CVE-2025-3945

creationtimestamp| type| source ---|---|--- 2025-05-22 15:52:50+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3lprhwnyjv32y 2025-08-07 10:00:00+00:00| seen| https://www.cisa.gov/news-events/ics-advisories/icsa-25-219-02...

CVE-2019-15891

An issue was discovered in CKFinder through 2.6.2.1 and 3.x through 3.5.0. The documentation has misleading information that could lead to a conclusion that the application has a built-in bulletproof content sniffing protection...

CVE-2019-19022

iTerm2 through 3.3.6 has potentially insufficient documentation about the presence of search history in com.googlecode.iterm2.plist, which might allow remote attackers to obtain sensitive information, as demonstrated by searching for the NoSyncSearchHistory string in .plist files within public Gi...

CVE-2019-4323

"HCL AppScan Enterprise advisory API documentation is susceptible to clickjacking, which could allow an attacker to embed the contents of untrusted web pages in a frame."...

CVE-2012-2302

Site Documentation Sitedoc module for Drupal 6.x-1.x before 6.x-1.4 does not properly check the save location when archiving, which allows remote attackers to obtain sensitive information via unspecified vectors...

xdg-utils security update

1.1.3-13 - Update documentation for CVE-2022-4055 RHEL-87487 1.1.3-12 - Fix CVE-2022-4055 RHEL-87487...

CVE-2025-48069

creationtimestamp| type| source ---|---|--- 2025-05-21 21:19:07+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3lppjp6wds62l...

CVE-2003-0801

Cross-site scripting XSS vulnerability in Nokia Electronic Documentation NED 5.0 allows remote attackers to execute arbitrary web script and steal cookies via a URL to the docs/ directory that contains the script...

CVE-2003-0803

Nokia Electronic Documentation NED 5.0 allows remote attackers to use NED as an open HTTP proxy via a URL in the location parameter, which NED accesses and returns to the user...

CVE-2025-48207

creationtimestamp| type| source ---|---|--- 2025-05-21 17:18:24+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3lpp4anl3uo2p 2025-05-21 19:42:45+00:00| seen| https://t.me/DarkWebInformerCVEAlerts/17175...

[SECURITY] Fedora 42 Update: yelp-42.2-9.fc42

Yelp is the help browser for the GNOME desktop. It is designed to help you browse all the documentation on your system in one central tool, including traditional man pages, info pages and documentation written in DocBook...

CVE-2025-46724

Langroid is a Python framework to build large language model LLM-powered applications. Prior to version 0.53.15, TableChatAgent uses pandas eval. If fed by untrusted user input, like the case of a public-facing LLM application, it may be vulnerable to code injection. Langroid 0.53.15 sanitizes...

CVE-2025-46724 Langroid has a Code Injection vulnerability in TableChatAgent

Langroid is a Python framework to build large language model LLM-powered applications. Prior to version 0.53.15, TableChatAgent uses pandas eval. If fed by untrusted user input, like the case of a public-facing LLM application, it may be vulnerable to code injection. Langroid 0.53.15 sanitizes...

CVE-2025-41227

creationtimestamp| type| source ---|---|--- 2025-05-20 14:48:22+00:00| seen| https://bsky.app/profile/andersonc0d3.bsky.social/post/3lpmdfkawoc2w 2025-05-20 14:48:26+00:00| seen| https://infosec.exchange/users/andersonc0d3/statuses/114540708203094327 2025-05-20 14:54:00+00:00| seen|...

CVE-2024-42922

creationtimestamp| type| source ---|---|--- 2025-05-19 19:29:10+00:00| seen| https://gist.github.com/mstfsec/c4c05ddfb1cf8779422ff780587723c8 2025-05-21 17:18:22+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3lpp4an5hly2t...

CVE-2025-4927

creationtimestamp| type| source ---|---|--- 2025-05-19 10:38:11+00:00| published-proof-of-concept| https://t.me/DarkWebInformerCVEAlerts/16838 2025-05-19 13:13:52+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3lpjnnkma2g2n...

CVE-2025-4847

creationtimestamp| type| source ---|---|--- 2025-05-18 03:35:35+00:00| seen| https://bsky.app/profile/2rZiKKbOU3nTafniR2qMMSE0gwZ.activitypub.awakari.com.ap.brid.gy/post/3lpg4ueno6sb2 2025-05-18 05:08:12+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3lpgc2bymrq2t...

CVE-2025-4707

creationtimestamp| type| source ---|---|--- 2025-05-15 19:03:26+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3lpa7cx3pev2p...

CVE-2024-2473

creationtimestamp| type| source ---|---|--- 2025-05-15 07:24:21+00:00| confirmed| https://github.com/projectdiscovery/nuclei-templates/tree/main/http/cves/2024/CVE-2024-2473.yaml 2025-05-15 21:02:28+00:00| seen| https://bsky.app/profile/beikokucyber.bsky.social/post/3lpafxtmgqd2a 2026-01-27...

On Technique Identification and Threat-Actor Attribution Using LLMs and Embedding Models

Attribution of cyber-attacks remains a complex but critical challenge for cyber defenders. Currently, manual extraction of behavioral indicators from dense forensic documentation causes significant attribution delays, especially following major incidents at the international scale. This research...