Where
AND
-Infinity
0

Trending

Last week
Last month
Last year

IBM Concert SoftwareMultiple Vulnerabilities in IBM Concert Software

Risk 43
Severity
7.5
First published (updated )
CVE-2025-64647

npm/ajvajv (Another JSON Schema Validator) through version 8.17.1 is vulnerable to Regular Expression Denia…

Risk 43
Severity
7.5
First published (updated )
CVE-2025-69873

IBM Concert SoftwareMultiple Vulnerabilities in IBM Concert Software.

Risk 43
Severity
7.5
First published (updated )
CVE-2024-43178

IBM ConcertMultiple Vulnerabilities in IBM Concert Software.

Risk 67
Severity
7.4
First published (updated )
CVE-2025-33088

pypi/orjsonThe orjson.dumps function in orjson thru 3.11.4 does not limit recursion for deeply nested JSON docu…

Risk 43
Severity
7.5
First published (updated )
CVE-2025-67221
Free Weekly Intel

Don't miss critical vulnerabilities

Join thousands of security professionals who receive our weekly digest of trending CVEs, zero-days, and exploited vulnerabilities.

No spam. Unsubscribe anytime.

IBM ConcertMultiple Vulnerabilities in IBM Concert Software.

Risk 43
Severity
7.5
First published (updated )
CVE-2025-36253

pypi/pyasn1pyasn1 has a DoS vulnerability in decoder

Risk 31
Severity
7.5
EPSS
0.06%
First published (updated )
CVE-2026-23490

IBM ConcertMultiple Vulnerabilities in IBM Concert Software

Risk 43
Severity
7.5
First published (updated )
CVE-2025-1719

IBM ConcertMultiple Vulnerabilities in IBM Concert Software

Risk 43
Severity
7.5
First published (updated )
CVE-2025-1722

IBM Concert SoftwareMultiple Vulnerabilities in IBM Concert Software

Risk 77
Severity
8.8
First published (updated )
CVE-2025-33015
Free Weekly Intel

Don't miss critical vulnerabilities

Join thousands of security professionals who receive our weekly digest of trending CVEs, zero-days, and exploited vulnerabilities.

No spam. Unsubscribe anytime.

npm/@remix-run/reactReact Router has XSS Vulnerability

Risk 49
Severity
7.6
First published (updated )
CVE-2025-59057

pypi/aiohttpAIOHTTP's HTTP Parser auto_decompress feature is vulnerable to zip bomb

Risk 46
Severity
7.5
First published (updated )
CVE-2025-69223

IBM Concert SoftwareMultiple Vulnerabilities in IBM Concert Software.

Risk 56
Severity
7.7
First published (updated )
CVE-2025-64645

IBM Concert SoftwareIBM Concert Software Improper Restriction of Operations within the Bounds of a Memory Buffer.

Risk 69
Severity
7.8
First published (updated )
CVE-2025-12771

IBM Concert SoftwareBM Concert Software Improper Clearing of Heap Memory Before Release.

Risk 43
Severity
7.5
First published (updated )
CVE-2025-1721
Free Weekly Intel

Don't miss critical vulnerabilities

Join thousands of security professionals who receive our weekly digest of trending CVEs, zero-days, and exploited vulnerabilities.

No spam. Unsubscribe anytime.

pip/mcpDNS Rebinding Protection Disabled by Default in Model Context Protocol Python SDK for Servers Running on Localhost

Risk 59
Severity
7.6
First published (updated )
CVE-2025-66416

pip/langchain-coreLangChain Vulnerable to Template Injection via Attribute Access in Prompt Templates

Risk 52
Severity
8.3
First published (updated )
CVE-2025-65106

npm expr-evalnpm package `expr-eval` is vulnerable to Prototype Pollution. An attacker with access to express eva…

Risk 51
Severity
7.3
First published (updated )
CVE-2025-13204

scrapy scrapyBrotli decompression bomb DoS in scrapy/scrapy

Risk 43
Severity
7.5
First published (updated )
CVE-2025-6176

Golang GoQuadratic complexity when parsing some invalid inputs in encoding/pem

Risk 47
Severity
7.5
First published (updated )
CVE-2025-61723
Free Weekly Intel

Don't miss critical vulnerabilities

Join thousands of security professionals who receive our weekly digest of trending CVEs, zero-days, and exploited vulnerabilities.

No spam. Unsubscribe anytime.

Google GolangExcessive CPU consumption in ParseAddress in net/mail

Risk 47
Severity
7.5
First published (updated )
CVE-2025-61725

Golang GoQuadratic complexity when checking name constraints in crypto/x509

Risk 47
Severity
7.5
First published (updated )
CVE-2025-58187

starlette starletteStarlette vulnerable to O(n^2) DoS via Range header merging in starlette.responses.FileResponse

Risk 43
Severity
7.5
First published (updated )
CVE-2025-62727

Microsoft Jdbc Driver For Sql ServerJDBC Driver for SQL Server Spoofing Vulnerability

Risk 59
Severity
8.1
First published (updated )
CVE-2025-59250

Langchain langchain-text-splittersXXE Vulnerability in langchain-ai/langchain

Risk 43
Severity
7.5
First published (updated )
CVE-2025-6985
Free Weekly Intel

Don't miss critical vulnerabilities

Join thousands of security professionals who receive our weekly digest of trending CVEs, zero-days, and exploited vulnerabilities.

No spam. Unsubscribe anytime.

tar-fs tar-fstar-fs has a symlink validation bypass if destination directory is predictable with a specific tarball

Risk 47
Severity
8.7
First published (updated )
CVE-2025-59343

F5 BIG-IP Next SPKOut-of-bounds read & write in RFC 3211 KEK Unwrap

Risk 32
Severity
7.5
EPSS
0.03%
First published (updated )
CVE-2025-9230

langchain-ai langchainSensitive Information Disclosure Due to Insecure XML Parsing in langchain-ai/langchain

Risk 43
Severity
7.5
First published (updated )
CVE-2025-6984

HashiCorp go-getterHashiCorp go-getter Vulnerable to Arbitrary Read through Symlink Attack

Risk 31
Severity
7.5
EPSS
0.02%
First published (updated )
CVE-2025-8959

Netty NettyNetty MadeYouReset HTTP/2 DDoS Vulnerability

Risk 47
Severity
8.2
First published (updated )
CVE-2025-55163
Free Weekly Intel

Don't miss critical vulnerabilities

Join thousands of security professionals who receive our weekly digest of trending CVEs, zero-days, and exploited vulnerabilities.

No spam. Unsubscribe anytime.

Company

Resources

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co
By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.
© 2026 SecAlerts Pty Ltd.
ABN: 70 645 966 203, ACN: 645 966 203