共计 187 篇文章
2025
langgenius/dify versions 110 to 112 are vulnerable to unsanitized input in the code node,
lunary-ai/lunary versions prior to 1924 are vulnerable to stored cross-site scripting (XSS) An
A remote attacker with administrator account can gain full control of the device due to improper
A remote unauthenticated attacker may use default certificates to generate JWT Tokens and gain
An OS command injection issue exists in Nimesa Backup and Recovery v23 and v24 If this
The agent in Quest KACE Systems Management Appliance (SMA) before 14097 and 141x before 141
MCP Python SDK has Unhandled Exception in Streamable HTTP Transport ,Leading to Denial of Service
MCP Python SDK vulnerability in the FastMCP Server causes validation error, leading to DoS
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')
Deserialization of Untrusted Data vulnerability in BestWpDeveloper WooCommerce Product Multi