5h ago · 2 min read · GHSA-RH99-WC69-C255: CopyFile Policy Subversion via Symlinks in Edgeless Systems Contrast Vulnerability ID: GHSA-RH99-WC69-C255 CVSS Score: 8.4 Published: 2026-04-30 The Edgeless Systems Contrast CLI contains a high-severity vulnerability in its po...
Join discussion9h ago · 7 min read · As engineers, we rely on layers of security to protect our work. One of the most trusted layers is two-factor authentication (2FA). It's the digital deadbolt on our front door. But what happens when that deadbolt can be picked in seconds? A critical ...
Join discussion
11h ago · 2 min read · GHSA-MQQ7-WXX5-MP8H: Unauthorized Method Invocation in PrestaShop Checkout Vulnerability ID: GHSA-MQQ7-WXX5-MP8H CVSS Score: 3.3 Published: 2026-04-30 The PrestaShop Checkout (ps_checkout) module prior to version 5.3.0 suffers from an improper inpu...
Join discussion21h ago · 2 min read · CVE-2026-42254: Cross-Zone DNS Cache Poisoning in Hickory DNS Recursor Vulnerability ID: GHSA-83HF-93M4-RGWQ CVSS Score: 4.0 Published: 2026-04-30 The hickory-recursor crate in Hickory DNS contains a cache poisoning vulnerability due to improper re...
Join discussion22h ago · 2 min read · GHSA-28xx-pppm-vqff: Silent Data Loss via Uncommitted Transactions in ydb-go-sdk Vulnerability ID: GHSA-28XX-PPPM-VQFF CVSS Score: 7.5 Published: 2026-04-30 The ydb-go-sdk for Yandex Database suffers from a critical logic vulnerability where transa...
Join discussion1d ago · 2 min read · CVE-2026-31431: Local Privilege Escalation via Page Cache Corruption in Linux Kernel AF_ALG Vulnerability ID: CVE-2026-31431 CVSS Score: 7.8 Published: 2026-04-22 CVE-2026-31431, colloquially known as "Copy Fail," is a critical logic flaw in the Li...
Join discussion1d ago · 2 min read · CVE-2026-41680: Denial of Service via Infinite Recursion in marked Lexer Vulnerability ID: CVE-2026-41680 CVSS Score: 7.5 Published: 2026-04-29 The marked Node.js Markdown parser versions 18.0.0 and 18.0.1 contain a critical vulnerability where a s...
Join discussion1d ago · 2 min read · GHSA-84G5-X8J3-7235: DNS Filter Bypass via Off-by-one Error in Netfoil Suffix Trie Vulnerability ID: GHSA-84G5-X8J3-7235 CVSS Score: 7.5 Published: 2026-04-29 Netfoil versions prior to v0.2.1 contain an off-by-one logic error within the custom suff...
Join discussion1d ago · 2 min read · GHSA-vjgj-42f6-7997: Protection Mechanism Failure via Incomplete Seccomp Sandbox in Netfoil Vulnerability ID: GHSA-VJGJ-42F6-7997 CVSS Score: 6.0 Published: 2026-04-29 Netfoil versions prior to v0.2.1 suffer from a protection mechanism failure wher...
Join discussion1d ago · 2 min read · GHSA-GFG9-5357-HV4C: Local File Read via Unsandboxed Audio Embedding in OpenClaw Gateway Vulnerability ID: GHSA-GFG9-5357-HV4C CVSS Score: 6.5 Published: 2026-04-29 The OpenClaw gateway component prior to version 2026.4.15 contains a Local File Rea...
Join discussion
