47 matches found
CVE-2026-49433
The DeepAI endpoint 'https://api.deepai.org/changeuseremail' accepts POST requests without any CSRF protection. If an attacker can trick a logged-in user into clicking a malicious link, the attacker can change the user's email address and take over their account. Fixed on 2026-05-20...
CVE-2026-49433
The DeepAI endpoint 'https://api.deepai.org/changeuseremail' accepts POST requests without any CSRF protection. If an attacker can trick a logged-in user into clicking a malicious link, the attacker can change the user's email address and take over their account. Fixed on 2026-05-20...
DeepAI.org CSRF
RISK EVALUATION The DeepAI.org endpoint https://api.deepai.org/changeuseremail accepts POST requests without any CSRF protection. If a logged-in user is tricked into visiting a malicious HTML page, an attacker can change the user's email address to their own and take over the account via...
CVE-2026-40092
creationtimestamp| type| source ---|---|--- 2026-05-20 22:44:45+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mmcy7grcig2r...
CVE-2026-24218
creationtimestamp| type| source ---|---|--- 2026-05-20 20:52:11+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mmcrw542q32e 2026-05-22 22:00:51+00:00| seen| https://bsky.app/profile/thehackerwire.bsky.social/post/3mmhwoqlnxh2l...
CVE-2026-5783
creationtimestamp| type| source ---|---|--- 2026-05-20 19:01:50+00:00| seen| https://bsky.app/profile/thehackerwire.bsky.social/post/3mmclqrsf4p2n...
CVE-2026-20199
creationtimestamp| type| source ---|---|--- 2026-05-20 19:00:28+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mmclofeilq2k...
CVE-2026-20238
creationtimestamp| type| source ---|---|--- 2026-05-20 18:54:44+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mmcle4nvvp2h...
CVE-2009-1537
creationtimestamp| type| source ---|---|--- 2026-05-20 18:00:02+00:00| exploited| https://vulnerability.circl.lu/known-exploited-vulnerabilities-catalog/675f3e40-1b20-4f43-8a01-57264171ed3f 2026-05-20 21:13:36+00:00| seen| https://infosec.exchange/users/secdb/statuses/116608677530202595 2026-05-2...
CVE-2026-34653
creationtimestamp| type| source ---|---|--- 2026-05-20 17:07:07+00:00| seen| https://bsky.app/profile/cyberhub.blog/post/3mmcfdp7xcn26...
GHSA-CRR4-7RM4-8GPW
creationtimestamp| type| source ---|---|--- 2026-05-20 16:56:46+00:00| seen| https://bsky.app/profile/Whiskeyomega.cupoftea.social.ap.brid.gy/post/3mmceqyeaiq72...
GHSA-XX55-4RRG-8XG6
creationtimestamp| type| source ---|---|--- 2026-05-20 16:56:46+00:00| seen| https://bsky.app/profile/Whiskeyomega.cupoftea.social.ap.brid.gy/post/3mmceqyeaiq72...
CVE-2026-35676
creationtimestamp| type| source ---|---|--- 2026-05-20 15:45:53+00:00| published-proof-of-concept| https://github.com/advisories/GHSA-9qv9-8xv6-5p35 2026-05-28 17:34:05+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mmwklaw3se2c...
CVE-2026-3985
creationtimestamp| type| source ---|---|--- 2026-05-20 15:32:07+00:00| seen| https://bsky.app/profile/atomicedge.bsky.social/post/3mmc7zsxv322c...
CVE-2026-42383
creationtimestamp| type| source ---|---|--- 2026-05-20 15:08:49+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mmc6q5qqsx2r...
CVE-2026-45443
creationtimestamp| type| source ---|---|--- 2026-05-20 15:06:06+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mmc6l7vybf2i...
GHSA-5C46-X3QW-Q7J7
creationtimestamp| type| source ---|---|--- 2026-05-20 14:50:44+00:00| seen| https://t.me/bdufstecru/3182...
CVE-2026-45767
creationtimestamp| type| source ---|---|--- 2026-05-20 14:15:32+00:00| seen| https://bsky.app/profile/o2cloud.bsky.social/post/3mmc3qtiaud2c...
CVE-2026-45770
creationtimestamp| type| source ---|---|--- 2026-05-20 14:15:32+00:00| seen| https://bsky.app/profile/o2cloud.bsky.social/post/3mmc3qtiaud2c...
CVE-2026-45759
creationtimestamp| type| source ---|---|--- 2026-05-20 14:15:31+00:00| seen| https://bsky.app/profile/o2cloud.bsky.social/post/3mmc3qtiaud2c...