Search Vulnerabilities

Cargo can be coerced to share credentials between registries

Aap-gateway: improper path validation in gateway allows credential exfiltration

Astro has an Authentication Bypass via Double URL Encoding, a bypass for CVE-2025-64765

Symfony's incorrect parsing of PATH_INFO can lead to limited authorization bypass

In browser-use (aka Browser Use) before 0

Sonos api

Hitachi Vantara Pentaho Business Analytics Server - Use of Non-Canonical URL Paths for Authorization Decisions