenticated DoS via unbounded Base64URL decoding of unused payload segment in b64=false detached JWS

Jun 15, 2026

LOW 3.7

PyPI

CVE-2026-48524

PyJWKClient unbounded JWKS endpoint requests via attacker-controlled kid values (DoS)

Jun 15, 2026

MEDIUM 6.1

Maven

CVE-2020-13932

Cross-site Scripting (XSS) in Apache ActiveMQ Artemis

Feb 9, 2022

MEDIUM 5.3

PyPI

CVE-2025-3000

PyTorch is vulnerable to memory corruption through its torch.jit.script function

Mar 31, 2025

HIGH 7.8

PyPI

CVE-2020-29367

Nov 27, 2020

UNKNOWN

PyPI

CVE-2026-48155

pypdf: Possible large memory usage for large offsets for layout mode text

Jun 12, 2026

LOW 3.3

PyPI

CVE-2026-48156

pypdf: Possible long runtimes for zero-only width values in cross-reference streamsuntimes for zero-only width values in cross-reference streams

Jun 12, 2026

LOW 3.7

PyPI

CVE-2026-49854

Tornado has out-of-bounds memory access via C extension

Jun 12, 2026

HIGH 7.5

PyPI

CVE-2026-46373

SQLFluff: Recursive Stack Overflow in Parser

May 19, 2026

HIGH 7.5

PyPI

CVE-2026-46374

SQLFluff: Uncontrolled Resource Consumption in SQLFluff Parser

May 19, 2026

MEDIUM 6.5

PyPI

CVE-2026-49818

Jun 9, 2026

HIGH 8.0

Maven

CVE-2026-53441

Jenkins: Stored XSS vulnerability in node offline cause description

Jun 10, 2026

MEDIUM 6.5

PyPI

CVE-2026-48710

Starlette has missing Host header validation that poisons request.url.path, bypassing path-based security checks

Jun 4, 2026

MEDIUM 6.2

NuGet

CVE-2026-46557

ImageMagick: Stack overflow in fx operation

May 18, 2026

UNKNOWN

Maven

CVE-2026-48006

Netty's Lack of Lifecycle Cleanup Leads to Pooled ByteBuf Leak in RedisArrayAggregator

Jun 11, 2026

UNKNOWN

Go

CVE-2026-54090

File Browser has a Command Execution Allowlist Bypass via Shell Metacharacter Injection

Jun 12, 2026

UNKNOWN

Maven

CVE-2026-48059

Netty HAProxy: Unbalanced Reference Count in Nested PP2_TYPE_SSL TLV Parsing Leads to Memory Exhaustion

Jun 11, 2026

MEDIUM 5.3

npm

CVE-2026-48049

@hapi/inert has a static-file confinement bypass via sibling-prefix path

Jun 11, 2026

MEDIUM 5.0

Go

CVE-2026-48096

OpenFGA has cache-key delimiter injection in shared-iterator and v2 iterator that caches enables intra-store authorization-decision poisoning

Jun 11, 2026

HIGH 8.1

npm

CVE-2026-45013

Apostrophe has a Weak Password Recovery Mechanism for Forgotten Password and Improper Input Validation

May 14, 2026

UNKNOWN

npm

CVE-2026-47248

Parse Server's GraphQL "Did you mean ...?" validation suggestions disclose schema to unauthenticated callers

May 29, 2026

HIGH 7.3

npm

CVE-2026-45011

Apostrophe has stored XSS via javascript: URL in Image Widget Link

May 14, 2026

UNKNOWN

npm

CVE-2026-47138

Parse Server: Pre-authentication denial of service via client version header regex backtracking

May 23, 2026

UNKNOWN

npm

CVE-2026-42890

actual Allows Electron to Run As Node

Jun 8, 2026

CRITICAL 9.3

npm

CVE-2026-44990

Apostrophe has default XSS via `xmp` raw-text passthrough in `sanitize-html`

May 14, 2026

UNKNOWN

npm

CVE-2026-50287

@agenticmail/mcp Missing Authentication for Critical Function

Jun 1, 2026

MEDIUM 6.1

Go

CVE-2026-41568

Docker: Race condition in docker cp allows creation of arbitrary empty files on the host via symlink swap

May 18, 2026

HIGH 7.2

Go

CVE-2026-42306

Docker: Race condition in docker cp allows bind mount redirection to host path

May 18, 2026

MEDIUM 6.5

npm

CVE-2026-42853

@apostrophecms/cli: Command Injection in apos create via Unsanitized Password Input

May 14, 2026

HIGH 7.6

npm

CVE-2026-45012

Apostrophe has authenticated SSRF in rich-text widget import via @apostrophecms/area/validate-widget

