JSON-RPC - API Security Blog

Security update for kubo (moderate)

openSUSE Security Update: Security update for kubo Announcement ID: openSUSE-SU-2025:0288-1 Rating: moderate References: #1241776 Cross-References: CVE-2025-22872 CVSS score ...

August 07, 2025

better-call

Better Call Better call is a tiny web framework for creating endpoints that can be invoked as a normal function or mounted to a router to be served by any web standard compatible server (like Bun, nod ...

August 06, 2025

python-a2a

August 04, 2025

Debian dla-4252 : snapclient – security update

The remote Debian 11 host has packages installed that are affected by a vulnerability as referenced in the dla-4252 advisory. ------------------------------------------------------------------------- ...

July 28, 2025

[SECURITY] [DLA 4252-1] snapcast security update

Debian LTS Advisory DLA-4252-1 [email protected] https://www.debian.org/lts/security/ Daniel Leidert July 27, 2025 https: ...

July 27, 2025

Exploit for Unprotected Alternate Channel in Crushftp

💥 CVE-2025-54309 - CrushFTP Unauthenticated Remote Command Execution Exploit PoC by Issam Junior 🚨 Vulnerability Overview CVE: CVE-2025-54309 CVSS: 9.8 (Critical) Product: CrushFTP Impact ...

July 26, 2025

MAL-2025-5955 Malicious code in shardeum-json-rpc (npm)

-= Per source details. Do not edit below this line.=- Source: ghsa-malware (ac467fd35bd9312b691bb92f0e8b7fa7658031ed548664e1676022ec8cae3713) Any computer that has this package installed or running sh ...

July 21, 2025

EUVD-2024-18096

A vulnerability in the JSON-RPC API feature in Cisco Crosswork Network Services Orchestrator (NSO) and ConfD that is used by the web-based management interfaces of Cisco Optical Site Manager and Cisco ...

July 04, 2025