Critical Severity Description Crypt::DSA versions through 1.19 for Perl use 2-args open, allowing existing files to be...
Vendor Advisories
This category highlights official security advisories and bulletins from vendors, including patch notices, product-specific vulnerabilities, remediation guidance, and important updates affecting supported technologies and platforms.
Medium Severity Description The Essential Chat Support plugin for WordPress is vulnerable to authorization bypass in all...
Critical Severity Description Crypt::DSA versions before 1.20 for Perl generate seeds using rand. Seeds were generated using...
https://security-tracker.debian.org/tracker/DSA-6277-1
https://security-tracker.debian.org/tracker/DSA-6276-1
Medium Severity Description AVideo CVE-2026-43884 incomplete fix – six (or more) `isSSRFSafeURL()` call sites still discard the...
Medium Severity Description AVideo: 2FA toggle endpoint has no CSRF protection, letting an attacker page silently disable...
Medium Severity Description AVideo: stored XSS via unescaped stream key in modeYoutubeLive.php class attribute Read more at...
https://security-tracker.debian.org/tracker/DSA-6275-1
https://security-tracker.debian.org/tracker/DSA-6273-1