Grafana's insecure DingDing Alert integration exposes sensitive information

GHSA-46m5-8hpj-p5p5 CVE-2025-3415 MODERATE 5 months ago

Grafana is an open-source platform for monitoring and observability. The Grafana Alerting DingDing integration was not properly protected and could...

go

7

Dependabot PRs

vue-i18n's escapeParameterHtml does not prevent DOM-based XSS through its tag attributes

GHSA-x8qp-wqqm-57ph CVE-2025-53892 MODERATE 5 months ago

### Summary The escapeParameterHtml: true option in Vue I18n is designed to protect against HTML/script injection by escaping interpolated paramete...

npm

1161

Dependabot PRs

4%

Merged

File Browser's Uncontrolled Memory Consumption vulnerability can enable DoS attack due to oversized file processing

GHSA-7xqm-7738-642x CVE-2025-53893 HIGH 5 months ago

### Summary A Denial of Service (DoS) vulnerability exists in the file processing logic when reading a file on endpoint `Filebrowser-Server-IP:PO...

go

No PRs yet

Slice Ring Buffer and Slice Deque contains four unique double-free vulnerabilities triggered through safe APIs

GHSA-7mcq-f592-pf7v HIGH 5 months ago

The crate [`slice-ring-buffer`](https://crates.io/crates/slice-ring-buffer) was developed as a fork of [`slice-deque`](https://crates.io/crates/sli...

cargo

No PRs yet

File Browser’s insecure JWT handling can lead to session replay attacks after logout

GHSA-7xwp-2cpp-p8r7 CVE-2025-53826 HIGH 5 months ago

### Summary File Browser’s authentication system issues long-lived JWT tokens that remain valid even after the user logs out. Please refer to the ...

go

No PRs yet

Eclipse GlassFish is vulnerable to Server Side Request Forgery attacks through specific endpoints

GHSA-f7h5-c625-3795 CVE-2024-9408 HIGH 5 months ago

In Eclipse GlassFish version 6.2.5, it is possible to perform a Server Side Request Forgery attack using specific endpoints.

maven

No PRs yet

Eclipse GlassFish is vulnerable to Login Brute Force attacks through unlimited failed login attempts

GHSA-99f7-hp6j-v6q4 CVE-2024-9342 MODERATE 5 months ago

In Eclipse GlassFish version 7.0.16 or earlier, it is possible to perform login brute force attacks as there is no limitation on the number of fail...

maven

No PRs yet

Eclipse GlassFish is vulnerable to Stored XSS attacks through its Administration Console

GHSA-62g9-99m7-w8wv CVE-2024-10032 MODERATE 5 months ago

In Eclipse GlassFish version 7.0.15, it is possible to perform Stored Cross-Site Scripting attacks through the Administration Console.

maven

No PRs yet

Eclipse GlassFish is vulnerable to Reflected XSS attacks through its Administration Console

GHSA-vqrm-83g6-pfv4 CVE-2024-10029 MODERATE 5 months ago

In Eclipse GlassFish version 7.0.15, it is possible to perform Reflected Cross-Site Scripting attacks through the Administration Console.

maven

No PRs yet

Eclipse GlassFish is vulnerable to Stored XSS attacks through its Administration Console

GHSA-mqxx-c43h-jj9v CVE-2024-9343 MODERATE 5 months ago

In Eclipse GlassFish version 7.0.15, it is possible to perform Stored Cross-Site Scripting attacks through the Administration Console.

maven

No PRs yet

Eclipse GlassFish is vulnerable to Stored XSS attacks through configuration file modifications

GHSA-hp97-5x6g-q538 CVE-2024-10031 MODERATE 5 months ago

In Eclipse GlassFish version 7.0.15 is possible to perform Stored Cross-site Scripting attacks by modifying the configuration file in the underlyin...

maven

No PRs yet

Reactor Netty HTTP is vulnerable to credential leaks during chained redirects

GHSA-4q2v-9p7v-3v22 CVE-2025-22227 MODERATE 5 months ago

In some specific scenarios with chained redirects, Reactor Netty HTTP client leaks credentials. In order for this to happen, the HTTP client must h...

maven

No PRs yet

DSpace is vulnerable to Path Traversal attacks when importing packages using Simple Archive Format

