Publish Advisories

advisory-database[bot] · advisory-database[bot] · commit f75cb41ba7f2 · 2026-06-02T06:32:25.000Z
GHSA-7qjx-378m-p8hm GHSA-376c-9hgg-2xx6 GHSA-7vqp-qmqp-chh2 GHSA-gr32-6rr4-7px2 GHSA-r5m9-wm49-959f
diff --git a/advisories/unreviewed/2025/02/GHSA-7qjx-378m-p8hm/GHSA-7qjx-378m-p8hm.json b/advisories/unreviewed/2025/02/GHSA-7qjx-378m-p8hm/GHSA-7qjx-378m-p8hm.json
@@ -1,7 +1,7 @@
 {
   "schema_version": "1.4.0",
   "id": "GHSA-7qjx-378m-p8hm",
-  "modified": "2026-04-06T15:31:19Z",
+  "modified": "2026-06-02T06:30:25Z",
   "published": "2025-02-25T18:31:24Z",
   "aliases": [
     "CVE-2025-26597"
@@ -90,6 +90,10 @@
     {
       "type": "WEB",
       "url": "https://access.redhat.com/errata/RHSA-2025:2500"
+    },
+    {
+      "type": "WEB",
+      "url": "http://www.openwall.com/lists/oss-security/2026/06/02/1"
     }
   ],
   "database_specific": {
diff --git a/advisories/unreviewed/2026/06/GHSA-376c-9hgg-2xx6/GHSA-376c-9hgg-2xx6.json b/advisories/unreviewed/2026/06/GHSA-376c-9hgg-2xx6/GHSA-376c-9hgg-2xx6.json
@@ -0,0 +1,64 @@
+{
+  "schema_version": "1.4.0",
+  "id": "GHSA-376c-9hgg-2xx6",
+  "modified": "2026-06-02T06:30:26Z",
+  "published": "2026-06-02T06:30:26Z",
+  "aliases": [
+    "CVE-2026-10583"
+  ],
+  "details": "A security vulnerability has been detected in nextlevelbuilder GoClaw up to 3.11.3. Affected by this issue is the function Import of the file internal/http/tts_config.go of the component TTS Configuration Endpoint. The manipulation leads to server-side request forgery. It is possible to initiate the attack remotely. The exploit has been disclosed publicly and may be used. The project tagged the reported issue as bug.",
+  "severity": [
+    {
+      "type": "CVSS_V3",
+      "score": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:L/I:L/A:L"
+    },
+    {
+      "type": "CVSS_V4",
+      "score": "CVSS:4.0/AV:N/AC:L/AT:N/PR:H/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X"
+    }
+  ],
+  "affected": [],
+  "references": [
+    {
+      "type": "ADVISORY",
+      "url": "https://nvd.nist.gov/vuln/detail/CVE-2026-10583"
+    },
+    {
+      "type": "WEB",
+      "url": "https://github.com/digitopvn/goclaw/issues/30"
+    },
+    {
+      "type": "WEB",
+      "url": "https://github.com/nextlevelbuilder/goclaw/issues/1132"
+    },
+    {
+      "type": "WEB",
+      "url": "https://github.com/nextlevelbuilder/goclaw"
+    },
+    {
+      "type": "WEB",
+      "url": "https://vuldb.com/cve/CVE-2026-10583"
+    },
+    {
+      "type": "WEB",
+      "url": "https://vuldb.com/submit/829407"
+    },
+    {
+      "type": "WEB",
+      "url": "https://vuldb.com/vuln/367710"
+    },
+    {
+      "type": "WEB",
+      "url": "https://vuldb.com/vuln/367710/cti"
+    }
+  ],
+  "database_specific": {
+    "cwe_ids": [
+      "CWE-918"
+    ],
+    "severity": "LOW",
+    "github_reviewed": false,
+    "github_reviewed_at": null,
+    "nvd_published_at": "2026-06-02T04:17:03Z"
+  }
+}
diff --git a/advisories/unreviewed/2026/06/GHSA-7vqp-qmqp-chh2/GHSA-7vqp-qmqp-chh2.json b/advisories/unreviewed/2026/06/GHSA-7vqp-qmqp-chh2/GHSA-7vqp-qmqp-chh2.json
@@ -0,0 +1,52 @@
+{
+  "schema_version": "1.4.0",
+  "id": "GHSA-7vqp-qmqp-chh2",
+  "modified": "2026-06-02T06:30:26Z",
+  "published": "2026-06-02T06:30:26Z",
+  "aliases": [
+    "CVE-2026-10581"
+  ],
+  "details": "A flaw has been found in DedeCMS 5.7.88. Affected by this vulnerability is the function base64_decode of the file /plus/download.php?open=1. This manipulation of the argument Link causes server-side request forgery. Remote exploitation of the attack is possible. The exploit has been published and may be used.",
+  "severity": [
+    {
+      "type": "CVSS_V3",
+      "score": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L"
+    },
+    {
+      "type": "CVSS_V4",
+      "score": "CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X"
+    }
+  ],
+  "affected": [],
+  "references": [
+    {
+      "type": "ADVISORY",
+      "url": "https://nvd.nist.gov/vuln/detail/CVE-2026-10581"
+    },
+    {
+      "type": "WEB",
+      "url": "https://vuldb.com/cve/CVE-2026-10581"
+    },
+    {
+      "type": "WEB",
+      "url": "https://vuldb.com/submit/829404"
+    },
+    {
+      "type": "WEB",
+      "url": "https://vuldb.com/vuln/367676"
+    },
+    {
+      "type": "WEB",
+      "url": "https://vuldb.com/vuln/367676/cti"
+    }
+  ],
+  "database_specific": {
+    "cwe_ids": [
+      "CWE-918"
+    ],
+    "severity": "LOW",
+    "github_reviewed": false,
+    "github_reviewed_at": null,
+    "nvd_published_at": "2026-06-02T04:17:02Z"
+  }
+}
diff --git a/advisories/unreviewed/2026/06/GHSA-gr32-6rr4-7px2/GHSA-gr32-6rr4-7px2.json b/advisories/unreviewed/2026/06/GHSA-gr32-6rr4-7px2/GHSA-gr32-6rr4-7px2.json
@@ -0,0 +1,64 @@
+{
+  "schema_version": "1.4.0",
+  "id": "GHSA-gr32-6rr4-7px2",
+  "modified": "2026-06-02T06:30:26Z",
+  "published": "2026-06-02T06:30:26Z",
+  "aliases": [
+    "CVE-2026-8206"
+  ],
+  "details": "The Kirki – Freeform Page Builder, Website Builder & Customizer plugin for WordPress is vulnerable to privilege escalation via account takeover in all versions 6.0.0 to 6.0.6. This is due to the plugin accepting an arbitrary email address when a username is used in the password reset request. This makes it possible for unauthenticated attackers to send a password reset link for any user registered on the site to their own email address.",
+  "severity": [
+    {
+      "type": "CVSS_V3",
+      "score": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H"
+    }
+  ],
+  "affected": [],
+  "references": [
+    {
+      "type": "ADVISORY",
+      "url": "https://nvd.nist.gov/vuln/detail/CVE-2026-8206"
+    },
+    {
+      "type": "WEB",
+      "url": "https://plugins.trac.wordpress.org/browser/kirki/tags/6.0.4/ComponentLibrary/controller/CompLibFormHandler.php#L330"
+    },
+    {
+      "type": "WEB",
+      "url": "https://plugins.trac.wordpress.org/browser/kirki/tags/6.0.4/ComponentLibrary/controller/CompLibFormHandler.php#L48"
+    },
+    {
+      "type": "WEB",
+      "url": "https://plugins.trac.wordpress.org/browser/kirki/tags/6.0.4/ComponentLibrary/controller/ElementGenerator.php#L227"
+    },
+    {
+      "type": "WEB",
+      "url": "https://plugins.trac.wordpress.org/browser/kirki/trunk/ComponentLibrary/controller/CompLibFormHandler.php#L330"
