✕ Clear all filters
325 articles
▶ Videos →

📰 Dev.to · CVE Reports

325 articles · Updated every 3 hours · View all reads

All Articles 116,259Blog Posts 124,646Tech Tutorials 29,714Research Papers 23,499News 17,168 ⚡ AI Lessons
GHSA-387M-935M-C4VW: GHSA-387m-935m-c4vw: Unbounded HTTP Redirections Enable Infinite Loop Denial of Service in Micronaut HTTP Client
Dev.to · CVE Reports 19h ago
GHSA-387M-935M-C4VW: GHSA-387m-935m-c4vw: Unbounded HTTP Redirections Enable Infinite Loop Denial of Service in Micronaut HTTP Client
GHSA-387m-935m-c4vw: Unbounded HTTP Redirections Enable Infinite Loop Denial of Service in...
GHSA-Q6GH-6V2R-HJV3: GHSA-Q6GH-6V2R-HJV3: Cross-Origin Credential Leakage in Micronaut HTTP Client
Dev.to · CVE Reports 20h ago
GHSA-Q6GH-6V2R-HJV3: GHSA-Q6GH-6V2R-HJV3: Cross-Origin Credential Leakage in Micronaut HTTP Client
GHSA-Q6GH-6V2R-HJV3: Cross-Origin Credential Leakage in Micronaut HTTP...
GHSA-C43V-4CR8-6MVP: GHSA-C43V-4CR8-6MVP: Authenticated Path Traversal in Craft CMS Asset Icon Helper
Dev.to · CVE Reports 21h ago
GHSA-C43V-4CR8-6MVP: GHSA-C43V-4CR8-6MVP: Authenticated Path Traversal in Craft CMS Asset Icon Helper
GHSA-C43V-4CR8-6MVP: Authenticated Path Traversal in Craft CMS Asset Icon...
GHSA-86VW-X4WW-X467: CVE-2026-56382: Remote Code Execution in Craft CMS via Yii2 Event Handler Injection
Dev.to · CVE Reports 21h ago
GHSA-86VW-X4WW-X467: CVE-2026-56382: Remote Code Execution in Craft CMS via Yii2 Event Handler Injection
CVE-2026-56382: Remote Code Execution in Craft CMS via Yii2 Event Handler...
GHSA-382C-VX95-W3P5: GHSA-382C-VX95-W3P5: Missing Access Control on Profile Endpoint and MCP Tool in Gittensory
Dev.to · CVE Reports 🔐 Cybersecurity ⚡ AI Lesson 22h ago
GHSA-382C-VX95-W3P5: GHSA-382C-VX95-W3P5: Missing Access Control on Profile Endpoint and MCP Tool in Gittensory
GHSA-382C-VX95-W3P5: Missing Access Control on Profile Endpoint and MCP Tool in...
CVE-2026-48282: CVE-2026-48282: Unauthenticated Path Traversal and Arbitrary File Write in Adobe ColdFusion Remote Development Services
Dev.to · CVE Reports 🔐 Cybersecurity ⚡ AI Lesson 2d ago
CVE-2026-48282: CVE-2026-48282: Unauthenticated Path Traversal and Arbitrary File Write in Adobe ColdFusion Remote Development Services
CVE-2026-48282: Unauthenticated Path Traversal and Arbitrary File Write in Adobe ColdFusion...
GHSA-CWV4-H3J5-W3CF: GHSA-CWV4-H3J5-W3CF: Stored and Reflected Cross-Site Scripting in rama's Directory Listing Component
Dev.to · CVE Reports 🔐 Cybersecurity ⚡ AI Lesson 2d ago
GHSA-CWV4-H3J5-W3CF: GHSA-CWV4-H3J5-W3CF: Stored and Reflected Cross-Site Scripting in rama's Directory Listing Component
GHSA-CWV4-H3J5-W3CF: Stored and Reflected Cross-Site Scripting in rama's Directory Listing...
GHSA-Q855-8RH5-JFGQ: GHSA-Q855-8RH5-JFGQ: Missing Authentication and CSRF in ha-mcp bare root settings and policy routes
Dev.to · CVE Reports 🔐 Cybersecurity ⚡ AI Lesson 2d ago
GHSA-Q855-8RH5-JFGQ: GHSA-Q855-8RH5-JFGQ: Missing Authentication and CSRF in ha-mcp bare root settings and policy routes
GHSA-Q855-8RH5-JFGQ: Missing Authentication and CSRF in ha-mcp bare root settings and policy...
GHSA-F66Q-9RF6-8795: GHSA-f66q-9rf6-8795: WebAuthn Re-authentication Freshness Bypass in Flask-Security-Too
Dev.to · CVE Reports 🔐 Cybersecurity ⚡ AI Lesson 2d ago
GHSA-F66Q-9RF6-8795: GHSA-f66q-9rf6-8795: WebAuthn Re-authentication Freshness Bypass in Flask-Security-Too
GHSA-f66q-9rf6-8795: WebAuthn Re-authentication Freshness Bypass in...
GHSA-86J7-9J95-VPQJ: GHSA-86J7-9J95-VPQJ: Stored Cross-Site Scripting in Better Auth Plugins via Malicious Redirect URIs
Dev.to · CVE Reports 🔐 Cybersecurity ⚡ AI Lesson 2d ago
