Lotus Domino R5 and R6 WebMail - Information Disclosure

Lotus Domino R5 and R6 WebMail with 'Generate HTML for all fields' enabled which is by default allows remote attackers to read the HTML source to obtain sensitive information including the password hash in the HTTPPassword field, the password change date in the HTTPPasswordChangeDate field, and t...

CVE-2026-45497

creationtimestamp| type| source ---|---|--- 2026-06-05 00:00:44+00:00| seen| https://bsky.app/profile/thehackerwire.bsky.social/post/3mnith2tyg62b...

CVE-2026-10871

creationtimestamp| type| source ---|---|--- 2026-06-04 23:11:51+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mniqponzlm2h...

CVE-2026-5228

creationtimestamp| type| source ---|---|--- 2026-06-04 23:00:29+00:00| seen| https://bsky.app/profile/thehackerwire.bsky.social/post/3mniq3d6wvj25...

CVE-2026-41518

creationtimestamp| type| source ---|---|--- 2026-06-04 21:01:21+00:00| seen| https://bsky.app/profile/thehackerwire.bsky.social/post/3mnijgd2nma2n 2026-06-04 22:22:43+00:00| seen| https://bsky.app/profile/postac001.bsky.social/post/3mninxty2z62m 2026-06-04 22:40:24+00:00| seen|...

CVE-2026-43986

creationtimestamp| type| source ---|---|--- 2026-06-04 18:05:50+00:00| seen| https://bsky.app/profile/hugovalters.bsky.social/post/3mni7mj5dvi25 2026-06-04 23:00:46+00:00| seen| https://bsky.app/profile/thehackerwire.bsky.social/post/3mniq3rzwzs22...

GHSA-FR49-MHGJ-CRFC

creationtimestamp| type| source ---|---|--- 2026-06-04 15:20:57+00:00| seen| https://gist.github.com/alon710/010787d34dde83f4031b6f6c155ccffb...

CVE-2026-10810

creationtimestamp| type| source ---|---|--- 2026-06-04 15:19:31+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mnhwd46ag22x...

CVE-2026-10855

creationtimestamp| type| source ---|---|--- 2026-06-04 15:05:12+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mnhvjeg3gk2b...

CVE-2026-10807

creationtimestamp| type| source ---|---|--- 2026-06-04 14:51:31+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mnhur2bark26...

CVE-2026-4104 SQLi in Akmer Informatics' TeknoPass

Authorization bypass through User-Controlled SQL primary key vulnerability in Akmer Informatics Automation Industry and Trade Ltd. Co. TeknoPass allows SQL Injection. This issue affects TeknoPass: from 20210501 through 20260429...

CVE-2026-47320

creationtimestamp| type| source ---|---|--- 2026-06-04 11:06:16+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mnhi6a6h2j2k...

CVE-2026-50212

creationtimestamp| type| source ---|---|--- 2026-06-04 10:48:12+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mnhh5wuoi52g...

CVE-2026-49189

creationtimestamp| type| source ---|---|--- 2026-06-04 07:30:29+00:00| seen| https://bsky.app/profile/offseq.bsky.social/post/3mnh44fcjsw2f 2026-06-04 07:30:37+00:00| seen| https://infosec.exchange/users/offseq/statuses/116690663960529131 2026-06-04 07:43:12+00:00| seen|...

CVE-2026-7764

creationtimestamp| type| source ---|---|--- 2026-06-04 06:37:40+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mngz5xiqip26...

CVE-2026-44939

creationtimestamp| type| source ---|---|--- 2026-06-04 02:26:12+00:00| seen| https://bsky.app/profile/securitylab-jp.bsky.social/post/3mngl44gers2h...

CVE-2026-35078

creationtimestamp| type| source ---|---|--- 2026-06-04 00:00:51+00:00| seen| https://bsky.app/profile/thehackerwire.bsky.social/post/3mngcyeoy6b2f...

Photon OS 5.0: Python3 PHSA-2026-5.0-0862

An update of the python3 package has been released. %NASLMINLEVEL 80900 C Tenable, Inc. The descriptive text and package checks in this plugin were extracted from VMware Security Advisory PHSA-2026-5.0-0862. The text itself is copyright C VMware, Inc. include'compat.inc'; if description...

PT-2026-46293

Name of the Vulnerable Software and Affected Versions Neterbit NW-431F Router versions prior to 20241014-IR03 Description The SMS module contains a stored Cross-Site Scripting XSS issue, where the application fails to properly sanitize user input within SMS messages before they are stored and...

PT-2026-46313

Name of the Vulnerable Software and Affected Versions SQLite sqldiff.exe versions prior to 2025-12-26 Description The sqldiff.exe utility does not securely handle the conversion of Unicode characters to ANSI codepages by the Microsoft Windows C runtime. An attacker can exploit this by using the...