May 14, 2026

HIGH 8.1

Maven

CVE-2026-41731

In Spring for Apache Kafka, overly broad trusted-package matching in header mappers exposes JDK classes to deserialization

Jun 10, 2026

MEDIUM 6.5

Maven

CVE-2026-41726

In Spring for Apache Kafka, unbounded delegate cache keyed on user-controlled, potentially malicious selector header

Jun 10, 2026

HIGH 7.5

Go

CVE-2026-54091

File Browser has incorrect access control for public directory shares via rule path rebasing

Jun 12, 2026

UNKNOWN

Go

CVE-2026-54093

File Browser: FilePath traversal in download-as-zip/tar via Windows-style backslash separators in stored filenames

Jun 12, 2026

MEDIUM 6.5

Go

CVE-2026-54092

File Browser has a DoS Vulnerability via Public Login API

Jun 12, 2026

MEDIUM 6.8

Go

CVE-2026-54094

File Browser: Symlink following lets scoped users read, overwrite, and share files outside their filebrowser scope

Jun 12, 2026

MEDIUM 6.5

npm

CVE-2026-48022

@hapi/wreck: Sensitive credential headers leak across cross-port and cross-scheme redirects

Jun 11, 2026

UNKNOWN

Go

CVE-2026-54097

File Browser: Cross-user unauthorized share-link deletion via unbounded prefix match in DeleteWithPathPrefix

Jun 12, 2026

CRITICAL 10.0

npm

CVE-2026-47140

NodeVM builtin denylist bypass via process and inspector/promises allows host code execution

May 29, 2026

MEDIUM 6.5

Go

CVE-2026-46371

Fleet: Observer-level enrollment secret extraction via ORDER BY oracle on Apple MDM commands endpoint

Jun 12, 2026

UNKNOWN

Go

CVE-2026-54096

File Browser: Improper Access Control Occurs via Pre-Created Public Share for a Non-existent Path

Jun 12, 2026

MEDIUM 5.4

npm

CVE-2026-44311

Fabric.js improper escaping in fabric.Gradient colorStops leads to XSS in SVG serialization

Jun 12, 2026

UNKNOWN

Maven

GHSA-ch3q-cw5r-f4hg

ConnectBot SSH Client Library: Unbounded SSH field lengths can cause excessive memory allocation

Jun 12, 2026

UNKNOWN

Maven

GHSA-vc8p-8pxg-rfwg

ConnectBot SSH Client Library: Excessive allocation and integer overflow in DER private-key parsing

Jun 12, 2026

MEDIUM 6.5

Go

CVE-2026-46370

Fleet has observer-level enrollment secret extraction via ORDER BY oracle on labels host-listing endpoint

Jun 12, 2026

UNKNOWN

npm

CVE-2026-47430

Cordova Plugin InAppBrowser: iOS: Arbitrary Cordova callback IDs can be dispatched without validation from InAppBrowser WebViews.

Jun 8, 2026

CRITICAL 10.0

npm

CVE-2026-47131

vm2 has a Sandbox Escape issue

May 29, 2026

CRITICAL 9.8

npm

CVE-2026-47210

vm2 sandbox escape via JSPI-backed Promise `.finally()` species bypass

May 29, 2026

CRITICAL 10.0

npm

CVE-2026-47208

vm2 is Vulnerable to Sandbox Breakout Through Promise Species

May 29, 2026

CRITICAL 10.0

npm

CVE-2026-47137

vm2 has a CVE-2023-37903 patch bypass: nesting:true without explicit require still allows full RCE

May 29, 2026

UNKNOWN

Go

CVE-2026-44981

CrowdSec LAPI: Denial of Service via Unbounded Gzip Decompression

May 27, 2026

MEDIUM 5.3

Maven

CVE-2023-45648

Apache Tomcat Improper Input Validation vulnerability

Oct 10, 2023

HIGH 7.7

Go

CVE-2026-53999

Radius Controller May Delete a Container Resource via an Injected Deployment Annotation (Multi-Tenant Installs)

Jun 12, 2026

HIGH 8.1

npm

GHSA-gv7w-rqvm-qjhr

esbuild: Missing binary integrity verification in Deno module enables remote code execution via NPM_CONFIG_REGISTRY

Jun 12, 2026

Know every threat before it ships

Microsoft Security Advisory CVE-2026-45591 – ASP.NET Core Denial of Service Vulnerability

PyJWKClient: missing scheme allowlist enables CVE-2024-21643-class SSRF + token forgery via file://, ftp://, data: schemes

PyJWT: Algorithm allow-list bypass when decoding with `PyJWK` / `PyJWKClient` keys

