uniget: Command Injection in tool.Check Leading to Arbitrary Code Execution

Published 2026-05-27 by GitHub_M

OpenLearnX: Critical Authentication Bypass via JWT Signature Verification Disabled Leading to Account Takeover

Published 2026-05-27 by GitHub_M

Goobi viewer: Unauthenticated Solr Streaming Expression Proxy

Published 2026-05-27 by GitHub_M

Tanium addressed an unauthorized code execution vulnerability in Connect.

Published 2026-05-27 by Tanium

Volcano: Webhook server vulnerable to OOM due to unbounded HTTP request body size

Published 2026-05-27 by GitHub_M

Anchor: Program<'info, System> is not properly validated

Published 2026-05-27 by GitHub_M

claude-code-cache-fix: Local code execution via Python triple-quote injection in tools/quota-statusline.sh

Published 2026-05-27 by GitHub_M

UltraJSON: Memory Leak in ujson.dump() on Write Failure

Published 2026-05-27 by GitHub_M

pam_usb: Shell injection via device UUID and username in pamusb-conf and pamusb-agent

Published 2026-05-27 by GitHub_M

pam_usb: PINENTRY_FALLBACK_APP environment variable allows arbitrary command execution

Published 2026-05-27 by GitHub_M