A vulnerability labeled as critical has been found in Gogs. Impacted is an unknown function of the component Webhook Handler. Such manipulation leads to server-side request forgery.
This vulnerability is uniquely identified as CVE-2026-47267. The attack can be launched remotely. No exploit exists.
The affected component should be upgraded.
A vulnerability described as critical has been identified in Gogs up to 0.14.2. This affects an unknown function. Executing a manipulation can lead to authentication bypass by spoofing.
This vulnerability is handled as CVE-2026-25119. The attack can be executed remotely. There is not any exploit available.
Upgrading the affected component is recommended.
A vulnerability was found in GIMP. It has been declared as critical. Affected by this vulnerability is an unknown functionality of the component HDR File Parser. Executing a manipulation can lead to heap-based buffer overflow.
The identification of this vulnerability is CVE-2026-2050. The attack may be launched remotely. There is no exploit available.
It is recommended to upgrade the affected component.
A vulnerability marked as problematic has been reported in Gogs up to 0.14.2. The impacted element is an unknown function of the file internal/route/repo/wiki.go of the component Web Interface. Performing a manipulation results in denial of service.
This vulnerability is known as CVE-2025-64719. Remote exploitation of the attack is possible. No exploit is available.
It is suggested to upgrade the affected component.
A vulnerability identified as critical has been detected in TortoiseGit up to 2.18.x. Impacted is an unknown function. The manipulation leads to argument injection.
This vulnerability is referenced as CVE-2026-11968. The attack can only be performed from a local environment. No exploit is available.
You should upgrade the affected component.
A vulnerability, which was classified as critical, was found in OpenBSD up to 7.9. Affected is the function sys_semget of the file sys/kern/sysv_sem.c. Such manipulation leads to use after free.
This vulnerability is uniquely identified as CVE-2026-57589. Local access is required to approach this attack. No exploit exists.
Applying a patch is advised to resolve this issue.
A vulnerability, which was classified as critical, has been found in ProFTPD up to 1.3.9b/1.3.10rc2. Affected by this vulnerability is the function dir_canonical_path of the component RNFR Command Handler. The manipulation leads to link following.
This vulnerability is documented as CVE-2026-35025. The attack can be initiated remotely. There is not any exploit available.