GHSA-7WW3-XVF5-CXWM

creationtimestamp| type| source ---|---|--- 2026-05-06 03:10:29+00:00| seen| https://gist.github.com/alon710/1d05503905d86d5b6619223d3f318c59...

CVE-2025-71252

creationtimestamp| type| source ---|---|--- 2026-05-06 02:54:15+00:00| seen| https://bsky.app/profile/thehackerwire.bsky.social/post/3ml5p5pkzx226 2026-05-06 05:28:33+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3ml5xronng72o 2026-06-01 18:00:00+00:00| seen|...

CVE-2026-42509

creationtimestamp| type| source ---|---|--- 2026-05-06 02:17:44+00:00| seen| https://bsky.app/profile/infosec.skyfleet.blue/post/3ml5n4hflr42s...

CVE-2026-40068

creationtimestamp| type| source ---|---|--- 2026-05-06 02:06:45+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3ml5mitenaf2e...

CVE-2026-43975

creationtimestamp| type| source ---|---|--- 2026-05-06 02:06:34+00:00| seen| https://bsky.app/profile/infosec.skyfleet.blue/post/3ml5miikxog2j...

CVE-2026-35579

creationtimestamp| type| source ---|---|--- 2026-05-06 02:01:42+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3ml5m7sjb5n2e...

CVE-2026-35527

creationtimestamp| type| source ---|---|--- 2026-05-06 01:51:40+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3ml5lnuaqdc2t...

PT-2026-37583

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A crash occurs in the AMD Linux display driver when attempting to access the link enc on a dpia link. This issue is related to a missing signal type check in the get phyd32clk src functi...

mistune 安全漏洞

Mistune is a fast and powerful Python Markdown parser developed by Hsiaoming Yang. Versions of Mistune from 3.0.0a1 to 3.2.0 contain security vulnerabilities. These vulnerabilities stem from a denial-of-service attack involving regular expressions in LINKTITLERE, which could allow attackers to...

Linux kernel 安全漏洞

The Linux kernel is the kernel used by the Linux operating system developed by the Linux Foundation in the United States. There is a security vulnerability in the Linux kernel, which stems from an overflow in the nlink function of the jfs file system’s jfsrename function. This vulnerability may...

PT-2026-37477

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A NULL pointer dereference can occur in the ASoC SOF Intel hda component. This happens when there is a mismatch between the DAI links in the machine driver and the topology, which may...

PT-2026-38088

Name of the Vulnerable Software and Affected Versions Mistune versions 3.0.0a1 through 3.2.0 Description A Regular Expression Denial of Service ReDoS exists in the LINK TITLE RE regular expression. An attacker can provide specially crafted Markdown for parsing that triggers catastrophic...

Linux Distros Unpatched Vulnerability : CVE-2025-71292

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - jfs: nlink overflow in jfsrename If nlink is maximal for a directory -1 and inside that directory you perform a rename for some child directory not moving from...

RHCOS 4 : OpenShift Container Platform 4.6.51 (RHSA-2021:4799)

The remote Red Hat Enterprise Linux CoreOS 4 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2021:4799 advisory. - jenkins: FilePathmkdirs does not check permission to create parent directories CVE-2021-21685 - jenkins: File path filters do not...

CVE-2026-4062

creationtimestamp| type| source ---|---|--- 2026-05-05 22:33:06+00:00| seen| https://bsky.app/profile/atomicedge.bsky.social/post/3ml5akrpkkh2c...

CVE-2026-30923

creationtimestamp| type| source ---|---|--- 2026-05-05 22:11:45+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3ml57em74tm2t 2026-05-06 18:00:00+00:00| seen| https://www.hkcert.org/security-bulletin/modsecurity-denial-of-service-vulnerability20260507...

GHSA-FW8G-CG8F-9J28

creationtimestamp| type| source ---|---|--- 2026-05-05 22:10:29+00:00| seen| https://gist.github.com/alon710/732fb73007773b3c7944069ce75d1865...

CVE-2026-32603

creationtimestamp| type| source ---|---|--- 2026-05-05 22:06:44+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3ml573msws42p 2026-05-06 05:36:40+00:00| seen| https://www.acn.gov.it/portale/w/rilevate-vulnerabilita-in-sandboxie-per-windows...

Cross-site Scripting (XSS)

Overview ip-address is an A library for parsing IPv4 and IPv6 IP addresses in node and the browser. Affected versions of this package are vulnerable to Cross-site Scripting XSS via the group, link, and spanAll functions, as well as the parseMessage field of thrown errors. An attacker can execute...

ip-address has XSS in Address6 HTML-emitting methods

Summary Address6.group and Address6.link do not HTML-escape attacker-controlled content before embedding it in the HTML strings they return, and AddressError.parseMessage emitted by the Address6 constructor for invalid input can contain unescaped attacker-controlled content in one branch. An...