Aggregator

CVE-2026-25996 | inspektor-gadget Inspektor Gadget up to 0.49.0 Control Character Handler/ANSI Escape Sequence control sequence (GHSA-34r5-6j7w-235f)

VulDB Recent Entries
2 days 23 hours ago
A vulnerability, which was classified as problematic, was found in inspektor-gadget Inspektor Gadget up to 0.49.0. The affected element is an unknown function of the component Control Character Handler/ANSI Escape Sequence Handler. Executing a manipulation can lead to improper neutralization of escape, meta, or control sequences. This vulnerability is tracked as CVE-2026-25996. The attack can be launched remotely. No exploit exists. You should upgrade the affected component.
vuldb.com

CVE-2026-21434 | quic-go webtransport-go up to 0.9.x WT_CLOSE_SESSION allocation of resources (GHSA-g6x7-jq8p-6q9q)

VulDB Recent Entries
2 days 23 hours ago
A vulnerability, which was classified as problematic, has been found in quic-go webtransport-go up to 0.9.x. Impacted is an unknown function. Performing a manipulation of the argument WT_CLOSE_SESSION results in allocation of resources. This vulnerability is identified as CVE-2026-21434. The attack can be initiated remotely. There is not any exploit available. It is advisable to upgrade the affected component.
vuldb.com

CVE-2026-26068 | jm33-m0 emp3r0r up to 3.21.0 /bin/sh command injection (GHSA-h5p4-4xp4-vjpp)

VulDB Recent Entries
2 days 23 hours ago
A vulnerability classified as critical was found in jm33-m0 emp3r0r up to 3.21.0. This issue affects some unknown processing of the file /bin/sh. Such manipulation leads to command injection. This vulnerability is referenced as CVE-2026-26068. It is possible to launch the attack remotely. No exploit is available. Upgrading the affected component is advised.
vuldb.com

CVE-2026-21435 | quic-go webtransport-go up to 0.9.x WT_CLOSE_SESSION resource consumption (GHSA-px4r-g4p3-hhqv)

VulDB Recent Entries
2 days 23 hours ago
A vulnerability classified as problematic has been found in quic-go webtransport-go up to 0.9.x. This vulnerability affects unknown code. This manipulation of the argument WT_CLOSE_SESSION causes resource consumption. The identification of this vulnerability is CVE-2026-21435. It is possible to initiate the attack remotely. There is no exploit available. It is recommended to upgrade the affected component.
vuldb.com

CVE-2026-24895 | php franken up to 1.11.1 Unicode Character ToLower incorrect behavior order: validate before canonicalize (GHSA-g966-83w7-6w38)

VulDB Recent Entries
2 days 23 hours ago
A vulnerability described as critical has been identified in php franken up to 1.11.1. This affects the function ToLower of the component Unicode Character Handler. The manipulation results in incorrect behavior order: validate before canonicalize. This vulnerability was named CVE-2026-24895. The attack may be performed from remote. There is no available exploit. Upgrading the affected component is recommended.
vuldb.com

CVE-2026-24894 | php franken up to 1.11.1 session_start $_SESSION privileges management (GHSA-r3xh-3r3w-47gp)

VulDB Recent Entries
2 days 23 hours ago
A vulnerability marked as critical has been reported in php franken up to 1.11.1. Affected by this issue is the function session_start. The manipulation of the argument $_SESSION leads to improper privilege management. This vulnerability is uniquely identified as CVE-2026-24894. The attack is possible to be carried out remotely. No exploit exists. It is suggested to upgrade the affected component.
vuldb.com

CVE-2026-26020 | Significant-Gravitas AutoGPT up to 0.6.47 improper authorization (GHSA-4crw-9p35-9x54)

VulDB Recent Entries
2 days 23 hours ago
A vulnerability labeled as critical has been found in Significant-Gravitas AutoGPT up to 0.6.47. Affected by this vulnerability is an unknown functionality. Executing a manipulation can lead to improper authorization. This vulnerability is handled as CVE-2026-26020. The attack can be executed remotely. There is not any exploit available. The affected component should be upgraded.
vuldb.com

Managed ad