213 matches found
CVE-2026-21826
creationtimestamp| type| source ---|---|--- 2026-06-05 08:59:53+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mnjrl6q2s42m 2026-06-05 08:59:53+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mnjrl6q2s42m...
CVE-2026-10586
creationtimestamp| type| source ---|---|--- 2026-06-05 01:30:28+00:00| seen| https://bsky.app/profile/offseq.bsky.social/post/3mniyhk3bqm2d 2026-06-05 01:30:40+00:00| seen| https://infosec.exchange/users/offseq/statuses/116694910594929909 2026-06-05 06:00:15+00:00| seen|...
CVE-2026-49185
creationtimestamp| type| source ---|---|--- 2026-06-04 04:30:27+00:00| seen| https://infosec.exchange/users/offseq/statuses/116689956169057665 2026-06-04 04:30:29+00:00| seen| https://bsky.app/profile/offseq.bsky.social/post/3mngs2jmfpk2q 2026-06-04 06:54:06+00:00| seen|...
EUVD-2026-33547
An improper neutralization of user-controllable input in OTRS or OTRS Community Edition ticket handling allows authenticated attackers to perform reflected cross-site scripting XSS attacks via crafted request parameters associated with ticket actions. By injecting malicious JavaScript into...
CVE-2026-45697
creationtimestamp| type| source ---|---|--- 2026-05-29 21:00:47+00:00| seen| https://bsky.app/profile/thehackerwire.bsky.social/post/3mmzglquzru2m 2026-05-29 21:42:45+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mmziwu3w562q...
CVE-2026-46840
creationtimestamp| type| source ---|---|--- 2026-05-28 23:39:32+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mmx6yr7bd32w 2026-05-29 00:00:48+00:00| seen| https://bsky.app/profile/thehackerwire.bsky.social/post/3mmxa6qsrho27 2026-05-29 13:14:12+00:00| seen|...
CVE-2026-10044
creationtimestamp| type| source ---|---|--- 2026-05-28 23:02:27+00:00| seen| https://bsky.app/profile/thehackerwire.bsky.social/post/3mmx4vh355u2v 2026-05-29 00:18:50+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mmxb6pkfqp2k...
Symfony's HtmlSanitizer URL Attributes Pass Through BiDi Override Characters → Visual href Spoofing
Description Symfony\Component\HtmlSanitizer\TextSanitizer\UrlSanitizer::parse used by UrlSanitizer::sanitize and therefore by every HtmlSanitizer config that allows links or media accepts URLs that contain Unicode explicit-direction BiDi formatting characters: U+202A–U+202E LRE / RLE / PDF / LRO ...
CVE-2026-42834
creationtimestamp| type| source ---|---|--- 2026-05-20 13:46:12+00:00| seen| https://infosec.exchange/users/vuldb/statuses/116607206794194616 2026-05-20 14:10:14+00:00| seen| https://bsky.app/profile/o2cloud.bsky.social/post/3mmc3hfcycd2m 2026-05-20 14:57:01+00:00| seen|...
CVE-2026-47212
creationtimestamp| type| source ---|---|--- 2026-05-20 11:02:20+00:00| seen| https://bsky.app/profile/symfony.com/post/3mmbqxgdjg72y 2026-05-20 14:15:14+00:00| seen| https://bsky.app/profile/o2cloud.bsky.social/post/3mmc3qc4eg22q...
CVE-2026-39079
creationtimestamp| type| source ---|---|--- 2026-05-18 17:00:41+00:00| seen| https://bsky.app/profile/thehackerwire.bsky.social/post/3mm5e2dmzu32l 2026-05-18 17:06:45+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mm5ef6vruh2n 2026-05-18 17:37:07+00:00| seen|...
GHSA-M675-2P33-XV9G Caddy: Unsafe Unicode Handling in FastCGI splitPos Allows Execution of Non-PHP Files
Summary The FastCGI transport's splitPos in modules/caddyhttp/reverseproxy/fastcgi/fastcgi.go misuses golang.org/x/text/search with search.IgnoreCase when the request path contains a non-ASCII byte. Two distinct flaws in that fallback let an attacker mislead Caddy's FastCGI splitting into treatin...
IT threat evolution in Q1 2026. Non-mobile statistics
IT threat evolution in Q1 2026. Non-mobile statistics IT threat evolution in Q1 2026. Mobile statistics The statistics in this report are based on detection verdicts returned by Kaspersky products unless otherwise stated. The information was provided by Kaspersky users who consented to sharing...
CVE-2026-3718
creationtimestamp| type| source ---|---|--- 2026-05-14 10:32:06+00:00| seen| https://bsky.app/profile/atomicedge.bsky.social/post/3mlsmht3m3r2u 2026-05-14 11:19:14+00:00| seen| https://bsky.app/profile/postac001.bsky.social/post/3mlsp444dup2x...
CVE-2026-41105
creationtimestamp| type| source ---|---|--- 2026-05-07 22:54:58+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mlccpqjqgl2t 2026-05-07 23:00:25+00:00| seen| https://bsky.app/profile/thehackerwire.bsky.social/post/3mlcczhnpnl2k 2026-05-12 15:53:04+00:00| seen|...
CVE-2025-71253
creationtimestamp| type| source ---|---|--- 2026-05-06 05:38:37+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3ml5ydnqr3a2p 2026-05-06 05:55:39+00:00| seen| https://bsky.app/profile/postac001.bsky.social/post/3ml5zc4mn572o 2026-05-06 18:59:57+00:00| seen|...
CVE-2026-40492
creationtimestamp| type| source ---|---|--- 2026-04-18 05:18:34+00:00| published-proof-of-concept| Telegram/veDSMFN7ecyhltWdKUwpcYAyE-ogEw-qfchv6YBZH7Zn1oc 2026-04-18 05:38:37+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mjqpx4bamu26 2026-04-18 06:00:28+00:00| seen|...
CVE-2026-6388
creationtimestamp| type| source ---|---|--- 2026-04-15 23:27:35+00:00| seen| Telegram/ajbOyvFAewWZ2L70l5GRQuj2wRnDYaN4zfpEHfJh7NMuY 2026-04-16 00:53:14+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mjl72wjbmn2z 2026-04-16 01:30:30+00:00| seen|...
CVE-2026-5983
creationtimestamp| type| source ---|---|--- 2026-04-09 23:30:56+00:00| published-proof-of-concept| Telegram/jvxENlxS5zD0hLDn-51kxH7F1GhkNHxvGXTHS6t1bT7Jtk 2026-04-10 00:59:07+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mj44lwuv2e2i 2026-04-10 06:08:15+00:00| seen|...
CVE-2024-1490
creationtimestamp| type| source ---|---|--- 2026-04-09 10:58:21+00:00| seen| https://infosec.exchange/users/certvde/statuses/116374392044690456 2026-04-09 10:58:28+00:00| seen| https://bsky.app/profile/certvde.infosec.exchange.ap.brid.gy/post/3mj2nmmql3a22 2026-04-09 12:02:42+00:00| seen|...