CVE-2026-5648

creationtimestamp| type| source ---|---|--- 2026-04-06 13:15:55+00:00| published-proof-of-concept| Telegram/xB-J5caT8OaTqFu1G6vNbp6TxSF4mn8gOhVa9PlynjV1S3c 2026-04-06 14:41:30+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mitiosglpw2g...

CVE-2026-31407

creationtimestamp| type| source ---|---|--- 2026-04-06 10:16:07+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3miszuar4ni2g 2026-05-31 20:00:00+00:00| seen| https://www.hkcert.org/security-bulletin/suse-linux-kernel-multiple-vulnerabilities20260601...

CVE-2026-31405

creationtimestamp| type| source ---|---|--- 2026-04-06 10:13:37+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3miszprfg352j 2026-05-05 20:00:00+00:00| seen| https://www.hkcert.org/security-bulletin/debian-linux-kernel-multiple-vulnerabilities20260506 2026-05-31 20:00:00+00:00| seen...

CVE-2026-5630

creationtimestamp| type| source ---|---|--- 2026-04-06 10:11:18+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3miszlmvjb525...

CVE-2026-37977

creationtimestamp| type| source ---|---|--- 2026-04-06 10:09:09+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3miszhrwzjx2i...

Qilin and Warlock Ransomware Use Vulnerable Drivers to Disable 300+ EDR Tools

Threat actors associated with Qilin and Warlock ransomware operations have been observed using the bring your own vulnerable driver BYOVD technique to silence security tools running on compromised hosts, according to findings from Cisco Talos and Trend Micro. Qilin attacks analyzed by Talos have...

CVE-2026-31409

creationtimestamp| type| source ---|---|--- 2026-04-06 10:03:29+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3misz5o6hu425 2026-05-05 20:00:00+00:00| seen| https://www.hkcert.org/security-bulletin/debian-linux-kernel-multiple-vulnerabilities20260506...

CVE-2026-5632

creationtimestamp| type| source ---|---|--- 2026-04-06 09:16:06+00:00| published-proof-of-concept| Telegram/5ijLrALAuqXYdoOjryiznkXUmcGfws-2xPX0cuo3yo2hM 2026-04-06 10:18:51+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3miszz555og2t...

CVE-2026-5634

creationtimestamp| type| source ---|---|--- 2026-04-06 09:16:06+00:00| published-proof-of-concept| Telegram/5ijLrALAuqXYdoOjryiznkXUmcGfws-2xPX0cuo3yo2hM 2026-04-06 10:53:16+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mit3wofa3y27...

CVE-2024-47637

creationtimestamp| type| source ---|---|--- 2026-04-06 09:00:15+00:00| seen| https://bsky.app/profile/cyberhub.blog/post/3misvmlenyp2f...

CVE-2026-5616

creationtimestamp| type| source ---|---|--- 2026-04-06 06:43:55+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3misnyslom222...

CVE-2026-5623

creationtimestamp| type| source ---|---|--- 2026-04-06 06:08:06+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mislyqxxes2d...

CVE-2026-5625

creationtimestamp| type| source ---|---|--- 2026-04-06 06:01:38+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3misln6w3zw2i...

Exploit for Out-of-bounds Write in Tp-Link Omada_Sg2005P-Pd_Firmware

Proof-of-concept exploit for CVE-2026-1668 This is a proof-of...

CVE-2026-5601

creationtimestamp| type| source ---|---|--- 2026-04-06 00:16:07+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mirydeksir22...

CVE-2026-5597

creationtimestamp| type| source ---|---|--- 2026-04-06 00:01:06+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mirxijb2h52q...

WeGIA 输入验证错误漏洞

WeGIA is a network manager for welfare institutions developed by Nilson Lazarin as an individual project. Versions of WeGIA prior to 3.6.9 contained a vulnerability related to input validation errors. This vulnerability stemmed from the lack of URL validation or allowlist checks, which could lead...

Comprehensive List of User Deception Techniques in Emails

Email remains a central communication medium, yet its long-standing design and interface conventions continue to enable deceptive attacks. This research note presents a structured list of 42 email-based deception techniques, documented with 64 concrete example implementations, organized around th...

CVE-2025-61166

The CVE-2025-61166 entry describes an open redirect in Ascertia SigningHub User v10.0 that lets an attacker redirect authenticated users to a malicious site via a crafted URL. Affected product: Ascertia SigningHub User 10.0 (component: open redirect functionality). Root cause: misimplementation o...

Ech0 代码问题漏洞

Ech0 is a self-hosted personal microblogging platform developed by L1nSn0w. Versions of Ech0 prior to 4.2.8 had code vulnerabilities. These vulnerabilities stemmed from the use of the GET /api/website/title route for link previews. This route lacked authentication and accepted URLs that could be...