GHSA-vhvx-8xgc-99wf CVE-2025-53622 MODERATE 5 months ago

### Impact A path traversal vulnerability is possible during the import of an archive (in [Simple Archive Format](https://wiki.lyrasis.org/pages/v...

maven

No PRs yet

DSpace is vulnerable to XML External Entity injection during archive imports

GHSA-jjwr-5cfh-7xwh CVE-2025-53621 MODERATE 5 months ago

### Impact Two related XXE injection possibilities have been discovered, **impacting all versions of DSpace prior to 7.6.4, 8.2 and 9.1**. 1. Ext...

maven

No PRs yet

GitHub Kanban MCP Server vulnerable to Command Injection

GHSA-6jx8-rcjx-vmwf CVE-2025-53818 HIGH 5 months ago

The MCP Server at https://github.com/Sunwood-ai-labs/github-kanban-mcp-server/ is written in a way that is vulnerable to command injection vulnerab...

npm

No PRs yet

pyLoad vulnerable to XSS through insecure CAPTCHA

GHSA-8w3f-4r8f-pf53 CVE-2025-53890 CRITICAL 5 months ago

#### Summary An unsafe JavaScript evaluation vulnerability in pyLoad’s CAPTCHA processing code allows **unauthenticated remote attackers** to execu...

pypi

No PRs yet

Directus' insufficient permission checks can enable unauthenticated users to manually trigger Flows

GHSA-7cvf-pxgp-42fc CVE-2025-53889 MODERATE 5 months ago

### Summary Directus Flows with a manual trigger are not validating whether the user triggering the Flow has permissions to the items provided as ...

npm

No PRs yet

Measured is vulnerable to Path Traversal attacks during class initialization

GHSA-29g5-m8v7-v564 MODERATE 5 months ago

### Impact A path traversal vulnerability exists where an attacker with access to manipulate inputs when initializing the `Measured::Cache::Json cl...

rubygems

No PRs yet

Apache CXF is vulnerable to DoS attacks as entire files are read into memory and logged

GHSA-36wv-v2qp-v4g4 CVE-2025-48795 MODERATE 5 months ago

Apache CXF stores large stream based messages as temporary files on the local filesystem. A bug was introduced which means that the entire temporar...

maven

No PRs yet

Directus' exact version number is exposed by the OpenAPI Spec

GHSA-rmjh-cf9q-pv7q CVE-2025-53887 MODERATE 5 months ago

### Summary The exact Directus version number is incorrectly being used as OpenAPI Spec version this means that it is being exposed by the `/serve...

npm

No PRs yet

Directus tokens are not redacted in flow logs, exposing session credentials to all admin

GHSA-f24x-rm6g-3w5v CVE-2025-53886 MODERATE 5 months ago

### Summary When using Directus Flows with the WebHook trigger, all incoming request details are logged including security sensitive data like acc...

npm

No PRs yet

Directus is vulnerable to sensitive data exposure as user data is not being redacted when logged

GHSA-x3vm-88hf-gpxp CVE-2025-53885 MODERATE 5 months ago

### Summary When using Directus Flows to handle CRUD events for users it is possible to log the incoming data to console using the "Log to Console...

npm

No PRs yet

resolv vulnerable to DoS via insufficient DNS domain name length validation

GHSA-xh69-987w-hrp8 CVE-2025-24294 MODERATE 5 months ago

A denial of service vulnerability has been discovered in the resolv gem bundled with Ruby. ## Details The vulnerability is caused by an insufficie...

rubygems

No PRs yet

XWiki Rendering is vulnerable to RCE attacks when processing nested macros

GHSA-32mf-57h2-64x9 CVE-2025-53836 CRITICAL 5 months ago

### Impact The default macro content parser didn't preserve the restricted attribute of the transformation context when executing nested macros. T...

maven

No PRs yet

XWiki Rendering is vulnerable to XSS attacks through insecure XHTML syntax

GHSA-w3wh-g4m9-783p CVE-2025-53835 CRITICAL 5 months ago

### Impact The XHTML syntax depended on the `xdom+xml/current` syntax which allows the creation of raw blocks that permit the insertion of arbitrar...