+    },
+    {
+      "type": "WEB",
+      "url": "https://plugins.trac.wordpress.org/browser/kirki/trunk/ComponentLibrary/controller/CompLibFormHandler.php#L48"
+    },
+    {
+      "type": "WEB",
+      "url": "https://plugins.trac.wordpress.org/browser/kirki/trunk/ComponentLibrary/controller/ElementGenerator.php#L227"
+    },
+    {
+      "type": "WEB",
+      "url": "https://plugins.trac.wordpress.org/changeset/3530843/kirki"
+    },
+    {
+      "type": "WEB",
+      "url": "https://www.wordfence.com/threat-intel/vulnerabilities/id/3b5630bd-5bce-4226-959f-5e81ae69b799?source=cve"
+    }
+  ],
+  "database_specific": {
+    "cwe_ids": [
+      "CWE-269"
+    ],
+    "severity": "CRITICAL",
+    "github_reviewed": false,
+    "github_reviewed_at": null,
+    "nvd_published_at": "2026-06-02T04:17:03Z"
+  }
+}
diff --git a/advisories/unreviewed/2026/06/GHSA-r5m9-wm49-959f/GHSA-r5m9-wm49-959f.json b/advisories/unreviewed/2026/06/GHSA-r5m9-wm49-959f/GHSA-r5m9-wm49-959f.json
@@ -0,0 +1,36 @@
+{
+  "schema_version": "1.4.0",
+  "id": "GHSA-r5m9-wm49-959f",
+  "modified": "2026-06-02T06:30:26Z",
+  "published": "2026-06-02T06:30:26Z",
+  "aliases": [
+    "CVE-2026-3198"
+  ],
+  "details": "MLflow 3.9.0 with basic-auth (`--app-name basic-auth`) fails to enforce authorization checks for multiple Gateway API 'list' endpoints. Specifically, the `BEFORE_REQUEST_HANDLERS` dictionary in `mlflow/server/auth/__init__.py` does not include entries for `ListGatewaySecretInfos`, `ListGatewayEndpoints`, and `ListGatewayModelDefinitions`. This allows any authenticated user, regardless of their assigned permissions, to enumerate all gateway secrets, endpoints, and model definitions. This vulnerability exposes sensitive information, such as API keys, endpoint configurations, and proprietary model definitions, to unauthorized users.",
+  "severity": [
+    {
+      "type": "CVSS_V3",
+      "score": "CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N"
+    }
+  ],
+  "affected": [],
+  "references": [
+    {
+      "type": "ADVISORY",
+      "url": "https://nvd.nist.gov/vuln/detail/CVE-2026-3198"
+    },
+    {
+      "type": "WEB",
+      "url": "https://huntr.com/bounties/e57db731-97d3-40c3-a429-831ee959807f"
+    }
+  ],
+  "database_specific": {
+    "cwe_ids": [
+      "CWE-284"
+    ],
+    "severity": "MODERATE",
+    "github_reviewed": false,
+    "github_reviewed_at": null,
+    "nvd_published_at": "2026-06-02T04:17:03Z"
+  }
+}

Original file line number	Diff line number	Diff line change
`@@ -1,7 +1,7 @@`
`1`	`1`	`{`
`2`	`2`	`"schema_version": "1.4.0",`
`3`	`3`	`"id": "GHSA-7qjx-378m-p8hm",`
`4`		`- "modified": "2026-04-06T15:31:19Z",`
	`4`	`+ "modified": "2026-06-02T06:30:25Z",`
`5`	`5`	`"published": "2025-02-25T18:31:24Z",`
`6`	`6`	`"aliases": [`
`7`	`7`	`"CVE-2025-26597"`
`@@ -90,6 +90,10 @@`
`90`	`90`	`{`
`91`	`91`	`"type": "WEB",`
`92`	`92`	`"url": "https://access.redhat.com/errata/RHSA-2025:2500"`
	`93`	`+ },`
	`94`	`+ {`
	`95`	`+ "type": "WEB",`
	`96`	`+ "url": "http://www.openwall.com/lists/oss-security/2026/06/02/1"`
`93`	`97`	`}`
`94`	`98`	`],`
`95`	`99`	`"database_specific": {`