🚨 最新安全公告

• GHSA-hvv7-hfrh-7gxj [medium] — Nezha Monitoring: Nezha WebSocket server stream discloses cross-tenant server telemetry to authenticated members
• GHSA-99gv-2m7h-3hh9 [critical] — Nezha Monitoring: RoleMember can run shell on every server (cross-tenant RCE) via POST /api/v1/cron
• GHSA-jpjh-jm2p-39hh [high] — Arcane: Missing admin authorization on global variables endpoint
• GHSA-ggxf-37hm-9wqf [medium] — instagrapi: Unsafe signup challenge path handling in instagrapi
• GHSA-jh37-x3fv-4x72 [medium] — aiograpi: Unsafe signup challenge path handling

📡 数据来源: GitHub Security Advisories · 由 PingSec 安全日报自动生成

💡 点击标题查看详情，返回首页查看更多历史文章