Kibana 9.3.x < 9.3.3 SSRF (ESA-2026-40)

The version of Kibana installed on the remote host is 9.3.x prior to 9.3.3. It is, therefore, affected by a vulnerability as referenced in the ESA-2026-40 advisory. - Server-Side Request Forgery CWE-918 in Kibana can allow an authenticated user with connector management privileges to bypass the...

CVE-2026-44065

creationtimestamp| type| source ---|---|--- 2026-05-21 10:16:40+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mme6uoddou2v 2026-06-01 00:01:27+00:00| seen| https://bsky.app/profile/slackers.it/post/3mn6rmo4sw523...

GHSA-C55G-RP4X-FX84

creationtimestamp| type| source ---|---|--- 2026-05-18 16:40:50+00:00| seen| https://gist.github.com/alon710/f7ea0e610f42bb6c81fff1ec9bb3b2bd...

CVE-2026-45345

creationtimestamp| type| source ---|---|--- 2026-05-09 22:10:27+00:00| published-proof-of-concept| https://github.com/open-webui/open-webui/security/advisories/GHSA-gm54-m39w-grjp 2026-05-16 01:15:40+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mlwocnrknq2e...

Unity Linux 20.1050e / 20.1060e / 20.1070e Security Update: ImageMagick (UTSA-2026-016800)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-016800 advisory. ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to versions 7.1.2-15 and 6.9.13-40, a heap buffer over-read...

CVE-2026-34596

creationtimestamp| type| source ---|---|--- 2026-05-05 20:40:33+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3ml52bjtdqw2n 2026-05-06 05:36:40+00:00| seen| https://www.acn.gov.it/portale/w/rilevate-vulnerabilita-in-sandboxie-per-windows...

Astra Linux - уязвимость в imagemagick

ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to versions 7.1.2-15 and 6.9.13-40, a logic error in the YUV sampling factor validation allowed an invalid sampling factor to bypass checks and trigger a division-by-zero during image loading,...

Astra Linux - уязвимость в linux-5.10, linux-6.1, linux, linux-5.15

In the Linux kernel, the following vulnerability has been resolved: vfio/platform: check the bounds of read/write syscalls count and offset are passed from user space and not checked, only offset is capped to 40 bits, which can be used to read/write out of bounds of the device...

Astra Linux - уязвимость в imagemagick

ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to versions 7.1.2-15 and 6.9.13-40, a stack buffer overflow occurs when processing the an attribute in msl.c. A long value overflows a fixed-size stack buffer, leading to memory corruption. Versio...

CVE-2026-41960

creationtimestamp| type| source ---|---|--- 2026-04-29 18:40:55+00:00| seen| https://bsky.app/profile/ifin-intel.org/post/3mknqs2ra3n2q 2026-05-15 11:46:07+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mlvb34aetg2t...

CVE-2025-11710

creationtimestamp| type| source ---|---|--- 2026-04-13 17:58:40+00:00| seen| Telegram/p3rLkRNsYJZ67sP09Ii9oq0h-GstdR6uHp9Rsmqv7xN00c...

CVE-2026-5815

creationtimestamp| type| source ---|---|--- 2026-04-08 15:40:35+00:00| seen| https://infosec.exchange/users/vuldb/statuses/116369839554011068 2026-04-09 00:02:06+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mizix2d4o42j 2026-04-09 01:28:42+00:00| seen|...

CVE-2026-39891

creationtimestamp| type| source ---|---|--- 2026-04-07 20:48:24+00:00| published-proof-of-concept| https://github.com/MervinPraison/PraisonAI/security/advisories/GHSA-hwg5-x759-7wjg 2026-04-08 22:52:40+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mizf2vvhym23 2026-04-09...

CVE-2026-4107

creationtimestamp| type| source ---|---|--- 2026-04-03 13:19:05+00:00| seen| Telegram/YV8cS3UbatxDTGe0fjayhbeNknefcE-s36BQ9lt853A06hI 2026-04-03 13:19:23+00:00| seen| Telegram/QqwQTSXFRfWkuAVwlsaqg6mFQm4R2dirgmJdEmZNl5G-CtQ 2026-04-04 02:40:10+00:00| seen|...

CVE-2026-34053

creationtimestamp| type| source ---|---|--- 2026-03-27 01:40:09+00:00| seen| https://bsky.app/profile/cyberhub.blog/post/3mhyyeg5wn62c...

CVE-2026-33323

Parse Server is an open source backend that can be deployed to any infrastructure that can run Node.js. Prior to versions 8.6.51 and 9.6.0-alpha.40, the Pages route and legacy PublicAPI route for resending email verification links return distinguishable responses depending on whether the provided...

CVE-2026-33323

Summary (CVE-2026-33323): Parse Server exposes an information disclosure vulnerability in the Pages and legacy PublicAPI routes used to resend email verification links. Before versions 8.6.51 and 9.6.0-alpha.40, these endpoints leak whether a given username exists and has an unverified email by r...

CVE-2026-33323 Parse Server: Email verification resend page leaks user existence

Parse Server is an open source backend that can be deployed to any infrastructure that can run Node.js. Prior to versions 8.6.51 and 9.6.0-alpha.40, the Pages route and legacy PublicAPI route for resending email verification links return distinguishable responses depending on whether the provided...

Parse Server 安全漏洞

Parse Server is an open-source backend developed by the Parse Platform. It can be deployed on any infrastructure that runs Node.js. There were security vulnerabilities in versions of Parse Server prior to 8.6.51 and 9.6.0-alpha.40. These vulnerabilities stemmed from the re-rendering of email...

CVE-2026-20726

creationtimestamp| type| source ---|---|--- 2026-03-17 19:30:40+00:00| seen| https://infosec.place/objects/5bdcc101-bda7-4b18-b21b-304536505c2e...