最新漏洞情报100
CVE & PoC Alerts in Real Time
praisonai-platform: Any workspace member can delete the entire workspace via DELETE /workspaces/{id}
praisonai-platform: Issue endpoints accept any issue_id without workspace ownership check, cross-workspace read/update/delete IDOR
praisonai-platform: Any workspace member can add arbitrary user as owner via POST /workspaces/{id}/members
praisonai-platform: Comment endpoints accept any issue_id without workspace ownership check, cross-workspace comment read and post IDOR
praisonai-platform: Project endpoints accept any project_id without workspace ownership check, cross-workspace read/update/delete IDOR
Vitest browser mode serves unsanitized otelCarrier query parameter as inline script
When Vitest UI server is listening, arbitrary file can be read and executed
DOMPurify XSS via selectedcontent re-clone
Nezha's authenticated agents can forge service-monitor results for other users' services
@agenticmail/mcp Missing Authentication for Critical Function
pip 安全漏洞
WordPress plugin Spectra Gutenberg Blocks 安全漏洞
praisonai-platform: Any workspace member can promote themselves or others to owner via PATCH /workspaces/{id}/members/{user_id}
praisonai-platform: Missing authorization on member removal enables full workspace takeover by any user regardless of role
praisonai-platform: Label endpoints' unchecked label_id/issue_id enable cross-workspace label IDOR (edit, delete, link)
praisonai-platform: IDOR in dependency endpoints allows cross-workspace issue linking, reading, and deletion due to missing ownership checks
praisonai-platform: JWT signing key defaults to hardcoded "dev-secret-change-me", allowing token forgery for any user when PLATFORM_ENV is unset
PraisonAI Platform: Missing role checks let any workspace member become owner and control workspace membership
PraisonAI Platform workspace-scoped routes allow cross-workspace object access by global object ID
PraisonAI Platform has a cross-workspace IDOR + member-role privilege escalation
PraisonAI has Cross-Workspace IDOR and Privilege Escalation via Platform API
PraisonAI has an Arbitrary File Write in Python API
PraisonAI's unauthenticated A2A official example can reach real LLM-driven `eval()` tool execution
PraisonAI vulnerable to unauthenticated arbitrary file read via MCP workflow.show, workflow.validate, deploy.validate
PraisonAI vulnerable to sandbox escape via `print.__self__` builtins module leak in `execute_code` (subprocess mode)
PraisonAI `deploy --type api` emits a Flask server with authentication disabled by default
PraisonAI call server exposes unauthenticated agent listing, invocation, and deletion when CALL_SERVER_TOKEN is unset
PraisonAI: Arbitrary code execution via unguarded `spec.loader.exec_module` in `agents_generator.py` - sibling of CVE-2026-44334
formie's unauthenticated front-end submission editing can overwrite existing submissions
stigmem-node's federation peer registration lacked explicit out-of-band approval
stigmem-node's unsigned plugin override could be enabled without a second explicit acknowledgment
stigmem-node's federation insecure transport settings may allow non-loopback cleartext federation
stigmem-node's Postgres schema identifier handling required defensive quoting
stigmem-node's federation peer token timestamp validation may reject valid peer tokens
stigmem-node: Auth-disabled deployments may grant broad anonymous access outside loopback
Admidio has IDOR in `documents-files.php` `mode=move_save` that lets any folder-uploader exfiltrate files from private folders
ouroboros-ai Vulnerable to Remote Code Execution via Untrusted Project-Directory .env
authentik's XML Signature Wrapping in SAML Source ACS allows authentication as arbitrary federated user
CC-Tweaked has an SSRF Protection Bypass with NAT64
Koel Vulnerable to SSRF via Podcast Episode Enclosure URLs