maven

No PRs yet

LaRecipe is vulnerable to Server-Side Template Injection attacks

GHSA-jv7x-xhv2-p5v2 CVE-2025-53833 CRITICAL 5 months ago

### Impact Attackers could: 1. Execute arbitrary commands on the server 2. Access sensitive environment variables 3. Escalate access depending on s...

packagist

No PRs yet

AIOHTTP is vulnerable to HTTP Request/Response Smuggling through incorrect parsing of chunked trailer sections

GHSA-9548-qrrj-x5pj CVE-2025-53643 LOW 5 months ago

### Summary The Python parser is vulnerable to a request smuggling vulnerability due to not parsing trailer sections of an HTTP request. ### Impac...

pypi

32

Dependabot PRs

3%

Merged

Indico vulnerability allows attackers to bulk dump user details

GHSA-q28v-664f-q6wj CVE-2025-53640 MODERATE 5 months ago

### Impact An endpoint used to display details of users listed in certain fields (such as ACLs) could be misused to dump basic user details (such a...

pypi

No PRs yet

Job Iteration API is vulnerable to OS Command Injection attack through its CsvEnumerator class

GHSA-6qjf-g333-pv38 CVE-2025-53623 CRITICAL 5 months ago

### Impact There is an arbitrary code execution vulnerability in the `CsvEnumerator` class of the `job-iteration` repository. This vulnerability ca...

rubygems

11

Dependabot PRs

45%

Merged

Apache Jackrabbit vulnerable to blind XXE attack due to insecure document build

GHSA-44c3-38h8-9fh9 CVE-2025-53689 HIGH 5 months ago

Blind XXE vulnerabilities in jackrabbit-spi-commons and jackrabbit-core in Apache Jackrabbit < 2.23.2 due to usage of an unsecured document build t...

maven

No PRs yet

py-libp2p is vulnerable to DoS attacks through use of large RSA keys

GHSA-x8c6-gj59-6rx8 CVE-2025-29606 MODERATE 5 months ago

py-libp2p before 0.2.3 allows a peer to cause a denial of service (resource consumption) via a large RSA key.

pypi

No PRs yet

Roundup is vulnerable to XSS through interactions between URLs and issue tracker templates

GHSA-qxh9-qmf2-rhwc CVE-2025-53865 MODERATE 5 months ago

In Roundup before 2.5.0, XSS can occur via interaction between URLs and issue tracker templates (devel and responsive).

pypi

No PRs yet

Apache Zeppelin exposes server resources to unauthenticated attackers

GHSA-7pgf-ppxw-8624 CVE-2024-41169 HIGH 5 months ago

The attacker can use the raft server protocol in an unauthenticated way. The attacker can see the server's resources, including directories and fil...

maven

No PRs yet

static-alloc vulnerability leads to uninitialized read after allocating MemBump

GHSA-xrrq-rrgq-h89w LOW 5 months ago

The affected function, `MemBump::new()`, would allocate memory without initializing it. Subsequently calling the created value's various `alloc`met...

cargo

No PRs yet

ExecuTorch vulnerable to Heap-based Buffer Overflow attack

GHSA-h952-963h-rv99 CVE-2025-30402 HIGH 5 months ago

A heap-buffer-overflow vulnerability in the loading of ExecuTorch methods can cause the runtime to crash and potentially result in code execution o...

maven pypi swift

No PRs yet

Better Call routing bug can lead to Cache Deception

GHSA-hq75-xg7r-rx6c MODERATE 5 months ago

### Summary Using a CDN that caches (`/**/*.png`, `/**/*.json`, `/**/*.css`, etc...) requests, a cache deception can emerge. This could lead to un...

npm

No PRs yet

phpThumb is vulnerable to Command Injection through its gif_outputAsJpeg function

GHSA-q745-cfqh-hcrw CVE-2025-52994 MODERATE 5 months ago

gif_outputAsJpeg in phpThumb through 1.7.23 allows phpthumb.gif.php OS Command Injection via a crafted parameter value. This is fixed in 1.7.23-202...

packagist

No PRs yet

Apache Commons Lang is vulnerable to Uncontrolled Recursion when processing long inputs

GHSA-j288-q9x7-2f5v CVE-2025-48924 MODERATE 5 months ago

Uncontrolled Recursion vulnerability in Apache Commons Lang. This issue affects Apache Commons Lang: Starting with commons-lang:commons-lang 2.0 t...

