CVE-2025-57817

creation_timestamp| type| source ---|---|--- 2025-09-08 23:23:37+00:00| seen|...Read More ...

Continue Reading

September 09, 2025

CVE-2025-58444

creation_timestamp| type| source ---|---|--- 2025-09-08 23:18:37+00:00| seen|...Read More ...

Continue Reading

September 09, 2025

CVE-2025-58451

creation_timestamp| type| source ---|---|--- 2025-09-08 23:38:38+00:00| seen|...Read More ...

Continue Reading

September 09, 2025

EUVD-2025-27177

pREST (PostgreSQL REST), is an API that delivers an application on top of a Postgres database. SQL injection is possible in versions prior to 2.0.0-rc3. The validation present in versions prior to 2.0 ...

Continue Reading

September 08, 2025

@akoskm/create-mcp-server-stdio is vulnerable to MCP Server Command Injection through `exec` API

Command Injection in MCP Server The MCP Server at https://github.com/akoskm/create-mcp-server-stdio is written in a way that is vulnerable to command injection vulnerability attacks as part of some of ...

Continue Reading

September 08, 2025

EUVD-2025-27167

@akoskm/create-mcp-server-stdio is an MCP server starter kit that uses the StdioServerTransport. Prior to version 0.0.13, the MCP Server is written in a way that is vulnerable to command injection vul ...

Continue Reading

September 08, 2025

Fides Webserver API is Vulnerable to OAuth Client Privilege Escalation

Summary The OAuth client creation and update endpoints of the Fides Webserver API do not properly authorize scope assignment. This allows highly privileged users with client:create or client:update pe ...

Continue Reading

September 08, 2025

Fides Webserver API Rate Limiting Vulnerability in Proxied Environments

Summary The Fides Webserver API's built-in IP-based rate limiting is ineffective in environments with CDNs, proxies or load balancers. The system incorrectly applies rate limits based on directly ...

Continue Reading

September 08, 2025

1 82 83 84 85 86 9,321

Back to Main
Subscribe for the latest news: