cvereports.hashnode.devCVE-2026-24122: Time Travelers & Zombie Chains: Deep Dive into CVE-2026-24122 in Sigstore CosignTime Travelers & Zombie Chains: Deep Dive into CVE-2026-24122 in Sigstore Cosign Vulnerability ID: CVE-2026-24122 CVSS Score: 3.7 Published: 2026-02-19 A temporal logic flaw in Sigstore Cosign's certificate validation allowed expired intermediate C...1h ago·2 min read
cvereports.hashnode.devGHSA-VRHM-GVG7-FPCF: SvelteKit Remote Functions: Death by Type CoercionSvelteKit Remote Functions: Death by Type Coercion Vulnerability ID: GHSA-VRHM-GVG7-FPCF CVSS Score: 7.5 Published: 2026-02-19 A denial-of-service vulnerability in SvelteKit's experimental 'remote functions' feature allows attackers to crash the se...1h ago·2 min read
cvereports.hashnode.devGHSA-R5FQ-947M-XM57: OpenClaw: When Your AI Assistant Decides to Patch Your System ConfigOpenClaw: When Your AI Assistant Decides to Patch Your System Config Vulnerability ID: GHSA-R5FQ-947M-XM57 CVSS Score: 8.5 Published: 2026-02-19 An analysis of a critical path traversal vulnerability in OpenClaw's agent tooling, specifically the ap...2h ago·2 min read
cvereports.hashnode.devGHSA-88QP-P4QG-RQM6: SvelteKit Remote Functions: The Cost of Experimental FeaturesSvelteKit Remote Functions: The Cost of Experimental Features Vulnerability ID: GHSA-88QP-P4QG-RQM6 CVSS Score: 7.5 Published: 2026-02-19 An experimental feature in SvelteKit introduced a severe Denial of Service vulnerability via the binary form d...3h ago·2 min read
cvereports.hashnode.devGHSA-FH3F-Q9QW-93J9: Identity Crisis: Breaking OpenClaw Sandbox Isolation with SHA-1 CollisionsIdentity Crisis: Breaking OpenClaw Sandbox Isolation with SHA-1 Collisions Vulnerability ID: GHSA-FH3F-Q9QW-93J9 CVSS Score: 5.9 Published: 2026-02-19 OpenClaw, a platform for personal AI agents, was found using the deprecated SHA-1 hashing algorit...3h ago·2 min read