61549 matches found
CVE-2026-26137
creationtimestamp| type| source ---|---|--- 2026-03-19 21:31:58+00:00| seen| https://bsky.app/profile/thehackerwire.bsky.social/post/3mhgxa6oxis2s...
Cross-site Scripting (XSS)
Overview Affected versions of this package are vulnerable to Cross-site Scripting XSS via the $SERVER'REQUESTURI' parameter due to insufficient output escaping. An attacker can execute arbitrary web scripts in the context of an administrator's browser by tricking an administrator-level user into...
CVE-2026-32868
creationtimestamp| type| source ---|---|--- 2026-03-19 18:38:26+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mhgnjv5j422e...
CVE-2026-4427
creationtimestamp| type| source ---|---|--- 2026-03-19 18:28:25+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mhgmxyb6p62x 2026-03-19 20:00:27+00:00| seen| https://bsky.app/profile/thehackerwire.bsky.social/post/3mhgs4jtldi2t 2026-03-19 20:19:01+00:00| seen|...
CVE-2026-32866
creationtimestamp| type| source ---|---|--- 2026-03-19 18:01:16+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mhglhh2zdy2d...
CVE-2026-32869
creationtimestamp| type| source ---|---|--- 2026-03-19 17:58:46+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mhglcxolig2e...
CVE-2026-30711
creationtimestamp| type| source ---|---|--- 2026-03-19 17:52:18+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mhgkxfm7ri2o...
CVE-2026-30402
creationtimestamp| type| source ---|---|--- 2026-03-19 17:50:25+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mhgktzze7n2u 2026-03-19 20:00:35+00:00| seen| https://bsky.app/profile/thehackerwire.bsky.social/post/3mhgs4rn6ve2s 2026-03-19 20:19:09+00:00| seen|...
CVE-2026-30404
creationtimestamp| type| source ---|---|--- 2026-03-19 17:45:23+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mhgkl2d7p62z...
CVE-2026-4211
creationtimestamp| type| source ---|---|--- 2026-03-19 15:20:09+00:00| seen| https://bsky.app/profile/cyberhub.blog/post/3mhgchdgjtw2r...
CVE-2026-27953
creationtimestamp| type| source ---|---|--- 2026-03-19 15:05:45+00:00| published-proof-of-concept| https://github.com/ormar-orm/ormar/security/advisories/GHSA-f964-whrq-44h8 2026-03-27 23:40:09+00:00| seen| https://bsky.app/profile/cyberhub.blog/post/3mi3c4qzuwg2f...
GHSA-W5FF-2MJC-4PHC AVideo has an OS Command Injection via Unescaped URL in LinkedIn Video Upload Shell Command
Summary The uploadVideoToLinkedIn method in the SocialMediaPublisher plugin constructs a shell command by directly interpolating an upload URL received from LinkedIn's API response, without sanitization via escapeshellarg. If an attacker can influence the LinkedIn API response via MITM, compromis...
CVE-2026-32721
creationtimestamp| type| source ---|---|--- 2026-03-19 12:13:46+00:00| seen| https://bsky.app/profile/mxsash.bsky.social/post/3mhfxzzxngc2i 2026-03-19 14:10:05+00:00| seen| https://bsky.app/profile/lobsters-feed.bsky.social/post/3mhg6k2bof227 2026-03-19 20:46:24+00:00| seen|...
CVE-2006-10002
creationtimestamp| type| source ---|---|--- 2026-03-19 11:50:09+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mhfwpsvaku24 2026-03-19 15:35:07+00:00| seen| https://infosec.exchange/users/harrysintonen/statuses/116256571861468527 2026-03-19 15:58:57+00:00| seen|...
CVE-2006-10003
creationtimestamp| type| source ---|---|--- 2026-03-19 11:48:38+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mhfwn4qbej2n 2026-03-19 15:35:07+00:00| seen| https://infosec.exchange/users/harrysintonen/statuses/116256571861468527 2026-03-19 16:03:58+00:00| seen|...
CVE-2026-4006
creationtimestamp| type| source ---|---|--- 2026-03-19 08:29:14+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mhflikzqpy2d...
CVE-2026-4006
The Simple Draft List plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'displayname' post meta Custom Field in all versions up to and including 2.6.2. This is due to insufficient input sanitization and output escaping on the author display name when no author URL is...
CVE-2026-1238
creationtimestamp| type| source ---|---|--- 2026-03-19 04:15:59+00:00| seen| https://www.incibe.es/incibe-cert/alerta-temprana/vulnerabilidades/cve-2026-1238 2026-03-19 06:52:08+00:00| seen| https://bsky.app/profile/postac001.bsky.social/post/3mhfg2wsgr32i 2026-03-19 08:02:50+00:00| seen|...
CVE-2026-28461
creationtimestamp| type| source ---|---|--- 2026-03-19 03:05:37+00:00| seen| https://bsky.app/profile/thehackerwire.bsky.social/post/3mhezfuf2bx2d 2026-03-20 00:40:09+00:00| seen| https://bsky.app/profile/cyberhub.blog/post/3mhhbqon5zr2u...
CVE-2026-32778
creationtimestamp| type| source ---|---|--- 2026-03-19 02:01:18+00:00| seen| https://bsky.app/profile/slackers.it/post/3mhevsumzjw2d 2026-04-01 18:20:07+00:00| seen| https://bsky.app/profile/knaepp.bsky.social/post/3mihcl3smmw26 2026-05-13 20:31:22+00:00| seen|...