6244 matches found
CVE-2026-31812
creationtimestamp| type| source ---|---|--- 2026-03-09 10:24:08+00:00| published-proof-of-concept| https://github.com/quinn-rs/quinn/security/advisories/GHSA-6xvm-j4wr-6v98 2026-03-20 14:15:19+00:00| seen| https://bsky.app/profile/ferramentaslinux.bsky.social/post/3mhipc76zq22h 2026-03-20...
PT-2026-24135
Name of the Vulnerable Software and Affected Versions InstantCMS versions prior to 2.18.1 Description InstantCMS does not properly validate Cross-Site Request Forgery CSRF tokens. This allows attackers to perform actions on behalf of a user without their knowledge. Specifically, an attacker could...
CVE-2026-26018
creationtimestamp| type| source ---|---|--- 2026-03-07 11:00:45+00:00| seen| https://bsky.app/profile/thehackerwire.bsky.social/post/3mghoegdkt62f 2026-03-07 11:17:27+00:00| seen| https://bsky.app/profile/thehackerwire.bsky.social/post/3mghpcawlie2n 2026-03-16 00:00:00+00:00| seen|...
CVE-2025-8899
creationtimestamp| type| source ---|---|--- 2026-03-07 08:15:14+00:00| seen| https://bsky.app/profile/thehackerwire.bsky.social/post/3mghf4ha5rd2c 2026-03-07 08:54:43+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mghhd3jpwv2u...
CVE-2026-30840
creationtimestamp| type| source ---|---|--- 2026-03-07 08:07:40+00:00| seen| https://bsky.app/profile/thehackerwire.bsky.social/post/3mgheovye4t2f 2026-03-07 09:09:45+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mghi5xh6ld2k...
EUVD-2018-21651
OOP CMS BLOG 1.0 contains SQL injection vulnerabilities that allow unauthenticated attackers to execute arbitrary SQL queries by injecting malicious code through multiple parameters. Attackers can inject SQL commands via the search parameter in search.php, pageid parameter in page.php, and id...
CVE-2026-28479
creationtimestamp| type| source ---|---|--- 2026-03-06 10:16:17+00:00| seen| https://bsky.app/profile/thehackerwire.bsky.social/post/3mgf3fyf62k2f 2026-03-06 10:16:49+00:00| seen| https://bsky.app/profile/thehackerwire.bsky.social/post/3mgf3gvsp7j26 2026-03-06 10:17:02+00:00| seen|...
CVE-2026-28478
creationtimestamp| type| source ---|---|--- 2026-03-06 10:16:10+00:00| seen| https://bsky.app/profile/thehackerwire.bsky.social/post/3mgf3frgokj2x 2026-03-06 10:16:40+00:00| seen| https://bsky.app/profile/thehackerwire.bsky.social/post/3mgf3gof6hk2c 2026-03-17 19:00:13+00:00| seen|...
CVE-2025-59543
creationtimestamp| type| source ---|---|--- 2026-03-06 08:24:05+00:00| seen| https://bsky.app/profile/thehackerwire.bsky.social/post/3mgev5doplb2s 2026-03-06 08:35:51+00:00| seen| https://bsky.app/profile/thehackerwire.bsky.social/post/3mgevsg5jmg2f...
CVE-2025-59542
creationtimestamp| type| source ---|---|--- 2026-03-06 08:23:57+00:00| seen| https://bsky.app/profile/thehackerwire.bsky.social/post/3mgev54pn6t2k 2026-03-06 08:35:43+00:00| seen| https://bsky.app/profile/thehackerwire.bsky.social/post/3mgevs6nb572c...
CVE-2026-2331
creationtimestamp| type| source ---|---|--- 2026-03-06 08:20:45+00:00| seen| https://bsky.app/profile/thehackerwire.bsky.social/post/3mgeuxfzsrt2k 2026-03-06 08:21:18+00:00| seen| https://bsky.app/profile/thehackerwire.bsky.social/post/3mgeuyexy2a2s 2026-03-06 09:00:32+00:00| seen|...
CVE-2026-2330
creationtimestamp| type| source ---|---|--- 2026-03-06 08:20:38+00:00| seen| https://bsky.app/profile/thehackerwire.bsky.social/post/3mgeux7577l2k 2026-03-06 08:21:10+00:00| seen| https://bsky.app/profile/thehackerwire.bsky.social/post/3mgeuy5n4ol2x 2026-03-06 09:49:39+00:00| seen|...
CVE-2026-27361
Missing Authorization vulnerability in WebCodingPlace Responsive Posts Carousel Pro responsive-posts-carousel-pro allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Responsive Posts Carousel Pro: from n/a through = 15.1...
CVE-2026-33010
creationtimestamp| type| source ---|---|--- 2026-03-06 05:49:10+00:00| published-proof-of-concept| https://github.com/doobidoo/mcp-memory-service/security/advisories/GHSA-g9rg-8vq5-mpwm 2026-03-20 20:00:40+00:00| seen| https://bsky.app/profile/thehackerwire.bsky.social/post/3mhjclu7gsp26 2026-03-...
Zsoft OOP CMS BLOG SQL注入漏洞
Zsoft OOP CMS BLOG is a content management system blog platform developed by Zsoft Company in Bangladesh. Version 1.0 of Zsoft OOP CMS BLOG has a SQL injection vulnerability. This vulnerability stems from issues with the search parameter in search.php, the pageid parameter in page.php, and the id...
PT-2026-23708
Name of the Vulnerable Software and Affected Versions OOP CMS BLOG version 1.0 Description The software contains SQL injection flaws that permit unauthenticated attackers to execute arbitrary SQL queries through multiple parameters. Attackers can inject SQL commands via the search parameter in...
CVE-2026-28454
OpenClaw versions prior to 2026.2.2 fail to validate webhook secrets in Telegram webhook mode must be enabled, allowing unauthenticated HTTP POST requests to the webhook endpoint that trust attacker-controlled JSON payloads. Remote attackers can forge Telegram updates by spoofing message.from.id...
CVE-2025-70219
creationtimestamp| type| source ---|---|--- 2026-03-05 18:40:01+00:00| seen| https://bsky.app/profile/thehackerwire.bsky.social/post/3mgdh3tjiig2u 2026-03-05 18:40:31+00:00| seen| https://bsky.app/profile/thehackerwire.bsky.social/post/3mgdh4pxmpu2c...
CVE-2026-2599
creationtimestamp| type| source ---|---|--- 2026-03-05 13:20:21+00:00| seen| https://bsky.app/profile/thehackerwire.bsky.social/post/3mgcva7lu5a2s 2026-03-05 13:20:28+00:00| seen| https://bsky.app/profile/thehackerwire.bsky.social/post/3mgcvagp2kb2c 2026-03-05 13:58:46+00:00| seen|...
EUVD-2026-9623
Missing Authorization vulnerability in WebCodingPlace Responsive Posts Carousel Pro responsive-posts-carousel-pro allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Responsive Posts Carousel Pro: from n/a through = 15.1...