DEV Community

# cve

Posts

đź‘‹ Sign in for the ability to sort posts by relevant, latest, or top.
CVE-2026-26273: The Over-Helpful Doorman: Full Account Takeover in 'Known' CMS
cverports profile

CVE-2026-26273: The Over-Helpful Doorman: Full Account Takeover in 'Known' CMS

#security #cve #cybersecurity
Comments
2 min read
GHSA-27JP-WM6Q-GP25: Death by Parentheses: The sqlparse Recursive DoS
cverports profile

GHSA-27JP-WM6Q-GP25: Death by Parentheses: The sqlparse Recursive DoS

#security #cve #cybersecurity #ghsa
Comments
2 min read
CVE-2026-26187: CVE-2026-26187: escaping the Lake with a Path Traversal Two-Step
cverports profile

CVE-2026-26187: CVE-2026-26187: escaping the Lake with a Path Traversal Two-Step

#security #cve #cybersecurity
Comments
2 min read
GHSA-XX7M-69FF-9CRP: SurrealDB's Poison Pill: Crashing the Database with a Single String
cverports profile

GHSA-XX7M-69FF-9CRP: SurrealDB's Poison Pill: Crashing the Database with a Single String

#security #cve #cybersecurity #ghsa
Comments
2 min read
CVE-2026-2391: Death by a Thousand Commas: Deep Dive into CVE-2026-2391
cverports profile

CVE-2026-2391: Death by a Thousand Commas: Deep Dive into CVE-2026-2391

#security #cve #cybersecurity
Comments
2 min read
CVE-2026-26185: Clockwatching: Enumerating Directus Users via Timing Side-Channels
cverports profile

CVE-2026-26185: Clockwatching: Enumerating Directus Users via Timing Side-Channels

#security #cve #cybersecurity
Comments
2 min read
GHSA-435G-FCV3-8J26: High Assurance, Low Availability: The Libcrux Triple Threat
cverports profile

GHSA-435G-FCV3-8J26: High Assurance, Low Availability: The Libcrux Triple Threat

#security #cve #cybersecurity #ghsa
Comments
2 min read
CVE-2026-25759: Command Pwned: Stored XSS in Statamic's Command Palette
cverports profile

CVE-2026-25759: Command Pwned: Stored XSS in Statamic's Command Palette

#security #cve #cybersecurity
Comments
2 min read
GHSA-7PPG-37FH-VCR6: Vector Injection? No, Just Regular Injection: Milvus Critical Auth Bypass
cverports profile

GHSA-7PPG-37FH-VCR6: Vector Injection? No, Just Regular Injection: Milvus Critical Auth Bypass

#security #cve #cybersecurity #ghsa
Comments
2 min read
CVE-2026-25990: Pillow Fight: Weaponizing Photoshop Files via OOB Writes
cverports profile

CVE-2026-25990: Pillow Fight: Weaponizing Photoshop Files via OOB Writes

#security #cve #cybersecurity
Comments
2 min read
CVE-2026-25949: Traefik's Eternal Wait: Bypassing TCP Timeouts with Postgres Magic Bytes
cverports profile

CVE-2026-25949: Traefik's Eternal Wait: Bypassing TCP Timeouts with Postgres Magic Bytes

#security #cve #cybersecurity
Comments
2 min read
CVE-2025-66630: The Null Identity: Unmasking Fiber's Critical 'Zero-UUID' Vulnerability
cverports profile

CVE-2025-66630: The Null Identity: Unmasking Fiber's Critical 'Zero-UUID' Vulnerability

#security #cve #cybersecurity
Comments
2 min read
CVE-2025-64111: CVE-2025-64111: The Gogs Symlink Shimmy to RCE
cverports profile

CVE-2025-64111: CVE-2025-64111: The Gogs Symlink Shimmy to RCE

#security #cve #cybersecurity
Comments
2 min read
CVE-2026-25957: Cube.js Crash Course: Async Nightmares and WebSocket Woes
cverports profile

CVE-2026-25957: Cube.js Crash Course: Async Nightmares and WebSocket Woes

#security #cve #cybersecurity
Comments
2 min read
CVE-2026-25498: Crafting Chaos: RCE in Craft CMS via Yii2 Behavior Injection
cverports profile

CVE-2026-25498: Crafting Chaos: RCE in Craft CMS via Yii2 Behavior Injection

#security #cve #cybersecurity
Comments
2 min read
đź‘‹ Sign in for the ability to sort posts by relevant, latest, or top.