✕ Clear all filters
334 articles
▶ Videos →

📰 Dev.to · CVE Reports

334 articles · Updated every 3 hours · View all reads

All Articles 118,229Blog Posts 125,766Tech Tutorials 30,246Research Papers 23,714News 17,293 ⚡ AI Lessons
CVE-2026-54088: CVE-2026-54088: Pre-Authentication Remote Code Execution in File Browser Hook Authentication
Dev.to · CVE Reports 1d ago
CVE-2026-54088: CVE-2026-54088: Pre-Authentication Remote Code Execution in File Browser Hook Authentication
CVE-2026-54088: Pre-Authentication Remote Code Execution in File Browser Hook...
GHSA-QV4M-M73M-8HJ7: GHSA-qv4m-m73m-8hj7: Authenticated Arbitrary File Upload leading to Remote Code Execution in NotrinosERP
Dev.to · CVE Reports 1d ago
GHSA-QV4M-M73M-8HJ7: GHSA-qv4m-m73m-8hj7: Authenticated Arbitrary File Upload leading to Remote Code Execution in NotrinosERP
GHSA-qv4m-m73m-8hj7: Authenticated Arbitrary File Upload leading to Remote Code Execution in...
GHSA-XRMC-C5CG-RV7X: GHSA-XRMC-C5CG-RV7X: Security Bypass Vulnerability in safeinstall-cli Command Parser
Dev.to · CVE Reports 1d ago
GHSA-XRMC-C5CG-RV7X: GHSA-XRMC-C5CG-RV7X: Security Bypass Vulnerability in safeinstall-cli Command Parser
GHSA-XRMC-C5CG-RV7X: Security Bypass Vulnerability in safeinstall-cli Command...
GHSA-WM45-QH3G-V83F: GHSA-WM45-QH3G-V83F: Arbitrary Server-Side File Read and Exfiltration via Attachment Upload in mcp-atlassian
Dev.to · CVE Reports 1d ago
GHSA-WM45-QH3G-V83F: GHSA-WM45-QH3G-V83F: Arbitrary Server-Side File Read and Exfiltration via Attachment Upload in mcp-atlassian
GHSA-WM45-QH3G-V83F: Arbitrary Server-Side File Read and Exfiltration via Attachment Upload...
GHSA-G5R6-GV6M-F5JV: GHSA-G5R6-GV6M-F5JV: Arbitrary File Read and Exfiltration in mcp-atlassian via Missing Path Validation
Dev.to · CVE Reports 1d ago
GHSA-G5R6-GV6M-F5JV: GHSA-G5R6-GV6M-F5JV: Arbitrary File Read and Exfiltration in mcp-atlassian via Missing Path Validation
GHSA-G5R6-GV6M-F5JV: Arbitrary File Read and Exfiltration in mcp-atlassian via Missing Path...
CVE-2026-48598: CVE-2026-48598: Multipart Part Header Injection and Request Smuggling in elixir-tesla
Dev.to · CVE Reports 🔐 Cybersecurity ⚡ AI Lesson 2d ago
CVE-2026-48598: CVE-2026-48598: Multipart Part Header Injection and Request Smuggling in elixir-tesla
CVE-2026-48598: Multipart Part Header Injection and Request Smuggling in...
CVE-2026-48862: CVE-2026-48862: Unbounded Resource Allocation via HTTP/2 PUSH_PROMISE Flooding in Mint
Dev.to · CVE Reports 2d ago
CVE-2026-48862: CVE-2026-48862: Unbounded Resource Allocation via HTTP/2 PUSH_PROMISE Flooding in Mint
CVE-2026-48862: Unbounded Resource Allocation via HTTP/2 PUSH_PROMISE Flooding in...
CVE-2026-52778: CVE-2026-52778: Unauthenticated Remote Code Execution and ReDoS in YesWiki Bazar Formula Calculator
Dev.to · CVE Reports 2d ago
CVE-2026-52778: CVE-2026-52778: Unauthenticated Remote Code Execution and ReDoS in YesWiki Bazar Formula Calculator
CVE-2026-52778: Unauthenticated Remote Code Execution and ReDoS in YesWiki Bazar Formula...
CVE-2026-54651: CVE-2026-54651: Infinite Loop Vulnerability in pypdf Article Thread Parser
Dev.to · CVE Reports 🔐 Cybersecurity ⚡ AI Lesson 2d ago
CVE-2026-54651: CVE-2026-54651: Infinite Loop Vulnerability in pypdf Article Thread Parser
CVE-2026-54651: Infinite Loop Vulnerability in pypdf Article Thread Parser Vulnerability...
GHSA-387M-935M-C4VW: GHSA-387m-935m-c4vw: Unbounded HTTP Redirections Enable Infinite Loop Denial of Service in Micronaut HTTP Client
Dev.to · CVE Reports 2d ago
GHSA-387M-935M-C4VW: GHSA-387m-935m-c4vw: Unbounded HTTP Redirections Enable Infinite Loop Denial of Service in Micronaut HTTP Client
