DEV Community

# cve

Posts

đź‘‹ Sign in for the ability to sort posts by relevant, latest, or top.
CVE-2025-54997: The Janitor's Key: Turning OpenBao Audit Logs into RCE
cverports profile

CVE-2025-54997: The Janitor's Key: Turning OpenBao Audit Logs into RCE

#security #cve #cybersecurity
Comments
2 min read
CVE-2026-22785: Orval Overload: From OpenAPI Spec to Remote Code Execution
cverports profile

CVE-2026-22785: Orval Overload: From OpenAPI Spec to Remote Code Execution

#security #cve #cybersecurity
Comments
2 min read
CVE-2026-22817: Identity Theft on the Edge: Exploiting JWT Algorithm Confusion in Hono
cverports profile

CVE-2026-22817: Identity Theft on the Edge: Exploiting JWT Algorithm Confusion in Hono

#security #cve #cybersecurity
Comments
2 min read
CVE-2026-23996: The Tell-Tale Delay: Timing Side-Channels in fastapi-api-key
cverports profile

CVE-2026-23996: The Tell-Tale Delay: Timing Side-Channels in fastapi-api-key

#security #cve #cybersecurity
Comments
2 min read
GHSA-VX9W-5CX4-9796: Crawl4AI: When Web Scrapers Become File Servers
cverports profile

GHSA-VX9W-5CX4-9796: Crawl4AI: When Web Scrapers Become File Servers

#security #cve #cybersecurity #ghsa
Comments
2 min read
GHSA-F2MF-Q878-GH58: Parsl Tongue: SQL Injection in High-Performance Computing Visualization
cverports profile

GHSA-F2MF-Q878-GH58: Parsl Tongue: SQL Injection in High-Performance Computing Visualization

#security #cve #cybersecurity #ghsa
Comments
2 min read
CVE-2026-21441: The Invisible Avalanche: urllib3 Decompression Bomb
cverports profile

CVE-2026-21441: The Invisible Avalanche: urllib3 Decompression Bomb

#security #cve #cybersecurity
Comments
2 min read
CVE-2026-22200: Paper Cuts to Pwnage: Turning osTicket PDF Exports into RCE
cverports profile

CVE-2026-22200: Paper Cuts to Pwnage: Turning osTicket PDF Exports into RCE

#security #cve #cybersecurity
Comments
2 min read
CVE-2025-32444: Pickle Rick-Roll: Critical RCE in vLLM's Mooncake Integration
cverports profile

CVE-2025-32444: Pickle Rick-Roll: Critical RCE in vLLM's Mooncake Integration

#security #cve #cybersecurity
Comments
2 min read
GHSA-RHFX-M35P-FF5J: Borrow Checker's Revenge: Stacked Borrows Violation in Rust's `lru` Crate
cverports profile

GHSA-RHFX-M35P-FF5J: Borrow Checker's Revenge: Stacked Borrows Violation in Rust's `lru` Crate

#security #cve #cybersecurity #ghsa
Comments
2 min read
CVE-2026-22708: Trust Issues: Bypassing Cursor AI's 'Safe Mode' via Shell Built-ins
cverports profile

CVE-2026-22708: Trust Issues: Bypassing Cursor AI's 'Safe Mode' via Shell Built-ins

#security #cve #cybersecurity
Comments
2 min read
CVE-2025-61984: Bash a Newline: The SSH ProxyCommand RCE You Didn't Know You Had
cverports profile

CVE-2025-61984: Bash a Newline: The SSH ProxyCommand RCE You Didn't Know You Had

#security #cve #cybersecurity
Comments
2 min read
CVE-2026-23498: Shopware 6: Mapping Your Way to RCE via Twig Type Juggling
cverports profile

CVE-2026-23498: Shopware 6: Mapping Your Way to RCE via Twig Type Juggling

#security #cve #cybersecurity
Comments
2 min read
CVE-2025-66648: Vega's Visual Betrayal: Leaking the Window via Internal Functions
cverports profile

CVE-2025-66648: Vega's Visual Betrayal: Leaking the Window via Internal Functions

#security #cve #cybersecurity
Comments
2 min read
CVE-2026-24785: The Sound of Silence: Breaking Clatter's Post-Quantum Promises (CVE-2026-24785)
cverports profile

CVE-2026-24785: The Sound of Silence: Breaking Clatter's Post-Quantum Promises (CVE-2026-24785)

#security #cve #cybersecurity
Comments
2 min read
đź‘‹ Sign in for the ability to sort posts by relevant, latest, or top.