2782 matches found
UBUNTU-CVE-2026-56367
ImageMagick before 7.1.2-15 and 6.9.x before 6.9.13-40 contains an integer overflow in the PSB PSD v2 RLE decoding path ReadPSDChannelRLE in coders/psd.c that causes a heap out-of-bounds read on 32-bit builds. Processing a crafted PSB file can lead to information disclosure or a crash...
CVE-2026-52756
creationtimestamp| type| source ---|---|--- 2026-06-10 15:40:45+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mnx2by7mii2j...
CVE-2026-11406
creationtimestamp| type| source ---|---|--- 2026-06-06 12:40:21+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mnmoecvdcc2y...
Kibana 9.3.x < 9.3.3 SSRF (ESA-2026-40)
The version of Kibana installed on the remote host is 9.3.x prior to 9.3.3. It is, therefore, affected by a vulnerability as referenced in the ESA-2026-40 advisory. - Server-Side Request Forgery CWE-918 in Kibana can allow an authenticated user with connector management privileges to bypass the...
CVE-2026-44065
creationtimestamp| type| source ---|---|--- 2026-05-21 10:16:40+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mme6uoddou2v 2026-06-01 00:01:27+00:00| seen| https://bsky.app/profile/slackers.it/post/3mn6rmo4sw523...
GHSA-C55G-RP4X-FX84
creationtimestamp| type| source ---|---|--- 2026-05-18 16:40:50+00:00| seen| https://gist.github.com/alon710/f7ea0e610f42bb6c81fff1ec9bb3b2bd...
CVE-2026-45345
creationtimestamp| type| source ---|---|--- 2026-05-09 22:10:27+00:00| published-proof-of-concept| https://github.com/open-webui/open-webui/security/advisories/GHSA-gm54-m39w-grjp 2026-05-16 01:15:40+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mlwocnrknq2e...
Unity Linux 20.1050e / 20.1060e / 20.1070e Security Update: ImageMagick (UTSA-2026-016800)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-016800 advisory. ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to versions 7.1.2-15 and 6.9.13-40, a heap buffer over-read...
CVE-2026-34596
creationtimestamp| type| source ---|---|--- 2026-05-05 20:40:33+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3ml52bjtdqw2n 2026-05-06 05:36:40+00:00| seen| https://www.acn.gov.it/portale/w/rilevate-vulnerabilita-in-sandboxie-per-windows...
CVE-2026-41960
creationtimestamp| type| source ---|---|--- 2026-04-29 18:40:55+00:00| seen| https://bsky.app/profile/ifin-intel.org/post/3mknqs2ra3n2q 2026-05-15 11:46:07+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mlvb34aetg2t...
CVE-2025-11710
creationtimestamp| type| source ---|---|--- 2026-04-13 17:58:40+00:00| seen| Telegram/p3rLkRNsYJZ67sP09Ii9oq0h-GstdR6uHp9Rsmqv7xN00c...
CVE-2026-5815
creationtimestamp| type| source ---|---|--- 2026-04-08 15:40:35+00:00| seen| https://infosec.exchange/users/vuldb/statuses/116369839554011068 2026-04-09 00:02:06+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mizix2d4o42j 2026-04-09 01:28:42+00:00| seen|...
CVE-2026-39891
creationtimestamp| type| source ---|---|--- 2026-04-07 20:48:24+00:00| published-proof-of-concept| https://github.com/MervinPraison/PraisonAI/security/advisories/GHSA-hwg5-x759-7wjg 2026-04-08 22:52:40+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mizf2vvhym23 2026-04-09...
CVE-2026-4107
creationtimestamp| type| source ---|---|--- 2026-04-03 13:19:05+00:00| seen| Telegram/YV8cS3UbatxDTGe0fjayhbeNknefcE-s36BQ9lt853A06hI 2026-04-03 13:19:23+00:00| seen| Telegram/QqwQTSXFRfWkuAVwlsaqg6mFQm4R2dirgmJdEmZNl5G-CtQ 2026-04-04 02:40:10+00:00| seen|...
CVE-2026-34053
creationtimestamp| type| source ---|---|--- 2026-03-27 01:40:09+00:00| seen| https://bsky.app/profile/cyberhub.blog/post/3mhyyeg5wn62c...
CVE-2026-33323
Parse Server is an open source backend that can be deployed to any infrastructure that can run Node.js. Prior to versions 8.6.51 and 9.6.0-alpha.40, the Pages route and legacy PublicAPI route for resending email verification links return distinguishable responses depending on whether the provided...
CVE-2026-33323 Parse Server: Email verification resend page leaks user existence
Parse Server is an open source backend that can be deployed to any infrastructure that can run Node.js. Prior to versions 8.6.51 and 9.6.0-alpha.40, the Pages route and legacy PublicAPI route for resending email verification links return distinguishable responses depending on whether the provided...
CVE-2026-33323
Summary (CVE-2026-33323): Parse Server exposes an information disclosure vulnerability in the Pages and legacy PublicAPI routes used to resend email verification links. Before versions 8.6.51 and 9.6.0-alpha.40, these endpoints leak whether a given username exists and has an unverified email by r...
Parse Server 安全漏洞
Parse Server is an open-source backend developed by the Parse Platform. It can be deployed on any infrastructure that runs Node.js. There were security vulnerabilities in versions of Parse Server prior to 8.6.51 and 9.6.0-alpha.40. These vulnerabilities stemmed from the re-rendering of email...
CVE-2026-20726
creationtimestamp| type| source ---|---|--- 2026-03-17 19:30:40+00:00| seen| https://infosec.place/objects/5bdcc101-bda7-4b18-b21b-304536505c2e...