Pipecat: Path Traversal in Pipecat Runner /files Endpoint — Arbitrary File Read via %2F-Encoded Separator (CVE-2026-44716) | Visit link for details | Jun 9, 2026 |
| LMDeploy: Hardcoded trust_remote_code=True is an implicit unsafe remote-code load path with no user opt-out (CVE-2026-46517) | Visit link for details | Jun 9, 2026 |
| FlashMQ: Client can trigger uncaught exception on FlashMQ 1.26.1 and older (CVE-2026-46411) | Visit link for details | Jun 9, 2026 |
| SimpleSAMLphp casserver FileSystemTicketStore path traversal allows out-of-ticket-directory read/unserialize and conditional deletion (CVE-2026-46491) | Visit link for details | Jun 9, 2026 |
| Cloud Hypervisor: Use-after-free in virtio-block Async I/O Completion (CVE-2026-45782) | Visit link for details | Jun 9, 2026 |
| Visit link for details | |
| Visit link for details | |
| Visit link for details | |
| Visit link for details | |
| Visit link for details | |