russh: Post-decompression SSH packet size was not bounded, allowing remote oversized compressed packets
AgenticMail API/storage and outbound relay hardening fixes
ezsystems/ezpublish-legacy has a SQL injection in dfscleanup
NodeVM network builtin exclusions bypass via internal _http_client and _http_server
NodeVM builtin denylist bypass via process and inspector/promises allows host code execution
ExifReader is vulnerable to denial of service via crafted ICC `mluc` tag
vm2 sandbox escape via JSPI-backed Promise `.finally()` species bypass
vm2 has a CVE-2023-37903 patch bypass: nesting:true without explicit require still allows full RCE
vm2's Bridge Proxy set trap ignores receiver parameter, enabling host object property injection via prototype chain
vm2 has a sandbox escape via unblocked cross-realm Symbol.for keys + missing bridge write-trap symbol checks
vm2 is Vulnerable to Sandbox Breakout Through Promise Species
vm2 has a Sandbox Escape issue
Gotenberg has a Race Condition via Multipart `downloadFrom` Handling
Gotenberg has an SSRF deny-list bypass in IsPublicIP via IPv6 6to4 / NAT64 / site-local prefixes
Gotenberg has path traversal in zip entry name via Windows-style separators in upload filename
axios Vulnerable to Credential Theft and Response Hijacking via Prototype Pollution Gadget in Config Merge
axios Vulnerable to Full Man-in-the-Middle via Prototype Pollution Gadget in `config.proxy`
axios's shouldBypassProxy does not recognize IPv4-mapped IPv6 addresses, allowing NO_PROXY bypass (incomplete fix for CVE-2025-62718)
Froxlor has privilege escalation in SSH key synchronization via symlinked `authorized_keys` path
Froxlor has an authorization bypass in FTP shell assignment via missing server-side `available_shells` enforcement
GitHub CLI has an incorrect authorization header in API requests to TUF repository mirrors via `gh attestation`, `gh release verify`, and `gh release verify-asset` commands
HaxCMS has a stored Cross-Site Scripting (XSS) bypass in its saveNode endpoint
FreePBX 信任管理问题漏洞
Flippercode WP Maps Pro权限提升漏洞
Kubeflow Dashboard /api/workgroup/env-info 未授权访问漏洞
SecurePoint UTM /spcgi.cgi 信息泄露漏洞(CVE-2023-22620)
Structurizr /login 默认口令漏洞
AIClient2API /api/login 默认口令漏洞
Yacht /api/auth/login 默认口令漏洞
openSIS-Classic /ResetUserInfo.php SQL 注入漏洞(CVE-2024-51211)
BECN DATAGERRY /rest/users/1/settings/ 权限绕过漏洞(CVE-2024-46627)
AudioIgniter / 信息泄露漏洞(CVE-2026-8679)
全程云OA /OA/SMS/download.ashx 文件读取漏洞
全程云OA /OA/Common/API/Huawei.asmx SQL 注入漏洞
天地伟业 /Easy7/rest/itsFacility/query SQL 注入漏洞
AJ-Report积木报表 /dataSet/testTransform;swagger-ui 代码执行漏洞 (CVE-2024-7314)
金和OA /C6/Jhsoft.Web.departments/GetTreeDate.aspx SQL 注入漏洞(CVE-2025-10090)
Drupal core /jsonapi/node/article SQL 注入漏洞(CVE-2026-9082)
福建科立讯通信指挥调度管理平台 /api/client/fax/send_fax.php 命令执行漏洞
心理云CT系统 /DataSyncManage/DataSync/GetGridJson 信息泄露漏洞
智慧票务管理系统 /book/tickettypeindex.action 代码执行漏洞
易达科技ECMS /api/data/getData 信息泄露漏洞
索贝 template/api/styleList/3 未授权访问漏洞
智联云采 SRM2.0 /a/sys/sysMessage/statusList SQL 注入漏洞
易宝OA /api/files/DownloadFile2 文件读取漏洞
锐明技术 Crocus系统 /Home.do GetUserInfo 信息泄露漏洞
CyberPower /api/v1/ndconfig SQL 注入漏洞 (CVE-2024-32739)
大华智慧园区综合管理平台 /portal/itc/attachment_downloadByUrlAtt.action 文件读取漏洞
昂捷ERP /EnjoyRMIS_WS/WS/ReportTool/cwsqry.asmx GetChildGroupSql1 SQL 注入漏洞
昂捷ERP /EnjoyRMIS_WS/ 目录遍历漏洞
飞企互联 FE企业运营管理平台 /loginService.fe 权限绕过漏洞
Apache ActiveMQ Artemis /console/auth/login 默认口令漏洞
AnteeoWMS /default.aspx SQL 注入漏洞(CVE-2024-44349)
Alibaba Canal /api/v1/user/login 默认口令漏洞
哪吒监控面板 /api/v1/login 默认口令漏洞
宏景 eHR /services/HrChangeInfoService XML 外部实体注入漏洞
科荣AIO管理系统 /ReportServlet getFileList 目录遍历漏洞
Arcane Has an Authenticated Arbitrary Host File Read via Docker Compose Include Directives
Dulwich Vulnerable to Command Injection via Merge Driver Path
Dulwich has an arbitrary file write via NTFS-hostile tree entries on Windows