CVE-2026-3601

creationtimestamp| type| source ---|---|--- 2026-05-05 10:46:01+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3ml3z2g4dqg2o...

CVE-2026-28435

creationtimestamp| type| source ---|---|--- 2026-03-04 20:18:15+00:00| seen| https://bsky.app/profile/thehackerwire.bsky.social/post/3mgb44kqejo25 2026-03-06 00:00:16+00:00| seen| https://bsky.app/profile/cyberhub.blog/post/3mgdyyifisu2u 2026-03-20 11:11:34+00:00| seen|...

CVE-2025-14608

The WP Last Modified Info plugin for WordPress is vulnerable to Insecure Direct Object Reference in all versions up to, and including, 1.9.5. This is due to the plugin not validating a user's access to a post before modifying its metadata in the 'bulksave' AJAX action. This makes it possible for...

CVE-2025-61140

creationtimestamp| type| source ---|---|--- 2026-01-30 06:22:08+00:00| seen| https://bsky.app/profile/thehackerwire.bsky.social/post/3mdmnz3yolt27...

CVE-2025-5965

creationtimestamp| type| source ---|---|--- 2026-01-05 11:01:45+00:00| published-proof-of-concept| Telegram/bEi2Gyat6djXuIRCvYCqeze7lrAEFHYQrA4USIXVnSJ3PA 2026-01-06 05:26:59+00:00| seen| https://bsky.app/profile/malwarevangelist.com/post/3mbq7qffgwc27 2026-01-08 14:15:08+00:00| seen|...

CVE-2025-1928

creationtimestamp| type| source ---|---|--- 2025-12-19 13:25:14+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mads2xuyhs2u 2025-12-22 03:08:30+00:00| seen| https://bsky.app/profile/thehackerwire.bsky.social/post/3makaywqecb2e 2026-01-12 18:07:39+00:00| seen|...

EUVD-2025-12028

Malicious code in bioql PyPI...

CVE-2025-8105

creationtimestamp| type| source ---|---|--- 2025-08-17 07:31:38+00:00| seen| https://bsky.app/profile/offseq.bsky.social/post/3lwleijdh332g...

CVE-2025-5346

creationtimestamp| type| source ---|---|--- 2025-07-17 15:02:05+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3lu677endax2g...

CVE-2024-58258

creationtimestamp| type| source ---|---|--- 2025-07-14 08:13:13+00:00| seen| https://bsky.app/profile/r-netsec-bot.bsky.social/post/3ltvwxkubqw2i 2025-07-14 09:30:15+00:00| published-proof-of-concept| https://t.me/TopCyberTechNews/544 2025-07-14 10:09:32+00:00| seen|...

CVE-2025-5953

creationtimestamp| type| source ---|---|--- 2025-07-04 03:45:51+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3lt4decmkgc2r...

CVE-2025-3880

creationtimestamp| type| source ---|---|--- 2025-06-17 11:38:26+00:00| seen| https://t.me/DarkWebInformerCVEAlerts/18578 2025-06-17 15:36:24+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3lrst574fmt2k...

CVE-2025-46480

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Padam Shankhadev Nepali Post Date nepali-post-date allows Stored XSS.This issue affects Nepali Post Date: from n/a through = 5.1.1...

WordPress Nepali Post Date plugin <= 5.1.1 - Cross Site Scripting (XSS) Vulnerability

Cross Site Scripting XSS Vulnerability discovered by muhammad yudha in WordPress Plugin Nepali Post Date versions = 5.1.1...

CVE-2025-46480

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Padam Shankhadev Nepali Post Date nepali-post-date allows Stored XSS.This issue affects Nepali Post Date: from n/a through = 5.1.1...

CVE-2025-46480 WordPress Nepali Post Date plugin <= 5.1.1 - Cross Site Scripting (XSS) Vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Padam Shankhadev Nepali Post Date nepali-post-date allows Stored XSS.This issue affects Nepali Post Date: from n/a through = 5.1.1...

CVE-2025-46480

CVE-2025-46480 concerns the WordPress plugin Nepali Post Date . The vulnerability is described as Stored Cross-Site Scripting (XSS) caused by improper input neutralization during web page generation. Affected versions are up to 5.1.1 (inclusive). The issue originates from the Nepali Post Date plu...

CVE-2025-46480 WordPress Nepali Post Date plugin <= 5.1.1 - Cross Site Scripting (XSS) Vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Padam Shankhadev Nepali Post Date nepali-post-date allows Stored XSS.This issue affects Nepali Post Date: from n/a through = 5.1.1...

WordPress plugin Nepali Post Date 跨站脚本漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A cross-site scripting...

PT-2025-17794 · Unknown · Nepali Post Date

Name of the Vulnerable Software and Affected Versions: Nepali Post Date versions through 5.1.1 Description: The issue is related to Improper Neutralization of Input During Web Page Generation, also known as Cross-site Scripting, which allows Stored XSS. This means that an attacker can inject...