Home
Editors’ Pick
Támogassa munkánkat!
Security
Dedicated
- Linux
- IoT
- ICS
- 5G
- OSINT
Media
- Blogs
- Video
- Podcasts
News
Github Collection

Vulns

03-03

April 19, 2026 Yanac

CVE-2026-6582 | TransformerOptimus SuperAGI up to 0.0.14 Vector Database Management Endpoint vector_dbs.py get_vector_db_details missing authentication

A vulnerability described as critical has been identified in TransformerOptimus SuperAGI up to 0.0.14. Affected by this issue is the

Security Vulns

April 19, 2026 Yanac

CVE-2026-6583 | TransformerOptimus SuperAGI up to 0.0.14 API Key Management Endpoint api_key.py delete_api_key/edit_api_key authorization

A vulnerability classified as problematic has been found in TransformerOptimus SuperAGI up to 0.0.14. This affects the function delete_api_key/edit_api_key of

Security Vulns

April 19, 2026 Yanac

CVE-2026-6584 | TransformerOptimus SuperAGI up to 0.0.14 User Update Endpoint user.py update_user user_id authorization

A vulnerability classified as problematic was found in TransformerOptimus SuperAGI up to 0.0.14. This vulnerability affects the function update_user of

Security Vulns

April 19, 2026 Yanac

CVE-2026-6585 | TransformerOptimus SuperAGI up to 0.0.14 Organisation Update Endpoint organisation.py update_organisation organisation_id authorization

A vulnerability, which was classified as problematic, has been found in TransformerOptimus SuperAGI up to 0.0.14. This issue affects the

Security Vulns

April 19, 2026 Yanac

CVE-2026-6586 | TransformerOptimus SuperAGI up to 0.0.14 Budget Endpoint budget.py get_budget/update_budget authorization

A vulnerability, which was classified as critical, was found in TransformerOptimus SuperAGI up to 0.0.14. Impacted is the function get_budget/update_budget

Security Vulns

April 19, 2026 Yanac

CVE-2026-6587 | vibrantlabsai RAGAS up to 0.4.3 Collections util.py _try_process_local_file/_try_process_url retrieved_contexts server-side request forgery

A vulnerability has been found in vibrantlabsai RAGAS up to 0.4.3 and classified as critical. The affected element is the

Security Vulns

April 19, 2026 Yanac

CVE-2026-0868 | turn2honey EMC Plugin up to 4.4 on WordPress calendly cross site scripting

A vulnerability was found in turn2honey EMC Plugin up to 4.4 on WordPress. It has been classified as problematic. Impacted

Security Vulns

April 19, 2026 Yanac

CVE-2026-6576 | liangliangyy DjangoBlog up to 2.1.0.0 WeChat Bot Interface commonapi.py CommandHandler Source command injection

A vulnerability was found in liangliangyy DjangoBlog up to 2.1.0.0. It has been declared as critical. The affected element is

Security Vulns

April 19, 2026 Yanac

CVE-2026-6577 | liangliangyy DjangoBlog up to 2.1.0.0 logtracks Endpoint owntracks/views.py missing authentication

A vulnerability was found in liangliangyy DjangoBlog up to 2.1.0.0. It has been rated as critical. The impacted element is

Security Vulns

April 19, 2026 Yanac

CVE-2026-6578 | liangliangyy DjangoBlog up to 2.1.0.0 Setting djangoblog/settings.py SECRET_KEY hard-coded credentials

A vulnerability categorized as critical has been discovered in liangliangyy DjangoBlog up to 2.1.0.0. This affects an unknown function of

← Previous
Next →

Recent

Vercel confirms breach as hackers claim to be selling stolen data
CVE-2026-6612 | TransformerOptimus SuperAGI up to 0.0.14 Agent Execution Endpoint agent_execution.py get_agent_execution/update_agent_execution agent_execution_id authorization
CVE-2026-6613 | TransformerOptimus SuperAGI up to 0.0.14 agent.py delete_agent/stop_schedule/get_schedule_data agent_id authorization
CVE-2026-6614 | TransformerOptimus SuperAGI up to 0.0.14 project.py authorization