Threat Intelligence Database

CVE-2026-36576 is a critical OS command injection vulnerability in the app.py component of the openlabs docker-wkhtmltopdf-aas project up to commit 9f50579. It allows unauthenticated attackers to execute arbitrary operating system commands via a crafted POST request. The vulnerability has a CVSS score of 9.8, indicating high impact on confidentiality, integrity, and availability. No patch or official remediation information is currently available. There are no known exploits in the wild at this time.

A vulnerability was found in SourceCodester Customer Review App 1.0. Affected by this vulnerability is the function add_review/save_review/get_all_reviews of the file review_app.py. Performing a manipulation of the argument name/comment results in denial of service. The attack requires a local approach. The exploit has been made public and could be used.

A security vulnerability has been detected in rowboatlabs rowboat up to 0.1.67. This impacts the function tool_call of the file apps/experimental/tools_webhook/app.py of the component tools_webhook. Such manipulation of the argument X-Tools-JWE leads to improper authentication. The attack may be performed from remote. The exploit has been disclosed publicly and may be used. The vendor was contacted early about this disclosure but did not respond in any way.

CVE-2026-5630 is a cross-site scripting (XSS) vulnerability in the assafelovic gpt-researcher product up to version 3.4.3. The flaw exists in an unknown function within the Report API component located in backend/server/app.py. This vulnerability can be exploited remotely and requires user interaction. Although the issue was reported early to the project, no response or fix has been provided yet. The CVSS 4.0 base score is 5.3, indicating a medium severity level.

CVE-2026-5577 is a SQL injection vulnerability in the Song-Li cross_browser product affecting the details endpoint in the flask/uniquemachine_app.py file. The vulnerability allows remote attackers to manipulate the ID argument to execute SQL injection attacks. The product uses a rolling release model, so specific affected or fixed versions are not clearly identified. The vendor was contacted but did not respond, and no patch or official remediation is currently available. The vulnerability has a medium severity rating with a CVSS score of 6.9. Public disclosure of the exploit exists, but there are no known exploits in the wild at this time.

Mesop is a Python-based UI framework that allows users to build web applications. In versions 1.2.2 and below, an explicit web endpoint inside the ai/ testing module infrastructure directly ingests untrusted Python code strings unconditionally without authentication measures, yielding standard Unrestricted Remote Code Execution. Any individual capable of routing HTTP logic to this server block will gain explicit host-machine command rights. The AI codebase package includes a lightweight debugging Flask server inside ai/sandbox/wsgi_app.py. The /exec-py route accepts base_64 encoded raw string payloads inside the code parameter natively evaluated by a basic POST web request. It saves it rapidly to the operating system logic path and injects it recursively using execute_module(module_path...). This issue has been fixed in version 1.2.3.

CriticalVulnerabilityUnited StatesGermanyUnited Kingdom+7#cve#cve-2026-33057#cwe-94

Vociferous provides cross-platform, offline speech-to-text with local AI refinement. Prior to 4.4.2, the vulnerability exists in src/api/system.py within the export_file route. The application accepts a JSON payload containing a filename and content. While the developer intended for a native UI dialog to handle the file path, the API does not validate the filename string before it is processed by the backends filesystem logic. Because the API is unauthenticated and the CORS configuration in app.py is overly permissive (allow_origins=["*"] or allowing localhost), an external attacker can bypass the UI entirely. By using directory traversal sequences (../), an attacker can force the app to write arbitrary data to any location accessible by the current user's permissions. This vulnerability is fixed in 4.4.2.

CriticalVulnerabilityUnited StatesGermanyUnited Kingdom+7#cve#cve-2026-27897#cwe-22

spaces_plugin/app.py in SolidUI 0.4.0 has an unnecessary print statement for an OpenAI key. The printed string might be logged.

HighVulnerabilityUnited StatesCanadaUnited Kingdom+7#cve#cve-2024-34527

A security flaw has been discovered in FastApiAdmin up to 2.2.0. Affected by this vulnerability is the function reset_api_docs of the file /backend/app/plugin/init_app.py of the component Custom Documentation Endpoint. The manipulation results in information disclosure. The attack may be performed from remote. The exploit has been released to the public and may be used for attacks.

MediumVulnerabilityUnited StatesGermanyUnited Kingdom+7#cve#cve-2026-2975

changedetection.io is a free open source web page change detection tool. In versions prior to 0.53.2, the `/static/<group>/<filename>` route accepts `group=".."`, which causes `send_from_directory("static/..", filename)` to execute. This moves the base directory up to `/app/changedetectionio`, enabling unauthenticated local file read of application source files (e.g., `flask_app.py`). Version 0.53.2 fixes the issue.

MediumVulnerabilityUnited StatesGermanyUnited Kingdom+7#cve#cve-2026-25527#cwe-22