| CVE ID | Title | Vendor | Product | Severity | CVSS Score | Published At | AI Analysis |
|---|---|---|---|---|---|---|---|
| CVE-2026-40320 | Giskard has an Unsandboxed Jinja2 Template Rendering in ConformityCheck | Giskard-AI | giskard-oss | - | - | 2026-04-17 17:25:50 | Deep Dive |
| CVE-2026-40319 | Giskard has a Regular Expression Denial of Service (ReDoS) in RegexMatching Check | Giskard-AI | giskard-oss | - | - | 2026-04-17 17:16:38 | Deep Dive |
| CVE-2026-34172 | Giskard Agents have Server-side template injection via ChatWorkflow.chat() using non-sandboxed Jinja2 Environment | Giskard-AI | giskard-oss | 中危 | - | 2026-03-31 13:50:17 | Deep Dive |
| CVE-2026-21724 | Missing Protected-field Authorization in Provisioning Contact Points API | Grafana | Grafana OSS | Medium | 5.4 | 2026-03-26 20:06:19 | Deep Dive |
| CVE-2026-33375 | Grafana MSSQL Data Source Plugin: Restriction Bypass Leading to OOM DoS | Grafana | Grafana OSS | Medium | 6.5 | 2026-03-26 20:05:53 | Deep Dive |
| CVE-2026-30790 | RustDesk Server Controls All Handshake Entropy (Salt/Challenge), Enabling Offline Brute-Force | rustdesk-server-pro | RustDesk Server Pro | 超危 | - | 2026-03-05 15:49:16 | Deep Dive |
| CVE-2025-59336 | Relative Path Traversal in Luanox | lumen-oss | luanox | - | - | 2025-09-16 16:59:18 | Deep Dive |
| CVE-2025-8396 | Temporal OSS Server 安全漏洞 | Temporal | OSS Server | - | - | 2025-09-15 14:13:27 | Deep Dive |
| CVE-2025-29757 | Growatt cloud service 安全漏洞 | Growatt | https://oss.growatt.com | 高危 | - | 2025-07-19 05:15:37 | Deep Dive |
| CVE-2025-30598 | WordPress OSS Upload plugin <= 4.8.9 Cross Site Request Forgery (CSRF) Vulnerability | Link | OSS Upload | Medium | 4.3 | 2025-03-24 13:47:20 | Deep Dive |
| CVE-2025-1385 | Fail input validation in clickhouse-library-bridge API could lead to RCE under specific configuration | ClickHouse | ClickHouse OSS | 中危 | - | 2025-03-20 07:13:35 | Deep Dive |
| CVE-2024-9476 | Privilege escalation vulnerability for Organizations in Grafana | Grafana Labs | Grafana OSS and Enterprise | - | - | 2024-11-13 16:30:55 | Deep Dive |
| CVE-2024-2435 | Stored XSS in Timeline View | Temporal OSS | ui-server | Medium | 4.3 | 2024-04-02 16:40:25 | Deep Dive |
| CVE-2024-30494 | WordPress OSS Aliyun plugin <= 1.4.10 - SQL Injection vulnerability | 沈唁 | OSS Aliyun | High | 7.6 | 2024-03-29 13:55:30 | Deep Dive |
| CVE-2023-47609 | EMSigner OSS Calendar 安全漏洞 | Thinkingreed Inc. | OSS Calendar | 高危 | - | 2023-11-14 05:12:19 | Deep Dive |
| CVE-2023-30618 | Sensitive Terraform Output Values Printed At Info Logging Level In Kitchen-Terraform | newcontext-oss | kitchen-terraform | Low | 3.2 | 2023-04-21 19:34:56 | Deep Dive |
| CVE-2022-39397 | Exposure of sensitive information in aliyun-oss-client | tu6ge | oss-rs | Medium | 5.6 | 2022-11-22 00:00:00 | Deep Dive |
| CVE-2022-21405 | Oracle Support Tools 输入验证错误漏洞 | Oracle Corporation | OSS Support Tools | Medium | 5.5 | 2022-04-19 20:36:42 | Deep Dive |
| CVE-2021-2303 | Oracle Support Tools 代码问题漏洞 | Oracle Corporation | OSS Support Tools | Medium | 4.9 | 2021-04-22 21:54:01 | Deep Dive |
| CVE-2021-28099 | Netflix Hollow 安全特征问题漏洞 | - | Netflix OSS Hollow | 中危 | - | 2021-03-23 20:28:52 | Deep Dive |