•10 minutes ago•GHSA-46FP-8F5P-PF2M
5.3GHSA-46fp-8f5p-pf2m: XSS Filter Bypass via Improper HTML Entity Decoding in Loofah allowed_uri?
The Loofah Ruby gem version 2.25.0 contains an improper URI validation vulnerability in the `Loofah::HTML5::Scrub.allowed_uri?` helper method. An attacker can bypass protocol validation by using HTML-encoded control characters, leading to Cross-Site Scripting (XSS) when the validated URI is rendered in a browser.
2 views•5 min read
•about 3 hours ago•GHSA-6G7G-W4F8-9C9X
7.5GHSA-6G7G-W4F8-9C9X: Denial of Service via Negative Slice Index in github.com/buger/jsonparser
A denial-of-service vulnerability exists in github.com/buger/jsonparser up to version 1.1.1. The Delete function fails to validate offset bounds when processing malformed JSON, leading to a runtime panic and immediate process termination.
3 views•6 min read
•about 5 hours ago•GHSA-JQCQ-XJH3-6G23
5.3GHSA-JQCQ-XJH3-6G23: Denial of Service via Unbounded Allocation in pgproto3
A denial of service vulnerability exists in the github.com/jackc/pgproto3/v2 Go package due to the absence of bounds checking during PostgreSQL wire protocol message encoding. This flaw allows a misconfigured peer or malicious actor to cause excessive memory allocation, leading to application crashes via out-of-memory (OOM) errors.
3 views•7 min read
•about 10 hours ago•GHSA-786Q-9HCG-V9FF
9.9CVE-2025-55190: Critical Information Disclosure in Argo CD Project API
Argo CD versions 2.13.0 through 3.1.1 suffer from a critical information disclosure vulnerability (CVSS 9.9) in the Project Details API endpoint. Authenticated attackers with standard project-level read access can bypass intended RBAC restrictions to extract plain-text Git repository passwords and Kubernetes cluster bearer tokens.
6 views•6 min read
•about 15 hours ago•CVE-2026-32256
7.5CVE-2026-32256: Infinite Loop Denial of Service in music-metadata ASF Parser
The music-metadata NPM package versions prior to 11.12.3 are vulnerable to an infinite loop (CWE-835) in the Advanced Systems Format (ASF) parser. A maliciously crafted ASF file can cause the parser's read pointer to seek backward, creating a permanent hang state that results in a 100% CPU utilization Denial of Service (DoS).
13 views•6 min read
•about 19 hours ago•CVE-2026-4270
5.5CVE-2026-4270: Local File Access Restriction Bypass in AWS API MCP Server
CVE-2026-4270 is a medium-severity vulnerability in the AWS API MCP Server (awslabs.aws-api-mcp-server) that allows attackers to bypass local file system restrictions. Due to improper protection of alternate paths, an attacker can read arbitrary local files within the context of the Model Context Protocol (MCP) client application.
11 views•5 min read
•about 22 hours ago•CVE-2026-4269
7.5CVE-2026-4269: Remote Code Execution via S3 Bucket Squatting in AWS Bedrock AgentCore Starter Toolkit
The AWS Bedrock AgentCore Starter Toolkit prior to version 0.1.13 contains a severe vulnerability where S3 ownership verification is omitted during build and deployment operations. This flaw allows a remote attacker to squat predictable S3 bucket names, facilitating arbitrary code injection and execution in the target AgentCore Runtime environment.
12 views•5 min read
•1 day ago•GHSA-4MX9-3C2H-HWHG
9.3GHSA-4MX9-3C2H-HWHG: Reflected Cross-Site Scripting via Incomplete SVG Sanitization Bypass in SiYuan
GHSA-4MX9-3C2H-HWHG represents a critical reflected Cross-Site Scripting (XSS) vulnerability in the SiYuan personal knowledge management system. The flaw stems from an incomplete blocklist in the application's SVG sanitizer, allowing attackers to execute arbitrary JavaScript by embedding malicious data URIs in the unauthenticated dynamic icon generation endpoint.
6 views•6 min read
•1 day ago•GHSA-43W5-MMXV-CPVH
7.5GHSA-43W5-MMXV-CPVH: Denial of Service via Infinite Loop in Micronaut Data Binding
The Micronaut Framework contains a Denial of Service (DoS) vulnerability within its form-urlencoded data binding mechanism. Specifically, the JsonBeanPropertyBinder class improperly handles descending array indices during parameter parsing, leading to an infinite loop and subsequent resource exhaustion. This flaw affects Micronaut 3.x versions prior to 3.10.5 and 4.x versions prior to 4.10.16.
6 views•6 min read
•1 day ago•GHSA-VVP9-7P8X-RFVV
7.5GHSA-VVP9-7P8X-RFVV: Information Leak via Out-of-Bounds Read in lz4_flex
The lz4_flex Rust crate prior to version 0.11.4 contains an information leak vulnerability due to improper validation of LZ4 match offsets. An attacker can craft a malicious LZ4 payload that forces the decompressor to read from uninitialized memory or previously freed buffers, leading to sensitive data exposure.
12 views•6 min read
•1 day ago•GHSA-9W88-79F8-M3VP
6.5GHSA-9W88-79F8-M3VP: Insecure Trailer Handling Allows HTTP Header Injection in ewe
The ewe web server library for Gleam/Erlang contains a moderate-severity vulnerability in its HTTP/1.1 chunked transfer encoding parser. Prior to version 3.0.5, the library utilized an incomplete denylist for processing HTTP trailer headers, enabling attackers to inject or overwrite critical request headers such as Authorization, Cookie, or X-Forwarded-For. This flaw allows for potential authentication bypass, session hijacking, or identity spoofing depending on the specific application logic deployed atop the library.
7 views•7 min read
•1 day ago•GHSA-4W98-XF39-23GP
7.5GHSA-4W98-XF39-23GP: Infinite Loop Denial of Service in ewe HTTP Trailer Parsing
The ewe web server, developed in Gleam for the Erlang BEAM ecosystem, contains a Denial of Service vulnerability stemming from an infinite loop in its HTTP trailer parsing logic. Versions prior to 3.0.3 fail to properly advance the network buffer when encountering invalid or forbidden chunked trailers. This flaw allows an unauthenticated remote attacker to trigger 100% CPU exhaustion by sending a maliciously crafted HTTP/1.1 request.
6 views•8 min read