PyJWT: Public-key JWK accepted as HMAC secret enables forged HS256 tokens when mixed families are allowed

PyJWT: Unauthenticated DoS via unbounded Base64URL decoding of unused payload segment in b64=false detached JWS

PyJWKClient unbounded JWKS endpoint requests via attacker-controlled kid values (DoS)

Cross-site Scripting (XSS) in Apache ActiveMQ Artemis

PyTorch is vulnerable to memory corruption through its torch.jit.script function

CVE-2020-29367

pypdf: Possible large memory usage for large offsets for layout mode text

pypdf: Possible long runtimes for zero-only width values in cross-reference streamsuntimes for zero-only width values in cross-reference streams

Tornado has out-of-bounds memory access via C extension

SQLFluff: Recursive Stack Overflow in Parser

SQLFluff: Uncontrolled Resource Consumption in SQLFluff Parser

CVE-2026-49818

Jenkins: Stored XSS vulnerability in node offline cause description

Starlette has missing Host header validation that poisons request.url.path, bypassing path-based security checks

ImageMagick: Stack overflow in fx operation

Netty's Lack of Lifecycle Cleanup Leads to Pooled ByteBuf Leak in RedisArrayAggregator

File Browser has a Command Execution Allowlist Bypass via Shell Metacharacter Injection

Netty HAProxy: Unbalanced Reference Count in Nested PP2_TYPE_SSL TLV Parsing Leads to Memory Exhaustion

@hapi/inert has a static-file confinement bypass via sibling-prefix path

OpenFGA has cache-key delimiter injection in shared-iterator and v2 iterator that caches enables intra-store authorization-decision poisoning

Apostrophe has a Weak Password Recovery Mechanism for Forgotten Password and Improper Input Validation

Parse Server's GraphQL "Did you mean ...?" validation suggestions disclose schema to unauthenticated callers

Apostrophe has stored XSS via javascript: URL in Image Widget Link

Parse Server: Pre-authentication denial of service via client version header regex backtracking

actual Allows Electron to Run As Node

Apostrophe has default XSS via `xmp` raw-text passthrough in `sanitize-html`

@agenticmail/mcp Missing Authentication for Critical Function

Docker: Race condition in docker cp allows creation of arbitrary empty files on the host via symlink swap

Docker: Race condition in docker cp allows bind mount redirection to host path

@apostrophecms/cli: Command Injection in apos create via Unsanitized Password Input

Apostrophe has authenticated SSRF in rich-text widget import via @apostrophecms/area/validate-widget

In Spring for Apache Kafka, overly broad trusted-package matching in header mappers exposes JDK classes to deserialization

In Spring for Apache Kafka, unbounded delegate cache keyed on user-controlled, potentially malicious selector header

File Browser has incorrect access control for public directory shares via rule path rebasing

File Browser: FilePath traversal in download-as-zip/tar via Windows-style backslash separators in stored filenames

File Browser has a DoS Vulnerability via Public Login API

File Browser: Symlink following lets scoped users read, overwrite, and share files outside their filebrowser scope

@hapi/wreck: Sensitive credential headers leak across cross-port and cross-scheme redirects

File Browser: Cross-user unauthorized share-link deletion via unbounded prefix match in DeleteWithPathPrefix

NodeVM builtin denylist bypass via process and inspector/promises allows host code execution

Fleet: Observer-level enrollment secret extraction via ORDER BY oracle on Apple MDM commands endpoint

File Browser: Improper Access Control Occurs via Pre-Created Public Share for a Non-existent Path

Fabric.js improper escaping in fabric.Gradient colorStops leads to XSS in SVG serialization

ConnectBot SSH Client Library: Unbounded SSH field lengths can cause excessive memory allocation

ConnectBot SSH Client Library: Excessive allocation and integer overflow in DER private-key parsing

Fleet has observer-level enrollment secret extraction via ORDER BY oracle on labels host-listing endpoint

Cordova Plugin InAppBrowser: iOS: Arbitrary Cordova callback IDs can be dispatched without validation from InAppBrowser WebViews.

vm2 has a Sandbox Escape issue

vm2 sandbox escape via JSPI-backed Promise `.finally()` species bypass

vm2 is Vulnerable to Sandbox Breakout Through Promise Species

vm2 has a CVE-2023-37903 patch bypass: nesting:true without explicit require still allows full RCE

CrowdSec LAPI: Denial of Service via Unbounded Gzip Decompression

Apache Tomcat Improper Input Validation vulnerability

Radius Controller May Delete a Container Resource via an Injected Deployment Annotation (Multi-Tenant Installs)

esbuild: Missing binary integrity verification in Deno module enables remote code execution via NPM_CONFIG_REGISTRY

Start Securing