OpenTelemetry eBPF Instrumentation: Postgres BIND parsing can panic on malformed payloads
OpenTelemetry eBPF Instrumentation: Redis error text is exported in span status messages
OpenTelemetry eBPF Instrumentation: Unsafe fastelf parsing allows malformed ELF to crash agent
ImageMagick: Policy Bypass in PSD decoder
Docker: Race condition in docker cp allows bind mount redirection to host path
Docker: Race condition in docker cp allows creation of arbitrary empty files on the host via symlink swap
CloakBrowser: Unauthenticated path traversal via fingerprint parameter in cloakserve leads to arbitrary directory deletion
ImageMagick: Out-of-Bounds Read of a single byte in meta encoder
ImageMagick: Out-of-Bounds Read in connected components when the user supplies an invalid keep-top define
Budibase: CouchDB Reduce Injection via Unsanitized Calculation Parameter in V1 Views API
Docker: `PUT /containers/{id}/archive` executes container binary on the host
Budibase: Row Action Trigger Bypasses View Row Filter Security Boundary Allowing Action on Out-of-Scope Rows
Budibase: Builder-to-Admin Privilege Escalation via onboardUsers Endpoint Without SMTP Configuration
n8n-MCP: Multi-tenant MCP requests fall back to process-level n8n credentials when tenant headers are absent or incomplete
Sulu: Weak Cryptographical usage for API Key generation and Reset Tokens
ruby-jwt: Empty-key HMAC bypass; cross-language sibling of CVE-2026-44351
Formie: Pre-authenticated server-side template injection in Hidden fields
TinyIce: Missing authentication on WebRTC ingest endpoint allows unauthorized stream injection
Creating a "2dsphere_bucket" index on a non-timeseries bucket collection will succeed, but any subsequent attempt to insert a document which triggers updating that index will crash the server. A similar issue occurs when creating "queryable_encrypted_range" indices. This issue a...
A pre-authentication, code injection vulnerability in version 1.0.0 or later of the ChromaDB Python project allows an unauthenticated attacker to run arbitrary code on the server by sending a malicious model repository and trust_remote_code set to true in theΒ /api/v2/tenants/{tenant}/databases/{db}/...