PT-2026-45077

First mobile CVE by @neo ai engineer — CVE-2026-48745 Traccar Client 100k+ installs: one deep link silently redirects GPS telemetry to an attacker. Neo found it using static analysis + dynamic validation via @Genymotion integration. https://t.co/4qXTPRjgpq...

Optimal Routing and Link Configuration for Covert Heterogeneous Wireless Networks in the Presence of a Friendly Jammer

In modern radio networks, nodes frequently access multiple communication interfaces such as WiFi, cellular, LoRa, and Zigbee. Optimal utilization of such heterogeneous networks HetNets at link and network levels is essential for ensuring efficient and secure communication. Some applications requi...

Malicious Package

Overview @t-in-one/addapplication is a malicious package. This package contains malicious code, and its content was removed from the official package manager. While this package might be attempting to impersonate a valid organization, there is no connection between that organization and this...

CVE-2026-47740

creationtimestamp| type| source ---|---|--- 2026-05-29 23:00:50+00:00| seen| https://bsky.app/profile/thehackerwire.bsky.social/post/3mmznch3ugc2m...

CVE-2026-45613

creationtimestamp| type| source ---|---|--- 2026-05-29 22:23:55+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mmzlahikt42i...

CVE-2026-4387

creationtimestamp| type| source ---|---|--- 2026-05-29 22:18:54+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mmzkxilymg25 2026-06-01 17:07:54+00:00| seen| https://bsky.app/profile/1cemoon.bsky.social/post/3mnakxoqqss2v 2026-06-01 17:48:52+00:00| seen|...

Malicious Package

Overview chai-bundle is a malicious package. This package contains malicious code, and its content was removed from the official package manager. While this package might be attempting to impersonate a valid organization, there is no connection between that organization and this package authorshi...

CVE-2026-48811

creationtimestamp| type| source ---|---|--- 2026-05-29 22:04:36+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mmzk5vpbtf27...

CVE-2026-45700

creationtimestamp| type| source ---|---|--- 2026-05-29 21:51:44+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mmzjgvrvso2x...

CVE-2026-46385

creationtimestamp| type| source ---|---|--- 2026-05-29 21:49:13+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mmzjcgcjw427...

CVE-2026-45151

creationtimestamp| type| source ---|---|--- 2026-05-29 21:44:45+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mmzj2gvkuo2d...

CVE-2026-45294

creationtimestamp| type| source ---|---|--- 2026-05-29 21:39:06+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mmziqa62nu2m...

GHSA-PJWM-PJ3P-43MV

creationtimestamp| type| source ---|---|--- 2026-05-29 21:20:01+00:00| seen| https://gist.github.com/konard/e2cdc40115fd7e81d8828ab9496865a2...

CVE-2026-44285

creationtimestamp| type| source ---|---|--- 2026-05-29 21:01:36+00:00| seen| https://bsky.app/profile/thehackerwire.bsky.social/post/3mmzgna3yio2v...

CVE-2026-45631

creationtimestamp| type| source ---|---|--- 2026-05-29 20:53:48+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mmzg7ct3rx27 2026-05-30 03:00:50+00:00| seen| https://bsky.app/profile/thehackerwire.bsky.social/post/3mn22pkuqxu2r...

CVE-2026-34127

A stored cross-site scripting XSS vulnerability has been identified in the web management interface of TP-Link's TL-SG108PE v5 switch due to improper sanitation of the SYSNAM configuration parameter during configuration file import. An attacker with administrator access can inject malicious scrip...

GHSA-PHVX-9MGW-67R5 zeroconf: Unbounded exception-dedup state retains packet buffers via traceback frame locals, enabling LAN-local memory exhaustion

Impact DNSIncoming.logexceptiondebug and the four QuietLogger exception-dedup methods stored an unbounded seenlogs dict keyed by strsys.excinfo1. The seven IncomingDecodeError messages raised from readname / decodelabelsatoffset RFC 6762 §18 name-decoding error paths all embed self.source — the...

CVE-2026-49372

creationtimestamp| type| source ---|---|--- 2026-05-29 20:00:29+00:00| seen| https://bsky.app/profile/thehackerwire.bsky.social/post/3mmzd7ww25p2i...

CVE-2026-44651

SillyTavern is a locally installed user interface that allows users to interact with text generation large language models, image generation engines, and text-to-speech voice models. Prior to 1.18.0, when fetchurl throws, the code sends: res.status500.send'Error occurred while trying to proxy to:...

CVE-2026-47179

creationtimestamp| type| source ---|---|--- 2026-05-29 19:01:35+00:00| seen| https://bsky.app/profile/thehackerwire.bsky.social/post/3mmz7wmqkjr2m...