Lilmingwa13

**Name of the Vulnerable Software and Affected Versions** Nginx UI versions prior to 2.3.8 **Description** An authenticated user can access the 'GET /api/settings' endpoint to retrieve sensitive configuration values, such as `node.secret`. This secret is accepted by the `AuthRequired()` function via the 'X-Node-Secret' header or the `node secret` query parameter, allowing requests to be treated as authenticated through the trusted-node path and associated with the init user. **Recommendations** Update to version 2.3.8.

**Name of the Vulnerable Software and Affected Versions** @paperclipai/server versions prior to 2026.416.0 **Description** An issue in the Node.js server and React UI used to orchestrate AI agents allows an attacker with an Agent API key to execute arbitrary OS commands on the server host. This occurs because agents can update their own `adapterConfig` via the '/agents/:id' API endpoint. Specifically, the server runtime executes the `adapterConfig.workspaceStrategy.provisionCommand` field, enabling an attacker to inject shell commands during workspace provisioning and escalate privileges from the agent runtime to the server host. **Recommendations** Update to version 2026.416.0.

**Name of the Vulnerable Software and Affected Versions** agentic-context-engine versions up to 0.7.1 **Description** A directory traversal issue exists in the agentic-context-engine project. The `checkpoint dir` parameter within `OfflineACE.run` is susceptible to manipulation. The `save to file` method, located in `ace/skillbook.py`, does not properly sanitize or validate file system paths, enabling attackers to use traversal sequences to bypass the intended checkpoint directory. Successful exploitation could allow overwriting arbitrary files accessible to the application process, potentially resulting in application corruption, privilege escalation, or code execution. The vulnerable parameter is `checkpoint dir`. **Recommendations** Versions prior to 0.7.1 should be updated.

**Name of the Vulnerable Software and Affected Versions** PublishPress PublishPress Revisions versions through 3.7.22 **Description** A Cross-Site Request Forgery (CSRF) issue exists in PublishPress Revisions. This allows attackers to perform actions on behalf of authenticated users. The issue allows Cross Site Request Forgery. **Recommendations** Update PublishPress PublishPress Revisions to a version later than 3.7.22.