maven

763

Dependabot PRs

23%

Merged

Transformers is vulnerable to ReDoS attack through its DonutProcessor class

GHSA-37mw-44qp-f5jm CVE-2025-3933 MODERATE 5 months ago

A Regular Expression Denial of Service (ReDoS) vulnerability was discovered in the Hugging Face Transformers library, specifically within the Donut...

pypi

No PRs yet

Nimbus JOSE + JWT is vulnerable to DoS attacks when processing deeply nested JSON

GHSA-xwmg-2g98-w7v9 CVE-2025-53864 MODERATE 5 months ago

Connect2id Nimbus JOSE + JWT before 10.0.2 allows a remote attacker to cause a denial of service via a deeply nested JSON object supplied in a JWT ...

maven

48

Dependabot PRs

25%

Merged

Apache Tomcat Coyote vulnerable to Denial of Service via excessive HTTP/2 streams

GHSA-25xr-qj8w-c4vf CVE-2025-53506 MODERATE 5 months ago

Uncontrolled Resource Consumption vulnerability in Apache Tomcat if an HTTP/2 client did not acknowledge the initial settings frame that reduces th...

maven

No PRs yet

Apache Tomcat Catalina is vulnerable to DoS attack through bypassing of size limits

GHSA-wr62-c79q-cv37 CVE-2025-52520 MODERATE 5 months ago

For some unlikely configurations of multipart upload, an Integer Overflow vulnerability in Apache Tomcat could lead to a DoS via bypassing of size ...

maven

No PRs yet

Apache Tomcat Utilities is vulnerable to resource exhaustion when using the APR/Native connector

GHSA-4j3c-42xv-3f84 CVE-2025-52434 MODERATE 5 months ago

Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition') vulnerability in Apache Tomcat when using the APR/Nativ...

maven

No PRs yet

Chall-Manager's HTTP Gateway is vulnerable to DoS due to missing header timeout

GHSA-ggmv-j932-q89q CVE-2025-53634 HIGH 5 months ago

### Impact The HTTP Gateway processes headers, but with no timeout set. With a Slowloris attack, an attacker could cause Denial of Service (DoS). E...

go

No PRs yet

Chall-Manager's scenario decoding process does not check for zip bombs

GHSA-r7fm-3pqm-ww5w CVE-2025-53633 HIGH 5 months ago

### Impact When decoding a scenario (i.e. a zip archive), the size of the decoded content is not checked, potentially leading to zip bombs decompr...

go

No PRs yet

Chall-Manager is vulnerable to Path Traversal when extracting/decoding a zip archive

GHSA-3gv2-v3jx-r9fh CVE-2025-53632 HIGH 5 months ago

### Impact When decoding a scenario (i.e. a zip archive), the path of the file to write is not checked, potentially leading to zip slips. Exploitat...

go

No PRs yet

@pdfme/common vulnerable to to XSS and Prototype Pollution through its expression evaluation

GHSA-54xv-94qv-2gfg CVE-2025-53626 MODERATE 5 months ago

## Summary The expression evaluation feature in pdfme 5.2.0 to 5.4.0 contains critical vulnerabilities allowing sandbox escape leading to XSS and p...

npm

No PRs yet

Matrix Rust SDK vulnerable to SQL Injection through its EventCache implementation

GHSA-275g-g844-73jh CVE-2025-53549 MODERATE 5 months ago

An SQL injection vulnerability in the `EventCache::find_event_with_relations` method of matrix-sdk 0.11 and 0.12 allows malicious room members to e...

cargo

3

Dependabot PRs

100%

Merged

Parse Server exposes the data schema via GraphQL API

GHSA-48q3-prgv-gm4w CVE-2025-53364 MODERATE 5 months ago

### Impact The Parse Server GraphQL API previously allowed public access to the GraphQL schema without requiring a session token or the master key...

npm

28

Dependabot PRs

7%

Merged

LlamaIndex vulnerable to data loss through hash collisions in its DocugamiReader class

GHSA-5hq9-5r78-2gjh CVE-2025-6211 MODERATE 5 months ago

A vulnerability in the DocugamiReader class of the run-llama/llama_index repository, up to but excluding version 0.12.41, involves the use of MD5 h...

pypi

No PRs yet