Advisories
Vulnerability Disclosure
Our vulnerability research focuses on finding high-impact flaws in widely used software to help secure organizations in Canada and around the globe. This page serves as a central hub for our ethical vulnerability disclosures. Through our partnerships with national agencies like the Canadian Centre for Cyber Security and US-CERT, we work proactively to advance industry standards and provide researchers with a secure, coordinated path for disclosure.
pgAdmin Meta-Command Filter Command Execution
Affecting
pgAdmin < 9.11
December 11, 2025Critical
pgAdmin Restore Restriction Bypass Leading to Command Execution
Affecting
pgAdmin 4 <= 9.11
February 5, 2026High
KDE Frameworks Command Execution
Affecting
KDE Frameworks < 51.60
August 7, 2019High
KDE Ark Directory Traversal Leading to Code Execution
Affecting
KDE Ark < 20.08.0
July 30, 2019High
EA Origin Remote Code Execution via Protocol Handler Argument Injection
Affecting
EA Origin < 10.5.39
June 14, 2019High
EA Origin Remote Code Execution via Custom Protocol Handler
Affecting
EA Origin < 10.5.36
April 19, 2019High
Apple Music for Windows Arbitrary JavaScript Execution
Affecting
Apple Music for Windows < 1.5.0
December 10, 2024Medium
Pexip Infinity Connect Arbitrary JavaScript Execution
Affecting
Pexip Infinity Connect < 1.13.0
July 1, 2024Medium
Maltego XML External Entity Injection
Affecting
Maltego < 4.2.12
August 27, 2020Medium
