CVE-2025-41117 XSS in Grafana Explore stack trace

Stack traces in Grafana's Explore Traces view can be rendered as raw HTML, and thus inject malicious JavaScript in the browser. This would require malicious JavaScript to be entered into the stack trace field. Only datasources with the Jaeger HTTP API appear to be affected; Jaeger gRPC and Tempo ...

CVE-2026-26215

creationtimestamp| type| source ---|---|--- 2026-02-12 06:00:31+00:00| seen| https://infosec.exchange/users/offseq/statuses/116056131573720038 2026-02-12 06:00:33+00:00| seen| https://bsky.app/profile/offseq.bsky.social/post/3mencuhqapk2y 2026-02-12 14:20:52+00:00| seen|...

CVE-2026-20617

creationtimestamp| type| source ---|---|--- 2026-02-12 04:30:33+00:00| seen| https://infosec.exchange/users/offseq/statuses/116055777778769880 2026-02-12 04:30:35+00:00| seen| https://bsky.app/profile/offseq.bsky.social/post/3men5tlbujs2b...

CVE-2026-1729

creationtimestamp| type| source ---|---|--- 2026-02-12 03:00:33+00:00| seen| https://bsky.app/profile/offseq.bsky.social/post/3memyslhib72e 2026-02-12 03:00:52+00:00| seen| https://infosec.exchange/users/offseq/statuses/116055423747881235 2026-02-12 07:00:35+00:00| seen|...

authentik 数据伪造问题漏洞

Authentik is an open-source identity provisioning application developed by Authentik. Versions of Authentik prior to 2025.8.6, 2025.10.4, and 2025.12.4 had a data manipulation vulnerability. This vulnerability arises from the use of certain configured SAML sources, allowing attackers to inject...

CVE-2026-0958

creationtimestamp| type| source ---|---|--- 2026-02-11 12:21:31+00:00| seen| https://bsky.app/profile/thehackerwire.bsky.social/post/3melhorpbvs2v 2026-02-11 13:55:16+00:00| seen| https://bsky.app/profile/o2cloud.bsky.social/post/3melmweqeno2j...

CVE-2025-8099

creationtimestamp| type| source ---|---|--- 2026-02-11 12:21:24+00:00| seen| https://bsky.app/profile/thehackerwire.bsky.social/post/3melhokrcuu27 2026-02-11 13:55:16+00:00| seen| https://bsky.app/profile/o2cloud.bsky.social/post/3melmweqeno2j...

SUSE-SU-2026:0431-1 Security update for libsoup

This update for libsoup fixes the following issues: - CVE-2026-1536: Always validate the headers value when coming from untrusted source to avoid HTTP header injection. bsc1257440 - CVE-2026-1761: Check length of bytes read in soupfilterinputstreamreaduntil to avoid a stack-based buffer overflow...

CVE-2026-1235

creationtimestamp| type| source ---|---|--- 2026-02-11 07:30:32+00:00| seen| https://bsky.app/profile/offseq.bsky.social/post/3mekxggszyg2a 2026-02-11 07:30:32+00:00| seen| https://infosec.exchange/users/offseq/statuses/116050823062800664...

CVE-2026-25993

creationtimestamp| type| source ---|---|--- 2026-02-11 04:30:33+00:00| seen| https://infosec.exchange/users/offseq/statuses/116050115365469283 2026-02-11 04:30:34+00:00| seen| https://bsky.app/profile/offseq.bsky.social/post/3meknemn66n26 2026-02-12 01:11:19+00:00| seen|...

CVE-2026-26009

creationtimestamp| type| source ---|---|--- 2026-02-11 01:30:46+00:00| seen| https://bsky.app/profile/offseq.bsky.social/post/3mekdd4ionk2y 2026-02-11 01:30:48+00:00| seen| https://infosec.exchange/users/offseq/statuses/116049408386596552 2026-02-11 07:26:09+00:00| seen|...

TRACE: Timely Retrieval and Alignment for Cybersecurity Knowledge Graph Construction and Expansion

The rapid evolution of cyber threats has highlighted significant gaps in security knowledge integration. Cybersecurity Knowledge Graphs CKGs relying on structured data inherently exhibit hysteresis, as the timely incorporation of rapidly evolving unstructured data remains limited, potentially...

Proctorio Secure Exam Proctor Extension 安全漏洞

Proctorio Secure Exam Proctor Extension is an online proctoring plugin provided by Proctorio. There is a security vulnerability in Proctorio Secure Exam Proctor Extension, which stems from the message processor not correctly verifying the source of messages, potentially allowing malicious message...

CVE-2026-20841

creationtimestamp| type| source ---|---|--- 2026-02-10 17:30:28+00:00| seen| https://www.thezdi.com/blog/2026/2/10/the-february-2026-security-update-review 2026-02-10 21:22:36+00:00| seen| https://bsky.app/profile/timb-machine.infosec.exchange.ap.brid.gy/post/3mejvh7k4x3p2 2026-02-10...

CVE-2026-21533

creationtimestamp| type| source ---|---|--- 2026-02-10 17:30:28+00:00| seen| https://www.thezdi.com/blog/2026/2/10/the-february-2026-security-update-review 2026-02-10 18:01:45+00:00| seen| https://advisories.ncsc.nl/advisory?id=NCSC-2026-0053 2026-02-10 18:36:00+00:00| seen|...

CVE-2026-21510

creationtimestamp| type| source ---|---|--- 2026-02-10 17:30:28+00:00| seen| https://www.thezdi.com/blog/2026/2/10/the-february-2026-security-update-review 2026-02-10 18:01:45+00:00| seen| https://advisories.ncsc.nl/advisory?id=NCSC-2026-0053 2026-02-10 18:53:06+00:00| seen|...

CVE-2026-21519

creationtimestamp| type| source ---|---|--- 2026-02-10 17:30:28+00:00| seen| https://www.thezdi.com/blog/2026/2/10/the-february-2026-security-update-review 2026-02-10 18:01:45+00:00| seen| https://advisories.ncsc.nl/advisory?id=NCSC-2026-0053 2026-02-10 18:36:07+00:00| seen|...

CVE-2026-21528

creationtimestamp| type| source ---|---|--- 2026-02-10 17:30:28+00:00| seen| https://www.thezdi.com/blog/2026/2/10/the-february-2026-security-update-review 2026-02-10 18:08:27+00:00| seen| https://advisories.ncsc.nl/advisory?id=NCSC-2026-0057 2026-02-11 13:50:11+00:00| seen|...

CVE-2026-21529

creationtimestamp| type| source ---|---|--- 2026-02-10 17:30:28+00:00| seen| https://www.thezdi.com/blog/2026/2/10/the-february-2026-security-update-review 2026-02-10 18:08:27+00:00| seen| https://advisories.ncsc.nl/advisory?id=NCSC-2026-0057 2026-02-11 13:50:11+00:00| seen|...

CVE-2025-32008

creationtimestamp| type| source ---|---|--- 2026-02-10 17:25:41+00:00| seen| https://bsky.app/profile/thehackerwire.bsky.social/post/3meji7qe5mz24 2026-02-10 17:36:35+00:00| seen| https://infosec.exchange/users/vuldb/statuses/116047543988074615...