CRITICAL9.1NASA AMMOS Instrument Toolkit: Path traversal resulting in arbitrary file append (can be triggered over the network by unauthenticated attacker)
CRITICAL10.0DbGate: Unauthenticated Remote Code Execution via JSON Script Runner
CRITICAL9.1Apache Airflow: BashOperator Jinja2 injection via dag_run.conf — low-privilege user pattern
CRITICAL9.8When Vitest UI server is listening, arbitrary file can be read and executed
CRITICAL9.6praisonai-platform: Any workspace member can promote themselves or others to owner via PATCH /workspaces/{id}/members/{user_id}
CRITICAL9.8praisonai-platform: JWT signing key defaults to hardcoded "dev-secret-change-me", allowing token forgery for any user when PLATFORM_ENV is unset
CRITICAL9.8PraisonAI's unauthenticated A2A official example can reach real LLM-driven `eval()` tool execution
CRITICAL9.9PraisonAI vulnerable to sandbox escape via `print.__self__` builtins module leak in `execute_code` (subprocess mode)
CRITICAL9.8PraisonAI `deploy --type api` emits a Flask server with authentication disabled by default
CRITICAL9.8PraisonAI call server exposes unauthenticated agent listing, invocation, and deletion when CALL_SERVER_TOKEN is unset
CRITICAL9.8EPSS 0.08%amazon-redshift-python-driver vulnerable to Remote Code Execution via eval() Injection
CRITICAL10.0NodeVM builtin denylist bypass via process and inspector/promises allows host code execution
CRITICAL9.8vm2 sandbox escape via JSPI-backed Promise `.finally()` species bypass
CRITICAL10.0vm2 has a CVE-2023-37903 patch bypass: nesting:true without explicit require still allows full RCE
CRITICAL10.0vm2 is Vulnerable to Sandbox Breakout Through Promise Species
CRITICAL10.0vm2 has a Sandbox Escape issue
CRITICAL9.6EPSS 0.04%Improper Origin Validation in mlflow/mlflow
CRITICAL9.1Yamcs Vulnerable to Authenticated Remote Code Execution (RCE) via Jython Algorithm Code Injection
CRITICAL9.8Yamcs Vulnerable to Remote Code Execution via Mission Database algorithm override
CRITICAL9.8EPSS 0.08%Langroid has Prompt to SQL Injection, Leading to RCE