37628 matches found
CVE-2026-50722
creationtimestamp| type| source ---|---|--- 2026-07-02 23:21:52+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mpp6derudq22 2026-07-03 02:21:58+00:00| seen| https://bsky.app/profile/postac001.bsky.social/post/3mppifgegwx2x 2026-07-03 06:27:12+00:00| seen|...
CVE-2026-12122
creationtimestamp| type| source ---|---|--- 2026-07-02 22:16:48+00:00| seen| https://bsky.app/profile/kriptabiz.bsky.social/post/3mpp2oz6fe227...
CVE-2026-59099
creationtimestamp| type| source ---|---|--- 2026-07-02 22:00:57+00:00| seen| https://bsky.app/profile/thehackerwire.bsky.social/post/3mpozsoeoil2t 2026-07-03 00:08:50+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mppaxex7xh24 2026-07-03 15:09:49+00:00| seen|...
CVE-2026-58460
creationtimestamp| type| source ---|---|--- 2026-07-02 22:00:43+00:00| seen| https://bsky.app/profile/thehackerwire.bsky.social/post/3mpozsah7qp2a 2026-07-03 16:55:20+00:00| seen| https://bsky.app/profile/kriptabiz.bsky.social/post/3mpqz753emf2w...
CVE-2026-57679
creationtimestamp| type| source ---|---|--- 2026-07-02 21:46:05+00:00| seen| https://bsky.app/profile/stackflag.bsky.social/post/3mpoyy457if2r 2026-07-03 00:35:59+00:00| seen| https://bsky.app/profile/kriptabiz.bsky.social/post/3mppchwjyrl2b 2026-07-03 00:36:00+00:00| seen|...
CVE-2026-55950
creationtimestamp| type| source ---|---|--- 2026-07-02 19:30:56+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mporghjrir27 2026-07-03 09:41:42+00:00| seen| https://bsky.app/profile/kriptabiz.bsky.social/post/3mpqaxqaleg2u 2026-07-03 10:37:35+00:00| seen|...
CVE-2024-14037
creationtimestamp| type| source ---|---|--- 2026-07-02 19:15:50+00:00| seen| https://bsky.app/profile/postac001.bsky.social/post/3mpoqlg2xhx27 2026-07-02 19:25:56+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mpor5j4quo2v 2026-07-02 20:20:45+00:00| seen|...
CVE-2026-55119
creationtimestamp| type| source ---|---|--- 2026-07-02 18:56:13+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mpopif3kwk2a 2026-07-03 07:27:03+00:00| seen| https://bsky.app/profile/kriptabiz.bsky.social/post/3mppzgy6epo2n...
CVE-2026-55110
creationtimestamp| type| source ---|---|--- 2026-07-02 18:51:13+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mpop7glvx22w 2026-07-03 07:07:15+00:00| seen| https://bsky.app/profile/kriptabiz.bsky.social/post/3mppydky5l42i...
Craft CMS: Authorship spoofing in `entries/save-entry` via pre-check/post-mutation authorization gap
Summary EntriesController::actionSaveEntry performs entry-edit permission checks before request-controlled author changes are applied to the model. The subsequent author mutation path accepts attacker-supplied authors / author parameters and allows the change when the current user is one of the o...
CVE-2026-7311
The TinyPNG – JPEG, PNG & WebP image compression plugin for WordPress (up to version 3.6.13) is vulnerable to arbitrary file deletion due to insufficient file path validation in delete_converted_image_size. Authenticated attackers with author-level access can delete arbitrary files on the server ...
CVE-2026-7311
The TinyPNG – JPEG, PNG & WebP image compression plugin for WordPress is vulnerable to arbitrary file deletion due to insufficient file path validation in the deleteconvertedimagesize function in all versions up to, and including, 3.6.13. This makes it possible for authenticated attackers, with...
CVE-2026-55116
creationtimestamp| type| source ---|---|--- 2026-07-02 18:31:33+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mpoo4atcsr2w 2026-07-03 08:31:09+00:00| seen| https://bsky.app/profile/kriptabiz.bsky.social/post/3mpq4zlwqt52c 2026-07-03 21:38:06+00:00| seen|...
CVE-2026-54401
creationtimestamp| type| source ---|---|--- 2026-07-02 18:29:14+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mpony4gxfx2z 2026-07-03 07:07:40+00:00| seen| https://bsky.app/profile/kriptabiz.bsky.social/post/3mppyectjt62c...
CVE-2026-55115
creationtimestamp| type| source ---|---|--- 2026-07-02 18:27:05+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mponu6s7dz2j 2026-07-03 07:13:48+00:00| seen| https://bsky.app/profile/kriptabiz.bsky.social/post/3mppypbjmeg2w 2026-07-03 08:30:37+00:00| seen|...
CVE-2026-55114
creationtimestamp| type| source ---|---|--- 2026-07-02 18:18:07+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mponeajoqd2v 2026-07-03 07:05:49+00:00| seen| https://bsky.app/profile/kriptabiz.bsky.social/post/3mppyayifuw27...
CVE-2026-54404
creationtimestamp| type| source ---|---|--- 2026-07-02 18:16:37+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mponbkeuld2v 2026-07-03 19:51:16+00:00| seen| https://bsky.app/profile/kriptabiz.bsky.social/post/3mprczq72g72f...
CVE-2026-13743
creationtimestamp| type| source ---|---|--- 2026-07-02 17:15:13+00:00| seen| https://www.cisa.gov/news-events/ics-advisories/icsa-26-183-02 2026-07-02 20:21:42+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mpoub7zdge2x 2026-07-03 12:23:48+00:00| seen|...
CVE-2025-58902
creationtimestamp| type| source ---|---|--- 2026-07-02 17:05:07+00:00| seen| https://bsky.app/profile/postac001.bsky.social/post/3mpojbp3e6w2v 2026-07-03 03:26:57+00:00| seen| https://bsky.app/profile/kriptabiz.bsky.social/post/3mpplzmqmgt2k 2026-07-03 11:39:39+00:00| seen|...
CVE-2026-56842
creationtimestamp| type| source ---|---|--- 2026-07-02 17:02:18+00:00| seen| https://bsky.app/profile/thehackerwire.bsky.social/post/3mpoj4mzudb2v 2026-07-02 18:46:56+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mpooxqxrlq2z 2026-07-03 07:26:23+00:00| seen|...