| GitLab CE/EE: six vulnerabilities dated 23/07/2025 | An attacker can use several vulnerabilities of GitLab CE/EE, dated 23/07/2025... | Visit link for details |
| Redis: write access via Linefeed Error Reply | An attacker can bypass access restrictions of Redis, via Linefeed Error Reply, in order to alter data... | Visit link for details |
| Chrome Edge Opera: memory corruption via Type Confusion | An attacker can trigger a memory corruption of Chrome Edge Opera, via Type Confusion, in order to trigger a denial of service, and possibly to run code... | Visit link for details |
| sigstore: file write via TUF Client | An attacker can bypass access restrictions of sigstore, via TUF Client, in order to alter files... | Visit link for details |
| ModSecurity Core Rule Set: ingress filtering bypass via Multiple Content-Type Request Headers | An attacker can bypass filtering rules of ModSecurity Core Rule Set, via Multiple Content-Type Request Headers, in order to send malicious data... | Visit link for details |
| Fulcio: Server-Side Request Forgery via MetaIssuer URL Validation | An attacker can trigger a Server-Side Request Forgery of Fulcio, via MetaIssuer URL Validation, in order to force the server to send queries... | Visit link for details |
| MuPDF: double free via fz_fill_pixmap_from_display_list() | An attacker can force a double memory free of MuPDF, via fz_fill_pixmap_from_ | Visit link for details |
| ImageMagick: multiple vulnerabilities dated 22/02/2026 | An attacker can use several vulnerabilities of ImageMagick, dated 22/02/2026... | Visit link for details |
| Mozilla Firefox Thunderbird: multiple vulnerabilities dated 22/07/2025 | An attacker can use several vulnerabilities of Mozilla Firefox Thunderbird, dated 22/07/2025... | Visit link for details |
| PowerDNS Recursor: Cache poisoning via EDNS Client Subnet | An attacker can poison the cache of PowerDNS Recursor, via EDNS Client Subnet, in order to hijack trafic... | Visit link for details |