n8n: SecurityScorecard Node Leaks API Token to User-Controlled Host

n8n: MCP Browser HTTP Transport Exposes Unauthenticated Browser-Control Sessions

n8n: Cross-Tenant Credential Takeover via Dynamic Credentials EE Endpoints

n8n: Credential Exfiltration via Permission Bypass

n8n: Stored XSS in Chat Trigger Node

n8n: Microsoft SQL Node Prototype Pollution

Daytona: Cross-org IDOR in organization role update/delete — any org owner can rewrite or destroy another org's roles

Caddy: FastCGI header normalization bypass in `forward_auth copy_headers`

Caddy: Windows `file_server` path authorization bypass via encoded backslash

yt-dlp: Arbitrary code execution via manifest downloads with aria2c

Daytona: Public sandbox previews remain accessible for up to one hour after being made private

Traefik: HTTP/3 mTLS bypass via exact SNI TLSOptions lookup for wildcard and mixed-case hosts

Crawl4AI: SSRF via proxy settings in the Docker server bypasses the crawl-URL SSRF check

Crawl4AI: SSRF filter bypass in Docker server via IPv6 transition forms (NAT64 / 6to4 / unspecified / v4-mapped)

yt-dlp: Dangerous file type creation via insufficient filename sanitization (Bypass of CVE-2024-38519)

stable-diffusion.cpp is a pure C/C++ library for running diffusion model (Stable Diffusion, Flux, Wan, Qwen Image, Z-Image, and more) inference. In versions prior to master-584-0a7ae07, the pickle .ckpt parser in src/model.cpp contained a heap buffer overflow vulnerability in the GLOBAL opcode hand...

stable-diffusion.cpp is a pure C/C++ library for running diffusion model (Stable Diffusion, Flux, Wan, Qwen Image, Z-Image, and more) inference. In versions prior to master-584-0a7ae07, the pickle .ckpt parser in src/model.cpp contained a heap buffer overflow vulnerability in the BINUNICODE opcode h...

The device has a webserver that exposes a REST API authenticated with a constant token. The unauthenticated API can be used by an attacker to get access to system settings, modify the configuration and execute some commands (e.g. system reboot).

In ServerCo getssl version 2.49 and prior, the ACME challenge token returned to the client was not strictly validated against RFC 8555 before being used in challenge-file handling, allowing a maliciously crafted token to influence local path/filename usage during validation. An attacker who can supp...

OpenClaw before 2026.5.12 contains an allowlist bypass vulnerability in shell inline-command parsing that allows authenticated operators to execute unapproved commands. A command request using shell inline-command forms could route through a parser case missing the expected allowlist decision, enabl...