CVE-2026-28557

creationtimestamp| type| source ---|---|--- 2026-02-28 23:51:31+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mfxg6aocx224...

GHSA-945P-3JHM-6RCP

creationtimestamp| type| source ---|---|--- 2026-02-28 03:40:10+00:00| seen| https://gist.github.com/alon710/43a4ce973e7deb9cb22c759bda6c4252...

GHSA-5C6J-R48X-RMVQ Serialize JavaScript is Vulnerable to RCE via RegExp.flags and Date.prototype.toISOString()

Impact The serialize-javascript npm package versions tags, the injected code executes. javascript const serialize = require'serialize-javascript'; // Create an object that passes instanceof RegExp with a spoofed .flags const fakeRegex = Object.createRegExp.prototype; Object.definePropertyfakeRege...

Serialize JavaScript is Vulnerable to RCE via RegExp.flags and Date.prototype.toISOString()

Impact The serialize-javascript npm package versions tags, the injected code executes. javascript const serialize = require'serialize-javascript'; // Create an object that passes instanceof RegExp with a spoofed .flags const fakeRegex = Object.createRegExp.prototype; Object.definePropertyfakeRege...

CVE-2026-28516

creationtimestamp| type| source ---|---|--- 2026-02-28 00:59:06+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mfuzi6em5h2o 2026-04-14 20:15:55+00:00| seen| https://github.com/rapid7/metasploit-framework/blob/master/modules/exploits/linux/http/opendciminstallsqlirce.rb 2026-04-15...

CVE-2026-28426

creationtimestamp| type| source ---|---|--- 2026-02-28 00:53:21+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mfuz5v32k32e 2026-02-28 04:26:30+00:00| seen| https://bsky.app/profile/thehackerwire.bsky.social/post/3mfvf2xw6ub2u 2026-03-01 02:10:22+00:00| seen|...

Photon OS 4.0: Go PHSA-2026-4.0-0968

An update of the go package has been released. %NASLMINLEVEL 80900 C Tenable, Inc. The descriptive text and package checks in this plugin were extracted from VMware Security Advisory PHSA-2026-4.0-0968. The text itself is copyright C VMware, Inc. include'compat.inc'; if description scriptid300118...

CVE-2026-28270

creationtimestamp| type| source ---|---|--- 2026-02-27 23:54:24+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mfuvui4ay42z...

CVE-2026-28272

creationtimestamp| type| source ---|---|--- 2026-02-27 23:49:24+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mfuvljoruf2d 2026-02-28 05:52:30+00:00| seen| https://bsky.app/profile/thehackerwire.bsky.social/post/3mfvjus4ru42c 2026-03-04 21:40:10+00:00| seen|...

CVE-2018-25160

creationtimestamp| type| source ---|---|--- 2026-02-27 23:35:46+00:00| seen| https://bsky.app/profile/infosec.skyfleet.blue/post/3mfuut5hylf2w 2026-02-27 23:40:06+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mfuv2vq2yv2u...

CVE-2026-27753

creationtimestamp| type| source ---|---|--- 2026-02-27 21:48:59+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mfuou7iefw2y...

CVE-2019-25496

creationtimestamp| type| source ---|---|--- 2026-02-27 21:18:39+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mfun5y7zsw2u 2026-03-04 03:20:09+00:00| seen| https://bsky.app/profile/cyberhub.blog/post/3mg7da366ut2a...

CVE-2026-27752

creationtimestamp| type| source ---|---|--- 2026-02-27 21:11:34+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mfumrc7s6p2y 2026-03-01 09:00:22+00:00| seen| https://gist.github.com/alon710/450c0991304a17194265f8f69b8932b3...

CVE-2019-25495

creationtimestamp| type| source ---|---|--- 2026-02-27 21:01:00+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mfum6fyqiv2y 2026-03-04 05:40:10+00:00| seen| https://bsky.app/profile/cyberhub.blog/post/3mg7l2fypph2m...

CVE-2026-27167

creationtimestamp| type| source ---|---|--- 2026-02-27 20:23:08+00:00| published-proof-of-concept| https://github.com/gradio-app/gradio/security/advisories/GHSA-h3h8-3v2v-rg7m 2026-03-01 01:10:21+00:00| seen| https://gist.github.com/alon710/b9cbc8bb91819a5e8479c60ca815f5c4 2026-03-02...

GHSA-R492-HJGH-C9GW

creationtimestamp| type| source ---|---|--- 2026-02-27 16:40:11+00:00| seen| https://gist.github.com/alon710/e1ec4d28426e93e5bbac8a63052d7481...

EUVD-2025-208138

Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in Signum Technology Promotion and Training Inc. Windesk.Fm allows SQL Injection.This issue affects windesk.Fm: through 27022026. NOTE: The vendor was contacted early about this disclosure but did not...

CVE-2026-26937

creationtimestamp| type| source ---|---|--- 2026-02-27 14:10:21+00:00| seen| https://bsky.app/profile/o2cloud.bsky.social/post/3mftva4kls32b...

CVE-2024-10938

creationtimestamp| type| source ---|---|--- 2026-02-27 13:21:56+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mftsjjnzrw2y...

CVE-2025-11950 Reflected XSS in Knowhy's EduAsist

Improper Neutralization of Input During Web Page Generation XSS or 'Cross-site Scripting' vulnerability in KNOWHY Advanced Technology Trading Ltd. Co. EduAsist allows Reflected XSS. This issue affects EduAsist: before v2.1...