GHSA-387m-935m-c4vw: Unbounded HTTP Redirections Enable Infinite Loop Denial of Service in...
GHSA-Q6GH-6V2R-HJV3: GHSA-Q6GH-6V2R-HJV3: Cross-Origin Credential Leakage in Micronaut HTTP Client
Dev.to · CVE Reports 2d ago
GHSA-Q6GH-6V2R-HJV3: GHSA-Q6GH-6V2R-HJV3: Cross-Origin Credential Leakage in Micronaut HTTP Client
GHSA-Q6GH-6V2R-HJV3: Cross-Origin Credential Leakage in Micronaut HTTP...
GHSA-C43V-4CR8-6MVP: GHSA-C43V-4CR8-6MVP: Authenticated Path Traversal in Craft CMS Asset Icon Helper
Dev.to · CVE Reports 2d ago
GHSA-C43V-4CR8-6MVP: GHSA-C43V-4CR8-6MVP: Authenticated Path Traversal in Craft CMS Asset Icon Helper
GHSA-C43V-4CR8-6MVP: Authenticated Path Traversal in Craft CMS Asset Icon...
GHSA-86VW-X4WW-X467: CVE-2026-56382: Remote Code Execution in Craft CMS via Yii2 Event Handler Injection
Dev.to · CVE Reports 2d ago
GHSA-86VW-X4WW-X467: CVE-2026-56382: Remote Code Execution in Craft CMS via Yii2 Event Handler Injection
CVE-2026-56382: Remote Code Execution in Craft CMS via Yii2 Event Handler...
GHSA-382C-VX95-W3P5: GHSA-382C-VX95-W3P5: Missing Access Control on Profile Endpoint and MCP Tool in Gittensory
Dev.to · CVE Reports 🔐 Cybersecurity ⚡ AI Lesson 2d ago
GHSA-382C-VX95-W3P5: GHSA-382C-VX95-W3P5: Missing Access Control on Profile Endpoint and MCP Tool in Gittensory
GHSA-382C-VX95-W3P5: Missing Access Control on Profile Endpoint and MCP Tool in...
CVE-2026-48282: CVE-2026-48282: Unauthenticated Path Traversal and Arbitrary File Write in Adobe ColdFusion Remote Development Services
Dev.to · CVE Reports 🔐 Cybersecurity ⚡ AI Lesson 3d ago
CVE-2026-48282: CVE-2026-48282: Unauthenticated Path Traversal and Arbitrary File Write in Adobe ColdFusion Remote Development Services
CVE-2026-48282: Unauthenticated Path Traversal and Arbitrary File Write in Adobe ColdFusion...
GHSA-CWV4-H3J5-W3CF: GHSA-CWV4-H3J5-W3CF: Stored and Reflected Cross-Site Scripting in rama's Directory Listing Component
Dev.to · CVE Reports 🔐 Cybersecurity ⚡ AI Lesson 4d ago
GHSA-CWV4-H3J5-W3CF: GHSA-CWV4-H3J5-W3CF: Stored and Reflected Cross-Site Scripting in rama's Directory Listing Component
GHSA-CWV4-H3J5-W3CF: Stored and Reflected Cross-Site Scripting in rama's Directory Listing...
GHSA-Q855-8RH5-JFGQ: GHSA-Q855-8RH5-JFGQ: Missing Authentication and CSRF in ha-mcp bare root settings and policy routes
Dev.to · CVE Reports 🔐 Cybersecurity ⚡ AI Lesson 4d ago
GHSA-Q855-8RH5-JFGQ: GHSA-Q855-8RH5-JFGQ: Missing Authentication and CSRF in ha-mcp bare root settings and policy routes
GHSA-Q855-8RH5-JFGQ: Missing Authentication and CSRF in ha-mcp bare root settings and policy...
GHSA-F66Q-9RF6-8795: GHSA-f66q-9rf6-8795: WebAuthn Re-authentication Freshness Bypass in Flask-Security-Too
Dev.to · CVE Reports 🔐 Cybersecurity ⚡ AI Lesson 4d ago
GHSA-F66Q-9RF6-8795: GHSA-f66q-9rf6-8795: WebAuthn Re-authentication Freshness Bypass in Flask-Security-Too
GHSA-f66q-9rf6-8795: WebAuthn Re-authentication Freshness Bypass in...
GHSA-86J7-9J95-VPQJ: GHSA-86J7-9J95-VPQJ: Stored Cross-Site Scripting in Better Auth Plugins via Malicious Redirect URIs
Dev.to · CVE Reports 🔐 Cybersecurity ⚡ AI Lesson 4d ago
GHSA-86J7-9J95-VPQJ: GHSA-86J7-9J95-VPQJ: Stored Cross-Site Scripting in Better Auth Plugins via Malicious Redirect URIs
GHSA-86J7-9J95-VPQJ: Stored Cross-Site Scripting in Better Auth Plugins via Malicious...
GHSA-9H47-PQCX-HJR4: GHSA-9H47-PQCX-HJR4: Insecure Cryptographic Defaults in Better Auth OIDC Provider
Dev.to · CVE Reports 🔐 Cybersecurity ⚡ AI Lesson 4d ago
GHSA-9H47-PQCX-HJR4: GHSA-9H47-PQCX-HJR4: Insecure Cryptographic Defaults in Better Auth OIDC Provider
GHSA-9H47-PQCX-HJR4: Insecure Cryptographic Defaults in Better Auth OIDC...