CVE ID :CVE-2026-5366 Published : June 20, 2026, 4:43 p.m. | 4 hours, 26 minutes ago Description :Prefect version 3.6.23 is vulnerable to remote code execution due to improper handling of user-controlled input in the `GitRepository` storage class. The `commit_sha` parameter, which is passed...

#Sicherheitslücke

Original-Artikel öffnen Zurück zur Übersicht

ARTICLEVIEW

CVE-2026-5366 - Git Argument Injection in prefecthq/prefect

VERWANDTEARTIKEL

CVE-2026-56345 - AVideo - Arbitrary User Session Hijacking via Meet Plugin uploadRecordedVideo Endpoint

CVE-2026-56340 - vLLM - Denial of Service via Unvalidated Multimodal Embeddings

CVE-2026-56341 - AVideo - Unauthenticated Access to Payment Log DataTables Endpoints via list.json.php

CVE-2024-58351 - Flowise - Remote Code Execution via overrideConfig Parameter

CVE-2022-50972 - WooCommerce 7.1.0 Remote Code Execution via class-wc-meta-box-product-images.php

CVE-2020-37255 - WordPress Time Capsule Plugin 1.21.16 Authentication Bypass