DEV Community

# cve

Posts

đź‘‹ Sign in for the ability to sort posts by relevant, latest, or top.
CVE-2025-54136 MCPoison: Why Hosted MCP Servers Have a Smaller Attack Surface
custodiaadmin profile

CVE-2025-54136 MCPoison: Why Hosted MCP Servers Have a Smaller Attack Surface

#security #cve #mcp #mcpoison
Comments
4 min read
CISA Adds VMware Aria Operations RCE Flaw to KEV Catalog After Active Exploitation
deepseax profile

CISA Adds VMware Aria Operations RCE Flaw to KEV Catalog After Active Exploitation

#vmware #cve #cisakev #patchmanagement
Comments
4 min read
CVE-2026-28415: Open Redirect in Gradio OAuth Flow Enables Phishing Attacks
cverports profile

CVE-2026-28415: Open Redirect in Gradio OAuth Flow Enables Phishing Attacks

#security #cve #cybersecurity
Comments
2 min read
CVE-2026-28426: Chain Reaction: Stored XSS and Antlers Template Injection in Statamic Control Panel
cverports profile

CVE-2026-28426: Chain Reaction: Stored XSS and Antlers Template Injection in Statamic Control Panel

#security #cve #cybersecurity
Comments
2 min read
CVE-2026-28414: Gradio Path Traversal: Exploiting Python 3.13 Path Semantics on Windows
cverports profile

CVE-2026-28414: Gradio Path Traversal: Exploiting Python 3.13 Path Semantics on Windows

#security #cve #cybersecurity
Comments
2 min read
CVE-2026-28351: CVE-2026-28351: Uncontrolled Resource Consumption in pypdf RunLengthDecode
cverports profile

CVE-2026-28351: CVE-2026-28351: Uncontrolled Resource Consumption in pypdf RunLengthDecode

#security #cve #cybersecurity
1
Comments
2 min read
GHSA-J8CJ-HW74-64JV: Critical Unsoundness in Rust 'hivex' Crate Leading to Double-Free and Use-After-Free
cverports profile

GHSA-J8CJ-HW74-64JV: Critical Unsoundness in Rust 'hivex' Crate Leading to Double-Free and Use-After-Free

#security #cve #cybersecurity #ghsa
1
Comments
2 min read
JWT Algorithm Confusion Attacks: CVE-2026-22817, CVE-2026-27804, and CVE-2026-23552 Fix Guide
iamdevbox profile

JWT Algorithm Confusion Attacks: CVE-2026-22817, CVE-2026-27804, and CVE-2026-23552 Fix Guide

#jwt #security #oauth #cve
1
Comments
6 min read
GHSA-GQ83-8Q7Q-9HFX: GHSA-GQ83-8Q7Q-9HFX: Race Condition in OpenClaw Sandbox Registry Leads to Data Corruption
cverports profile

GHSA-GQ83-8Q7Q-9HFX: GHSA-GQ83-8Q7Q-9HFX: Race Condition in OpenClaw Sandbox Registry Leads to Data Corruption

#security #cve #cybersecurity #ghsa
1
Comments
2 min read
GHSA-2CH6-X3G4-7759: GHSA-2CH6-X3G4-7759: Authorization Bypass in OpenClaw via Identity Confusion
cverports profile

GHSA-2CH6-X3G4-7759: GHSA-2CH6-X3G4-7759: Authorization Bypass in OpenClaw via Identity Confusion

#security #cve #cybersecurity #ghsa
1
Comments
2 min read
CVE-2026-27899: CVE-2026-27899: The 'Are You God?' Checkbox in WireGuard Portal
cverports profile

CVE-2026-27899: CVE-2026-27899: The 'Are You God?' Checkbox in WireGuard Portal

#security #cve #cybersecurity
1
Comments
2 min read
GHSA-FVFV-PPW4-7H2W: n8n Guardrail Bypass: When AI Safety Rails Are Made of Paper
cverports profile

GHSA-FVFV-PPW4-7H2W: n8n Guardrail Bypass: When AI Safety Rails Are Made of Paper

#security #cve #cybersecurity #ghsa
Comments
2 min read
CVE-2026-22728: The Old Switcheroo: Unsealing Secrets via Metadata Manipulation in Bitnami Sealed Secrets
cverports profile

CVE-2026-22728: The Old Switcheroo: Unsealing Secrets via Metadata Manipulation in Bitnami Sealed Secrets

#security #cve #cybersecurity
Comments
2 min read
CVE-2026-27809: Death by Pixels: Unpacking CVE-2026-27809 in psd-tools
cverports profile

CVE-2026-27809: Death by Pixels: Unpacking CVE-2026-27809 in psd-tools

#security #cve #cybersecurity
Comments
2 min read
CVE-2026-27465: Fleet's Open Secret: The Google Calendar Key Leak
cverports profile

CVE-2026-27465: Fleet's Open Secret: The Google Calendar Key Leak

#security #cve #cybersecurity
Comments
2 min read
đź‘‹ Sign in for the ability to sort posts by relevant, latest, or top.