Cherry Studio is a desktop client that supports for multiple LLM providers. In version 1.5.1, a remote code execution (RCE) vulnerability exists in the Cherry Studio platform when connecting to stream ...
Continue Reading
August 13, 2025
Authentik has insufficient check for account active status when authenticating with OAuth/SAML Sources in goauthentik.io. NOTE: The source advisory for this report contains additional versions that co ...
Continue Reading
August 11, 2025
Summary In the latest version 6.0.0, the OAuth logout functionality performs a URL redirect action when clearing tokens. However, this parameter is user-controllable and lacks security validation, all ...
Continue Reading
August 11, 2025
A vulnerability, which was classified as problematic, was found in zlt2000 microservices-platform up to 6.0.0. This affects the function onLogoutSuccess of the file src/main/java/com/central/oauth/han ...
Continue Reading
August 10, 2025
Name of the Vulnerable Software and Affected Versions: zlt2000 microservices-platform versions through 6.0.0 Description: A problematic issue exists in zlt2000 microservices-platform. The issue is rel ...
Continue Reading
August 09, 2025
Vulnerabilities for packages: rqlite-fips, amass, cilium, direnv, supercronic, gobump, cluster-api-ipam-provider-in-cluster, amazon-ssm-agent-fips, crossplane-provider-gcp, skopeo, conjur-cli, openbao ...
Continue Reading
August 09, 2025
Vulnerabilities for packages: rqlite-fips, amass, cilium, direnv, supercronic, gobump, cluster-api-ipam-provider-in-cluster, amazon-ssm-agent-fips, crossplane-provider-gcp, skopeo, conjur-cli, openbao ...
Continue Reading
August 09, 2025
Vulnerabilities for packages: ini-file, kiali, buildkitd, ytt, fixuid, flux, aws-node-termination-handler, victoriametrics-cluster, gotestsum, cargobump, git-credential-oauth, cilium, bom, licenseclas ...
Continue Reading
August 09, 2025
Back to Main
