Posts of last 24 hours
A vulnerability, which was classified as problematic, was found in lobehub LobeChat. This impacts the function findSkillMd of the component basePath Handler. Executing a manipulation can lead to inefficient regular expression complexity.
This vulnerability is registered as CVE-2026-58578. It is possible to launch the attack remotely. No exploit is available.
You should upgrade the affected component.
https://vuldb.com/vuln/376001
A vulnerability, which was classified as problematic, has been found in lobehub LobeChat up to 2.2.9. This affects an unknown function. Performing a manipulation results in authorization bypass.
This vulnerability is cataloged as CVE-2026-59098. It is possible to initiate the attack remotely. There is no exploit available.
It is recommended to apply a patch to fix this issue.
https://vuldb.com/vuln/376000
A vulnerability classified as critical was found in apereo cas up to 8.0.0-RC5. The impacted element is an unknown function of the component Encryption Key Handler. Such manipulation leads to reusing a nonce.
This vulnerability is listed as CVE-2026-59099. The attack may be performed from remote. There is no available exploit.
Upgrading the affected component is advised.
https://vuldb.com/vuln/375999
A vulnerability classified as problematic has been found in taiga taiga-back up to 6.10.1. The affected element is an unknown function of the component POST Endpoint. This manipulation causes missing authorization.
This vulnerability is tracked as CVE-2026-59097. The attack is possible to be carried out remotely. No exploit exists.
It is recommended to upgrade the affected component.
https://vuldb.com/vuln/375998
A vulnerability described as very critical has been identified in Weaviate up to 1.37.x. Impacted is an unknown function of the file /authz/users of the component RoleToGroup Handler. The manipulation results in incorrect privilege assignment.
This vulnerability is identified as CVE-2026-59093. The attack can be executed remotely. There is not any exploit available.
Upgrading the affected component is recommended.
https://vuldb.com/vuln/375997
A vulnerability marked as critical has been reported in UTT nv518G 3.2.7-210919-161313. This issue affects some unknown processing. The manipulation leads to buffer overflow.
This vulnerability is referenced as CVE-2026-52187. Remote exploitation of the attack is possible. No exploit is available.
https://vuldb.com/vuln/375996
A vulnerability labeled as problematic has been found in Forgejo up to 15.0.2. This vulnerability affects unknown code. Executing a manipulation can lead to cross site scripting.
The identification of this vulnerability is CVE-2026-59102. The attack may be launched remotely. There is no exploit available.
The affected component should be upgraded.
https://vuldb.com/vuln/375995
A vulnerability identified as problematic has been detected in Netdata up to 2.3.0. This affects an unknown part of the file api/v2/ilove.svg. Performing a manipulation results in cross site scripting.
This vulnerability was named CVE-2025-71385. The attack may be initiated remotely. There is no available exploit.
You should upgrade the affected component.
https://vuldb.com/vuln/375994
A vulnerability categorized as critical has been discovered in EstrellaXD Auto_Bangumi up to 3.2.7. Affected by this issue is some unknown functionality of the file /api/v1/setup/test-downloader of the component Internal Network Service Handler. Such manipulation leads to server-side request forgery.
This vulnerability is uniquely identified as CVE-2026-59101. The attack can be launched remotely. No exploit exists.
It is advisable to upgrade the affected component.
https://vuldb.com/vuln/375993
A vulnerability was found in lobehub LobeChat. It has been rated as critical. Affected by this vulnerability is an unknown functionality of the component Skill Import Service. This manipulation causes server-side request forgery.
This vulnerability is handled as CVE-2026-59095. The attack can be initiated remotely. There is not any exploit available.
Upgrading the affected component is advised.
https://vuldb.com/vuln/375992