•34 minutes ago•CVE-2026-40097
3.7CVE-2026-40097: Index Out-of-Bounds Panic in Step CA TPM Attestation
Step CA versions prior to 0.30.0-rc3 contain a vulnerability (CWE-129) where processing a malformed TPM Attestation Key certificate results in a Go runtime panic. This flaw causes a Denial of Service condition when the device-attest-01 ACME challenge is enabled and triggered by an unauthenticated attacker.
0 views•7 min read
•about 1 hour ago•CVE-2026-40109
3.1CVE-2026-40109: Improper Authentication in Flux notification-controller GCR Receiver
The Flux notification-controller prior to version 1.8.3 suffers from improper authentication in its Google Container Registry (GCR) Receiver webhook logic. The controller verified Google OIDC token signatures but failed to validate the identity (email) and audience (aud) claims, allowing unauthorized triggering of resource reconciliations by anyone possessing a valid Google OIDC token and the target webhook URL.
0 views•7 min read
•about 2 hours ago•GHSA-6V7Q-WJVX-W8WG
8.1GHSA-6V7Q-WJVX-W8WG: Arbitrary FTP Command Execution via CRLF Injection in basic-ftp
The basic-ftp npm package prior to version 5.2.2 contains a CRLF injection vulnerability due to incomplete input validation. This flaw allows an attacker who controls credentials or directory inputs to execute arbitrary FTP commands on the target server.
0 views•6 min read
•about 2 hours ago•GHSA-FFQ7-898W-9JC4
6.1GHSA-FFQ7-898W-9JC4: Stored Cross-Site Scripting via SVG Upload in DotNetNuke
DotNetNuke (DNN) suffers from a high-severity stored Cross-Site Scripting (XSS) vulnerability due to inadequate sanitization of Scalable Vector Graphics (SVG) files during the upload process. Authenticated users with file upload permissions can embed arbitrary JavaScript within SVG payloads, which execute in the security context of the DNN application when viewed by other users, including administrators.
1 views•8 min read
•about 6 hours ago•CVE-2026-40194
3.7CVE-2026-40194: Observable Timing Discrepancy in phpseclib SSH2 HMAC Verification
CVE-2026-40194 identifies a timing side-channel vulnerability in the phpseclib library's SSH2 implementation. The vulnerability arises from the use of a variable-time string comparison operation during HMAC validation. This theoretical flaw allows an attacker to measure processing time discrepancies to infer information about the expected cryptographic signature, though protocol-level constraints prevent practical remote exploitation.
3 views•7 min read
•about 6 hours ago•CVE-2026-40242
7.2CVE-2026-40242: Unauthenticated Server-Side Request Forgery in Arcane Template Fetch Mechanism
Arcane, a web-based interface for managing Docker environments, contains a high-severity unauthenticated Server-Side Request Forgery (SSRF) vulnerability. Prior to version 1.17.3, the application exposed the `/api/templates/fetch` endpoint without authentication, allowing remote attackers to force the server to perform outbound HTTP GET requests to arbitrary destinations. The vulnerability exposes internal network services, cloud provider metadata endpoints, and internal application states through robust error-based side-channels and direct response reflection.
2 views•5 min read
•about 7 hours ago•GHSA-75HX-XJ24-MQRW
7.5GHSA-75HX-XJ24-MQRW: Unauthenticated Access and Information Exposure in n8n-mcp HTTP Transport
The n8n-mcp package prior to version 2.47.6 suffers from missing authentication checks and information disclosure vulnerabilities. Unauthenticated attackers can exploit exposed health endpoints to extract active session identifiers, and subsequently terminate or interact with Model Context Protocol (MCP) sessions.
4 views•6 min read
•about 8 hours ago•CVE-2026-5412
9.9CVE-2026-5412: Broken Access Control in Juju API Leads to Cloud Credential Leak
CVE-2026-5412 is a critical improper authorization vulnerability within the Canonical Juju API server. Low-privileged authenticated users can bypass authorization controls via the Controller facade to extract plaintext bootstrap cloud credentials, leading to total compromise of the underlying cloud environment.
5 views•7 min read
•about 9 hours ago•CVE-2026-5774
6.1CVE-2026-5774: Race Condition and Denial of Service in Canonical Juju API Server
Canonical Juju is affected by a medium-severity race condition vulnerability (CWE-362) within its API server. The vulnerability allows an authenticated attacker to trigger concurrent memory access violations in the Go runtime, resulting in an unrecoverable fatal panic and Denial of Service (DoS), or to bypass single-use token constraints via an authentication replay attack.
5 views•7 min read
•about 9 hours ago•GHSA-8F24-V5VV-GM5J
5.3GHSA-8f24-v5vv-gm5j: Open Redirect in next-intl Middleware via URL Parsing Discrepancy
An open redirect vulnerability exists in the next-intl middleware for Next.js applications prior to version 4.9.1. The sanitization logic fails to account for WHATWG URL Specification rules regarding ASCII control characters, allowing attackers to craft malicious links that bypass validation and execute protocol-relative redirects to arbitrary external domains.
4 views•5 min read
•about 11 hours ago•GHSA-FPJ4-9QHX-5M6M
5.3GHSA-FPJ4-9QHX-5M6M: Improper Authorization in DNN Platform Friend Request Flow
DNN Platform (formerly DotNetNuke) versions 6.0.0 through prior to 10.2.2 contain an Improper Authorization and Insecure Direct Object Reference (IDOR) vulnerability. The flaw exists within the internal API endpoint responsible for processing friend request acceptances, allowing an attacker to force a target user to accept a friend request without interaction or consent.
3 views•6 min read
•about 14 hours ago•GHSA-2RHW-GW3F-477J
7.5GHSA-2RHW-GW3F-477J: Predictable HostGUID Assignment in DNN Platform New Installations
The DNN (DotNetNuke) platform fails to generate a unique HostGUID for new installations starting from version 10.0.0. This flaw results in all newly deployed instances sharing a static, hardcoded GUID. This compromises platform-wide security mechanisms that rely on this identifier for cryptographic entropy, uniqueness, and cross-tenant isolation.
3 views•5 min read