25972 matches found
CVE-2026-35078
creationtimestamp| type| source ---|---|--- 2026-06-04 00:00:51+00:00| seen| https://bsky.app/profile/thehackerwire.bsky.social/post/3mngcyeoy6b2f...
GHSA-34QG-65M4-F23M
creationtimestamp| type| source ---|---|--- 2026-06-03 22:11:20+00:00| seen| https://gist.github.com/alon710/067712fc0b9798c132c204b55ab42a44...
CVE-2026-40495
creationtimestamp| type| source ---|---|--- 2026-06-03 21:28:10+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mng2hfdmyg2m...
CVE-2026-10766
creationtimestamp| type| source ---|---|--- 2026-06-03 21:23:09+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mng26gc5iq2c...
CVE-2026-44609
creationtimestamp| type| source ---|---|--- 2026-06-03 21:08:51+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mnfzetqikh2d...
CVE-2026-45702
creationtimestamp| type| source ---|---|--- 2026-06-03 20:58:43+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mnfyspp2iz27...
CVE-2026-47325
ProjectsAndPrograms school-management-system uses predictable credentials by generating student's and teacher's passwords solely from the user’s date of birth e.g., 12072000 for 12 July 2000. The application does not require or prompt users to change the password upon first login. This behavior...
EUVD-2026-34094
ProjectsAndPrograms school-management-system uses predictable credentials by generating student's and teacher's passwords solely from the user’s date of birth e.g., 12072000 for 12 July 2000. The application does not require or prompt users to change the password upon first login. This behavior...
CVE-2026-47325 Weak password policy in ProjectsAndPrograms school-management-system
ProjectsAndPrograms school-management-system uses predictable credentials by generating student's and teacher's passwords solely from the user’s date of birth e.g., 12072000 for 12 July 2000. The application does not require or prompt users to change the password upon first login. This behavior...
CVE-2026-47325
The CVE-2026-47325 entry concerns the ProjectsAndPrograms school-management-system, where passwords for students and teachers are generated solely from the user’s date of birth (e.g., 12072000), and there is no forced password change at first login. Affected status: the version tied to commit 6b6...
CVE-2026-50052
creationtimestamp| type| source ---|---|--- 2026-06-03 06:40:21+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mneitu3vm62y...
Lotus Domino R5 and R6 WebMail - Information Disclosure
Lotus Domino R5 and R6 WebMail with 'Generate HTML for all fields' enabled which is by default allows remote attackers to read the HTML source to obtain sensitive information including the password hash in the HTTPPassword field, the password change date in the HTTPPasswordChangeDate field, and t...
CVE-2026-42670
creationtimestamp| type| source ---|---|--- 2026-06-03 06:00:54+00:00| seen| https://bsky.app/profile/thehackerwire.bsky.social/post/3mnegnaakkt22...
CVE-2026-21870
creationtimestamp| type| source ---|---|--- 2026-06-03 05:13:24+00:00| seen| https://bsky.app/profile/theresidentmachine.bsky.social/post/3mnedydo7z62r...
CVE-2026-50031
creationtimestamp| type| source ---|---|--- 2026-06-03 04:59:56+00:00| seen| https://bsky.app/profile/thehackerwire.bsky.social/post/3mnedaazybx2d 2026-06-03 06:39:21+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mneis2ju762e 2026-06-03 10:54:15+00:00| seen|...
CVE-2026-5191
creationtimestamp| type| source ---|---|--- 2026-06-03 03:57:24+00:00| seen| https://bsky.app/profile/donwebmedia.bsky.social/post/3mne7qh6bvy24...
CVE-2026-10691
creationtimestamp| type| source ---|---|--- 2026-06-03 03:14:38+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mne5dyoirs23...
CVE-2026-7201
creationtimestamp| type| source ---|---|--- 2026-06-03 01:00:43+00:00| seen| https://bsky.app/profile/thehackerwire.bsky.social/post/3mndvujfwwn2r...
CVE-2026-7198
creationtimestamp| type| source ---|---|--- 2026-06-03 01:00:36+00:00| seen| https://bsky.app/profile/thehackerwire.bsky.social/post/3mndvucat4n2n...
EUVD-2026-34055
The EmergencyWP – Dead Man's switch & legacy deliverance plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 1.4.2. This is due to missing or incorrect nonce validation on the formsettingsui settings save handler, procedural include scope functio...