58688 matches found
CVE-2026-10870
creationtimestamp| type| source ---|---|--- 2026-06-04 23:31:52+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mnirtinq6s2b...
CVE-2026-42540
creationtimestamp| type| source ---|---|--- 2026-06-04 23:21:53+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mnirblpodl2n...
CVE-2026-11017
Inappropriate implementation in Link Preview in Google Chrome prior to 149.0.7827.53 allowed a remote attacker who had compromised the renderer process to bypass navigation restrictions via a crafted HTML page. Chromium security severity: Medium...
CVE-2026-11322
creationtimestamp| type| source ---|---|--- 2026-06-04 23:07:33+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mniqhz3vnc26...
CVE-2026-11017
Inappropriate implementation in Link Preview in Google Chrome prior to 149.0.7827.53 allowed a remote attacker who had compromised the renderer process to bypass navigation restrictions via a crafted HTML page. Chromium security severity: Medium...
CVE-2026-11017
CVE-2026-11017 involves an inappropriate implementation in Chrome’s Link Preview. Chrome versions prior to 149.0.7827.53 are affected. A remote attacker who has already compromised the renderer process can bypass navigation restrictions via a crafted HTML page. The provided documents do not speci...
CVE-2026-36499
creationtimestamp| type| source ---|---|--- 2026-06-04 22:54:43+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mnipr2mk7m2o...
CVE-2024-6858
creationtimestamp| type| source ---|---|--- 2026-06-04 22:49:54+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mnipigspj72x...
CVE-2026-46741
creationtimestamp| type| source ---|---|--- 2026-06-04 22:00:54+00:00| seen| https://bsky.app/profile/thehackerwire.bsky.social/post/3mnimqswez62p...
Shopware: SSRF in Media External-Link Endpoint Bypasses IP Validation
Summary The /api/action/media/external-link endpoint allows authenticated admin users to make server-side HTTP HEAD requests to arbitrary internal IP addresses. While the parallel uploadFromURL flow validates target IPs against private/reserved ranges via FileUrlValidator, the linkURL flow only...
GHSA-GQ96-5PFX-F4VC Shopware: SSRF in Media External-Link Endpoint Bypasses IP Validation
Summary The /api/action/media/external-link endpoint allows authenticated admin users to make server-side HTTP HEAD requests to arbitrary internal IP addresses. While the parallel uploadFromURL flow validates target IPs against private/reserved ranges via FileUrlValidator, the linkURL flow only...
CVE-2026-41207
creationtimestamp| type| source ---|---|--- 2026-06-04 19:24:44+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mnidzlfbgm2f...
CVE-2025-69755
creationtimestamp| type| source ---|---|--- 2026-06-04 19:10:26+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mnid7yxtsx2x...
CVE-2026-49942
creationtimestamp| type| source ---|---|--- 2026-06-04 18:52:45+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mnicafan2b2f...
CVE-2026-48480
creationtimestamp| type| source ---|---|--- 2026-06-04 18:50:36+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mnic4kb5ip2y...
CVE-2025-71316 SQLite sqldiff remote code execution via argument injection
SQLite 'sqldiff.exe' does not securely handle the way the Microsoft Windows C runtime converts Unicode characters to ANSI codepages. An attacker could use the '-L' option to load an arbitrary DLL with a crafted command line argument string that results in command line file arguments being...
EUVD-2025-210067
SQLite 'sqldiff.exe' does not securely handle the way the Microsoft Windows C runtime converts Unicode characters to ANSI codepages. An attacker could use the '-L' option to load an arbitrary DLL with a crafted command line argument string that results in command line file arguments being...
GHSA-QFWV-87QJ-98XQ
creationtimestamp| type| source ---|---|--- 2026-06-04 16:10:59+00:00| seen| https://gist.github.com/alon710/e01fe3eef2f4071e63ac4580c1c830af...
CVE-2026-10810
creationtimestamp| type| source ---|---|--- 2026-06-04 15:19:31+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mnhwd46ag22x...
CVE-2026-10806
creationtimestamp| type| source ---|---|--- 2026-06-04 15:15:19+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mnhw3glr5g2b...