CVE-2026-48191

creationtimestamp| type| source ---|---|--- 2026-06-01 07:05:36+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mn7jd4vsft2m...

CVE-2026-45192

creationtimestamp| type| source ---|---|--- 2026-06-01 05:38:06+00:00| seen| https://bsky.app/profile/infosec.skyfleet.blue/post/3mn7egkqk5j25 2026-06-01 11:06:18+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mn7wrkurec2b...

CVE-2026-35563

creationtimestamp| type| source ---|---|--- 2026-06-01 05:19:01+00:00| seen| https://bsky.app/profile/infosec.skyfleet.blue/post/3mn7dekec2u2w 2026-06-01 08:49:49+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mn7p5irere26...

CVE-2026-10204

creationtimestamp| type| source ---|---|--- 2026-06-01 03:58:09+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mn76tx7cre2v...

CVE-2026-10203

creationtimestamp| type| source ---|---|--- 2026-06-01 03:48:08+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mn76bzxmz32q...

PHP: PHP-FPM: PHP-FPM: Cross-Site Scripting vulnerability via improper URL sanitation

A flaw was found in PHP, specifically within the PHP-FPM status page. Due to improper sanitation of user data, a remote attacker can craft a malicious URL. When a user views the PHP-FPM status page with this crafted URL, it can lead to the execution of arbitrary JavaScript code Cross-Site Scripti...

PHP: PHP-FPM: PHP-FPM: Cross-Site Scripting vulnerability via improper URL sanitation

A flaw was found in PHP, specifically within the PHP-FPM status page. Due to improper sanitation of user data, a remote attacker can craft a malicious URL. When a user views the PHP-FPM status page with this crafted URL, it can lead to the execution of arbitrary JavaScript code Cross-Site Scripti...

python: cpython: Python: Arbitrary code execution via command injection in webbrowser.open() API

A flaw was found in the Python webbrowser.open API. If a specially crafted URL containing "%action" is processed, an attacker could bypass a previous mitigation for CVE-2026-4519. This bypass allows for command injection into the underlying shell, potentially leading to arbitrary code execution...

CVE-2026-49389

creationtimestamp| type| source ---|---|--- 2026-06-01 00:01:30+00:00| seen| https://bsky.app/profile/slackers.it/post/3mn6rmrienf2z...

PT-2026-45461

Authentication Bypass by Spoofing vulnerability in AAM Plugin Advanced Access Manager allows URL Encoding. This issue affects Advanced Access Manager: from n/a through 7.1.0...

PT-2026-45399

Name of the Vulnerable Software and Affected Versions Apache Fesod Incubating fesod-sheet versions prior to 2.0.2-incubating Description Server-Side Request Forgery SSRF in the UrlImageConverter component allows attackers to trigger outbound network requests to internal or restricted resources by...

Apache Fesod 安全漏洞

Apache Fesod is a high-performance spreadsheet file reading and writing library developed by the Apache Foundation in the United States. Versions of Apache Fesod prior to 2.0.2-incubating contained security vulnerabilities. These vulnerabilities were caused by a request forgeing issue in the...

PT-2026-45367

Name of the Vulnerable Software and Affected Versions Apache Airflow versions prior to 3.2.2 Description A bug in the bulk Task Instances API allows an authenticated UI or API user to bypass authorization and mutate Task Instance states across different DAGs. The system evaluates authorization...

PT-2026-45349

A vulnerability was identified in JeecgBoot up to 3.9.2. The impacted element is an unknown function of the file /airag/airagModel/test. The manipulation of the argument baseUrl leads to server-side request forgery. The attack is possible to be carried out remotely. The exploit is publicly...

Apache Airflow 安全漏洞

Apache Airflow is an open-source platform developed by the Apache Foundation in the United States. It allows for the creation, management, and monitoring of workflows. This platform features scalability and dynamic monitoring capabilities. There is a security vulnerability in Apache Airflow, whic...

CVE-2026-10194

creationtimestamp| type| source ---|---|--- 2026-05-31 19:14:47+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mn6bm45who2a...

CVE-2026-49157

creationtimestamp| type| source ---|---|--- 2026-05-31 17:58:17+00:00| seen| https://bsky.app/profile/infosec.skyfleet.blue/post/3mn65dcowdh2u...

CVE-2026-10186

creationtimestamp| type| source ---|---|--- 2026-05-31 17:09:40+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mn62mejwmf2y...

CVE-2026-10184

creationtimestamp| type| source ---|---|--- 2026-05-31 16:03:09+00:00| seen| https://bsky.app/profile/postac001.bsky.social/post/3mn5wvghnqe25 2026-05-31 16:59:39+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mn622hlqpu2g 2026-06-08 07:02:30+00:00| seen|...

CVE-2026-10270

creationtimestamp| type| source ---|---|--- 2026-05-31 14:28:04+00:00| seen| https://infosec.exchange/users/vuldb/statuses/116669649537496666 2026-06-03 23:07:08+00:00| seen| https://bsky.app/profile/cyberhub.blog/post/3mng7ycwb2v2e...