Aggregator
CVE-2026-9610 | IBM Datacap/Datacap Navigator up to 1.8.4/9.1.8/9.1.9 direct request
4 days ago
A vulnerability categorized as problematic has been discovered in IBM Datacap and Datacap Navigator up to 1.8.4/9.1.8/9.1.9. This vulnerability affects unknown code. Such manipulation leads to direct request.
This vulnerability is documented as CVE-2026-9610. The attack needs to be performed locally. There is not any exploit available.
It is advisable to upgrade the affected component.
vuldb.com
CVE-2026-54274 | aio-libs aiohttp up to 3.14.0 WebSocket Frame allocation of resources (GHSA-xcgm-r5h9-7989 / EUVD-2026-38311)
4 days ago
A vulnerability was found in aio-libs aiohttp up to 3.14.0. It has been classified as problematic. The affected element is an unknown function of the component WebSocket Frame Handler. Performing a manipulation results in allocation of resources.
This vulnerability is identified as CVE-2026-54274. The attack can be initiated remotely. There is not any exploit available.
Upgrading the affected component is recommended.
vuldb.com
CVE-2026-54273 | aio-libs aiohttp up to 3.14.0 allocation of resources (GHSA-4fvr-rgm6-gqmc / EUVD-2026-38317)
4 days ago
A vulnerability was found in aio-libs aiohttp up to 3.14.0. It has been declared as problematic. The impacted element is an unknown function. Executing a manipulation can lead to allocation of resources.
This vulnerability is tracked as CVE-2026-54273. The attack can be launched remotely. No exploit exists.
It is recommended to upgrade the affected component.
vuldb.com
CVE-2026-53537 | Kludex python-multipart up to 0.0.29 on Python input validation (GHSA-vffw-93wf-4j4q / Nessus ID 322155)
4 days ago
A vulnerability labeled as problematic has been found in Kludex python-multipart up to 0.0.29 on Python. Affected by this vulnerability is an unknown functionality. Such manipulation leads to improper input validation.
This vulnerability is documented as CVE-2026-53537. The attack can be executed remotely. There is not any exploit available.
The affected component should be upgraded.
vuldb.com
CVE-2026-50269 | aio-libs aiohttp up to 3.13.x crlf injection (GHSA-m6qw-4cw2-hm4m / Nessus ID 322127)
4 days ago
A vulnerability marked as critical has been reported in aio-libs aiohttp up to 3.13.x. Affected by this issue is some unknown functionality. Performing a manipulation results in crlf injection.
This vulnerability is reported as CVE-2026-50269. The attack is possible to be carried out remotely. No exploit exists.
It is suggested to upgrade the affected component.
vuldb.com
CVE-2026-50169 | Angular up to 18.2.14/19.2.22/20.3.21/21.2.14 helper information disclosure (GHSA-gv2q-mqqv-365m / Nessus ID 322248)
4 days ago
A vulnerability, which was classified as problematic, has been found in Angular up to 18.2.14/19.2.22/20.3.21/21.2.14. This affects the function helper. Performing a manipulation results in information disclosure.
This vulnerability is known as CVE-2026-50169. Attacking locally is a requirement. No exploit is available.
It is advisable to upgrade the affected component.
vuldb.com
CVE-2026-50184 | Angular up to 18.2.14/19.2.22/20.3.21/21.2.14 helper information disclosure (GHSA-95qp-cmmw-mgqv / Nessus ID 322234)
4 days ago
A vulnerability, which was classified as problematic, was found in Angular up to 18.2.14/19.2.22/20.3.21/21.2.14. Affected by this issue is the function helper. The manipulation results in information disclosure.
This vulnerability is known as CVE-2026-50184. Attacking locally is a requirement. No exploit is available.
You should upgrade the affected component.
vuldb.com
CVE-2026-46417 | Angular up to 18.2.14/19.2.21/20.3.20/21.2.12 server-side request forgery (GHSA-rfh7-fxqc-q52v / Nessus ID 322245)
4 days ago
A vulnerability was found in Angular up to 18.2.14/19.2.21/20.3.20/21.2.12. It has been declared as critical. Impacted is an unknown function. Executing a manipulation can lead to server-side request forgery.