GHSA-86J7-9J95-VPQJ: GHSA-86J7-9J95-VPQJ: Stored Cross-Site Scripting in Better Auth Plugins via Malicious Redirect URIs
GHSA-86J7-9J95-VPQJ: Stored Cross-Site Scripting in Better Auth Plugins via Malicious...
GHSA-9H47-PQCX-HJR4: GHSA-9H47-PQCX-HJR4: Insecure Cryptographic Defaults in Better Auth OIDC Provider
Dev.to · CVE Reports 🔐 Cybersecurity ⚡ AI Lesson 2d ago
GHSA-9H47-PQCX-HJR4: GHSA-9H47-PQCX-HJR4: Insecure Cryptographic Defaults in Better Auth OIDC Provider
GHSA-9H47-PQCX-HJR4: Insecure Cryptographic Defaults in Better Auth OIDC...
GHSA-2VG6-77G8-24MP: GHSA-2vg6-77g8-24mp: Insufficient Session Expiration via Incomplete Cleanup in Better Auth Ecosystem
Dev.to · CVE Reports 🔐 Cybersecurity ⚡ AI Lesson 2d ago
GHSA-2VG6-77G8-24MP: GHSA-2vg6-77g8-24mp: Insufficient Session Expiration via Incomplete Cleanup in Better Auth Ecosystem
GHSA-2vg6-77g8-24mp: Insufficient Session Expiration via Incomplete Cleanup in Better Auth...
GHSA-J8V8-G9CX-5QF4: GHSA-J8V8-G9CX-5QF4: Missing Authorization and Access Control Flaw in @better-auth/scim
Dev.to · CVE Reports 🔐 Cybersecurity ⚡ AI Lesson 2d ago
GHSA-J8V8-G9CX-5QF4: GHSA-J8V8-G9CX-5QF4: Missing Authorization and Access Control Flaw in @better-auth/scim
GHSA-J8V8-G9CX-5QF4: Missing Authorization and Access Control Flaw in...
GHSA-FQF6-GXHH-2XHW: GHSA-FQF6-GXHH-2XHW: Silent Data Loss and Behavioral Mismatch in uutils coreutils Backup Logic
Dev.to · CVE Reports 🔐 Cybersecurity ⚡ AI Lesson 2d ago
GHSA-FQF6-GXHH-2XHW: GHSA-FQF6-GXHH-2XHW: Silent Data Loss and Behavioral Mismatch in uutils coreutils Backup Logic
GHSA-FQF6-GXHH-2XHW: Silent Data Loss and Behavioral Mismatch in uutils coreutils Backup...
CVE-2025-46571: CVE-2025-46571: Stored Cross-Site Scripting (XSS) in Open WebUI
Dev.to · CVE Reports 🔐 Cybersecurity ⚡ AI Lesson 2d ago
CVE-2025-46571: CVE-2025-46571: Stored Cross-Site Scripting (XSS) in Open WebUI
CVE-2025-46571: Stored Cross-Site Scripting (XSS) in Open WebUI Vulnerability ID:...
CVE-2025-46719: CVE-2025-46719: Stored XSS and Administrative RCE in Open WebUI
Dev.to · CVE Reports 🔐 Cybersecurity ⚡ AI Lesson 2d ago
CVE-2025-46719: CVE-2025-46719: Stored XSS and Administrative RCE in Open WebUI
CVE-2025-46719: Stored XSS and Administrative RCE in Open WebUI Vulnerability ID:...
CVE-2026-26192: CVE-2026-26192: Stored Cross-Site Scripting via Insecure Iframe Sandbox in Open WebUI
Dev.to · CVE Reports 🔐 Cybersecurity ⚡ AI Lesson 2d ago
CVE-2026-26192: CVE-2026-26192: Stored Cross-Site Scripting via Insecure Iframe Sandbox in Open WebUI
CVE-2026-26192: Stored Cross-Site Scripting via Insecure Iframe Sandbox in Open...
CVE-2026-34225: CVE-2026-34225: Blind Server-Side Request Forgery in Open WebUI Image Edit Endpoint
Dev.to · CVE Reports 🔐 Cybersecurity ⚡ AI Lesson 2d ago
CVE-2026-34225: CVE-2026-34225: Blind Server-Side Request Forgery in Open WebUI Image Edit Endpoint
CVE-2026-34225: Blind Server-Side Request Forgery in Open WebUI Image Edit...
GHSA-VJC7-JRH9-9J86: Unauthenticated CRUD and Sensitive Data Exposure in 9Router API Endpoints
Dev.to · CVE Reports 🔐 Cybersecurity ⚡ AI Lesson 3d ago
GHSA-VJC7-JRH9-9J86: Unauthenticated CRUD and Sensitive Data Exposure in 9Router API Endpoints
Unauthenticated CRUD and Sensitive Data Exposure in 9Router API Endpoints Vulnerability...
CVE-2026-55790: CVE-2026-55790: DOM-Based Cross-Site Scripting in Craft CMS Support Widget
Dev.to · CVE Reports 🔐 Cybersecurity ⚡ AI Lesson 3d ago
CVE-2026-55790: CVE-2026-55790: DOM-Based Cross-Site Scripting in Craft CMS Support Widget
CVE-2026-55790: DOM-Based Cross-Site Scripting in Craft CMS Support Widget Vulnerability...