CVE-2026-6202

A security flaw has been discovered in code-projects Easy Blog Site 1.0. This affects an unknown function of the file post.php. Performing a manipulation of the argument tags results in sql injection. The attack may be initiated remotely. The exploit has been released to the public and may be use...

CVE-2026-3317

Reflected Cross-Site Scripting XSS vulnerability in Navigate Content Management System. The vulnerability is present in the '/blog' endpoint because user input is not properly sanitized through designed query parameters. This results in unsafe HTML rendering, which could allow a remote attacker t...

CVE-2026-5805

A weakness has been identified in code-projects Easy Blog Site up to 1.0. The impacted element is an unknown function of the file /users/contactus.php. Executing a manipulation of the argument Name can lead to sql injection. The attack can be launched remotely. The exploit has been made available...

CVE-2026-6625

A security vulnerability has been detected in moxi624 Mogu Blog v2 up to 5.2. Affected by this vulnerability is the function LocalFileServiceImpl.uploadPictureByUrl of the file mogupicture/src/main/java/com/moxi/mogublog/picture/service/impl/LocalFileServiceImpl.java of the component Picture...

CVE-2026-6579

A weakness has been identified in liangliangyy DjangoBlog up to 2.1.0.0. This impacts an unknown function of the file blog/views.py of the component Clean Endpoint. This manipulation causes missing authentication. The attack may be initiated remotely. The exploit has been made available to the...

CVE-2026-40308

My Calendar is a WordPress plugin for managing calendar events. In versions 3.7.6 and below, the mcajaxmcjsaction AJAX endpoint, registered for unauthenticated users, passes user-supplied arguments through parsestr without validation, allowing injection of arbitrary parameters including a site...

Malicious Package

Overview midcore is a malicious package. This package contains malicious code, and its content was removed from the official package manager. While this package might be attempting to impersonate a valid organization, there is no connection between that organization and this package authorship...

Malicious Package

Overview chai-utils-test is a malicious package. This package contains malicious code, and its content was removed from the official package manager. While this package might be attempting to impersonate a valid organization, there is no connection between that organization and this package...

Malicious Package

Overview chai-as-json is a malicious package. This package contains malicious code, and its content was removed from the official package manager. While this package might be attempting to impersonate a valid organization, there is no connection between that organization and this package...

Malicious Package

Overview chai-as-listened is a malicious package. This package contains malicious code, and its content was removed from the official package manager. While this package might be attempting to impersonate a valid organization, there is no connection between that organization and this package...

Malicious Package

Overview midpatch is a malicious package. This package contains malicious code, and its content was removed from the official package manager. While this package might be attempting to impersonate a valid organization, there is no connection between that organization and this package authorship...

CVE-2017-20235

creationtimestamp| type| source ---|---|--- 2026-06-03 12:07:08+00:00| seen| https://bsky.app/profile/cyberhub.blog/post/3mnf345rytp2i...

Malicious Package

Overview imillegal5 is a malicious package. This package is part of a malicious npm campaign that abused the registry to distribute ad-supported web proxy applications disguised as educational websites. The package contains web assets intended to bypass network restrictions and generate advertisi...

How to Get a Reddit API Key in 2026: Step-by-Step Guide

Getting a Reddit API key starts with creating an application through Reddit’s developer portal and understanding how its…...

CVE-2026-40543

creationtimestamp| type| source ---|---|--- 2026-06-01 01:55:00+00:00| seen| https://cert.pl/en/posts/2026/06/CVE-2026-40543 2026-06-01 12:30:11+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mna3hk2oep2p...

CVE-2026-7098

creationtimestamp| type| source ---|---|--- 2026-05-30 11:07:07+00:00| seen| https://bsky.app/profile/cyberhub.blog/post/3mn2vv5mgyu2k...

CVE-2026-7054

creationtimestamp| type| source ---|---|--- 2026-05-29 10:07:07+00:00| seen| https://bsky.app/profile/cyberhub.blog/post/3mmyc2x7f2i2g...

CVE-2026-47759

creationtimestamp| type| source ---|---|--- 2026-05-28 17:01:01+00:00| seen| https://bsky.app/profile/thehackerwire.bsky.social/post/3mmwiq4djr42l 2026-05-28 17:23:57+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mmwjz5vnzt2i 2026-05-28 21:37:06+00:00| seen|...

The CISO Whisperer’s Watch List For The Gartner Security & Risk Management Summit 2026

New York, USA, 28th May 2026, CyberNewswire...

CVE-2026-44729

creationtimestamp| type| source ---|---|--- 2026-05-28 00:07:07+00:00| seen| https://bsky.app/profile/cyberhub.blog/post/3mmuq35vhat2w...