The identification of this vulnerability is CVE-2026-46417. The attack may be launched remotely. There is no exploit available.
It is recommended to upgrade the affected component.
vuldb.com
CVE-2026-50556 | Angular up to 18.2.14/19.2.24/20.3.23/21.2.15 cross site scripting (ID 68903 / EUVD-2026-38291)
4 days ago
A vulnerability identified as problematic has been detected in Angular up to 18.2.14/19.2.24/20.3.23/21.2.15. This affects an unknown function. This manipulation causes cross site scripting.
This vulnerability is tracked as CVE-2026-50556. The attack is possible to be carried out remotely. No exploit exists.
You should upgrade the affected component.
vuldb.com
CVE-2026-50171 | Angular up to 18.2.14/19.2.22/20.3.21/21.2.14 formatNumber digitsInfo resource consumption (GHSA-p3vc-36g9-x9gr / Nessus ID 322253)
4 days ago
A vulnerability was found in Angular up to 18.2.14/19.2.22/20.3.21/21.2.14. It has been declared as problematic. Affected is the function formatNumber. The manipulation of the argument digitsInfo results in resource consumption.
This vulnerability is identified as CVE-2026-50171. The attack can be executed remotely. There is not any exploit available.
It is recommended to upgrade the affected component.
vuldb.com
CVE-2026-49356 | Babel up to 7.29.5 path traversal (GHSA-4x5r-pxfx-6jf8 / Nessus ID 322252)
4 days ago
A vulnerability classified as critical was found in Babel up to 7.29.5. The impacted element is an unknown function. Such manipulation leads to path traversal.
This vulnerability is traded as CVE-2026-49356. An attack has to be approached locally. There is no exploit available.
Upgrading the affected component is advised.
vuldb.com
8 000 000 °C без лазеров и гигантских магнитов. Представлен прототип рабочего термояда
4 days ago
Пока весь мир строит токамаки и лазерные установки, они просто сжали плазму поршнем.
Mortal Kombat 2 or Injustice 3: Which One Is Next?
4 days ago
New StorybyJosebyJose@josehEntertainment writer. Loves games, movies, and comics. Also loves talkin
AGI Playground 2026,首批嘉宾官宣!
4 days ago
环境异常 当前环境异常,完成验证后即可继续访问。 去验证
AGI Playground 2026,首批嘉宾官宣!
4 days ago
📍 新加坡 · 滨海湾花园(Gardens by the Bay)
🗓️ 8 月 3 日 - 4 日
两天时间里,和 500 位 AI 创始人、研究员、美元基金合伙人、GTM 伙伴们集中碰面,深入交流。
👉 扫描图中二维码,点击购票,锁定名额。(购票时输入暗号:FOUNDERPARK,有惊喜)
今年的 AGI Playground 围绕两个主题展开:
- Go Action,AI Agent 从对话走向真实行动;
- Go Physical,AI 与硬件、具身智能结合中国供应链优势,重塑物理世界的交互。
我们准备了演讲主舞台、Workshop、Founder Show、VIP Dinner、After Party 以及全天候的 Booth & Mix 等多种丰富的交流形式。让交流能随时随地,更自由、深入地发生。
此外,大会现场展位及 Founder Show 路演也都在招募中。如果你自己或身边的团队有兴趣做路演、设展位,欢迎文末扫码,直接联系小助手~
日本全家便利店尝试用狼形机器人驱熊
4 days 1 hour ago
日本全家便利店尝试用狼形机器人驱熊为了减少熊造成的危害,日本全家便利店24日在群马县桐生市山区的 “日野屋黑保根店” 展示了模仿狼外形用于驱赶野生动物的机器人装置“Monster Wolf”实证试验。
От детского интернета до базы IMEI: Путин подписал масштабный закон о защите от телефонных мошенников
4 days 1 hour ago
В России заработает второй пакет антифрод-законов.
DragonForce
4 days 1 hour ago
You must login to view this content
cohenido
美国政府禁止进口更多中国科技产品
4 days 1 hour ago
美国政府出台打压中国制造的电子设备最新举措,联邦通信委员会周五公布将禁止进口来自一组中国制造商的更多设备。此举扩大了联邦通信委员会在2022年以美国国家安全风险为由,针对华为、中兴、海能达、海康威视和