28m ago · 2 min read · CVE-2026-39883: PATH Hijacking via Insecure kenv Execution in OpenTelemetry Go SDK Vulnerability ID: CVE-2026-39883 CVSS Score: 7.3 Published: 2026-04-08 The OpenTelemetry Go SDK contains an Untrusted Search Path vulnerability (CWE-426) affecting B...
Join discussion58m ago · 2 min read · CVE-2026-39885: Server-Side Request Forgery and Local File Inclusion in FrontMCP mcp-from-openapi Vulnerability ID: CVE-2026-39885 CVSS Score: 7.5 Published: 2026-04-08 A high-severity vulnerability exists in the mcp-from-openapi library of the Fro...
Join discussion1h ago · 2 min read · CVE-2026-39901: Authorization Bypass and Transaction Integrity Flaw in monetr Vulnerability ID: CVE-2026-39901 CVSS Score: 5.7 Published: 2026-04-08 monetr budgeting application prior to version 1.12.3 contains an authorization bypass flaw. Authent...
Join discussion1h ago · 2 min read · CVE-2026-39892: Out-of-bounds Read in Python Cryptography via Non-Contiguous Buffers Vulnerability ID: CVE-2026-39892 CVSS Score: 6.9 Published: 2026-04-08 CVE-2026-39892 is a memory safety vulnerability within the Python cryptography package affec...
Join discussion2h ago · 2 min read · GHSA-XRW6-GWF8-VVR9: Signal Spoofing and Resource Exhaustion in Tmds.DBus Vulnerability ID: GHSA-XRW6-GWF8-VVR9 CVSS Score: 7.1 Published: 2026-04-08 The GHSA-XRW6-GWF8-VVR9 vulnerability identifies multiple high-severity flaws in the Tmds.DBus and...
Join discussion3h ago · 2 min read · GHSA-HWR4-MQ23-WCV5: Cache Key Collision and Authorization Bypass in Mercure Hub Vulnerability ID: GHSA-HWR4-MQ23-WCV5 CVSS Score: 7.1 Published: 2026-04-08 The Mercure Hub's TopicSelectorStore is vulnerable to a cache key collision due to improper...
Join discussion3h ago · 2 min read · GHSA-4GGG-H7PH-26QR: Authenticated Server-Side Request Forgery in n8n-mcp Multi-Tenant Mode Vulnerability ID: GHSA-4GGG-H7PH-26QR CVSS Score: 8.8 Published: 2026-04-08 A high-severity Server-Side Request Forgery (SSRF) vulnerability exists in the n...
Join discussion5h ago · 2 min read · GHSA-5gfj-64gh-mgmw: Path Traversal in AGiXT Essential Abilities Extension Vulnerability ID: GHSA-5GFJ-64GH-MGMW CVSS Score: 8.8 Published: 2026-04-08 A path traversal vulnerability exists in the safe_join() function of the essential_abilities exte...
Join discussion7h ago · 2 min read · GHSA-5478-66C3-RHXR: Algorithmic Complexity Denial of Service in @chenglou/pretext Vulnerability ID: GHSA-5478-66C3-RHXR CVSS Score: 8.7 Published: 2026-04-08 The @chenglou/pretext package contains a high-severity algorithmic complexity vulnerabili...
Join discussion8h ago · 2 min read · GHSA-2679-6MX9-H9XC: Unauthenticated Remote Code Execution in marimo Terminal WebSocket Vulnerability ID: GHSA-2679-6MX9-H9XC CVSS Score: 9.5 Published: 2026-04-08 An authentication bypass vulnerability in the marimo interactive Python notebook env...
Join discussion
