61698 matches found
CVE-2026-27748
CVE-2026-27748 relates to Avira Internet Security’s Software Updater. The vulnerability stems from improper link resolution: a SYSTEM‑level updater process may delete a file under C:\ProgramData by following symbolic links or reparse points, allowing a local attacker to redirect the delete to an ...
CVE-2026-3236
creationtimestamp| type| source ---|---|--- 2026-03-05 14:13:47+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mgcy7rqeun2d...
CVE-2026-30247
creationtimestamp| type| source ---|---|--- 2026-03-05 13:55:27+00:00| published-proof-of-concept| https://github.com/Tencent/WeKnora/security/advisories/GHSA-595m-wc8g-6qgc 2026-03-07 06:59:38+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mghavbu5gv2u...
CVE-2026-28549
creationtimestamp| type| source ---|---|--- 2026-03-05 10:44:10+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mgcmix7fe72d...
CVE-2026-28547
creationtimestamp| type| source ---|---|--- 2026-03-05 10:19:51+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mgcl5huv7p2v...
CVE-2026-21786
creationtimestamp| type| source ---|---|--- 2026-03-05 10:16:06+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mgckwolcsd2o...
CVE-2026-28539
creationtimestamp| type| source ---|---|--- 2026-03-05 10:09:43+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mgckldj6pc2d...
CVE-2026-28548
creationtimestamp| type| source ---|---|--- 2026-03-05 10:06:58+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mgckgh5hax2u 2026-03-06 01:00:14+00:00| seen| https://bsky.app/profile/cyberhub.blog/post/3mge4dq6nek2x...
CVE-2026-30233
creationtimestamp| type| source ---|---|--- 2026-03-05 08:25:06+00:00| published-proof-of-concept| https://github.com/OliveTin/OliveTin/security/advisories/GHSA-jf73-858c-54pg 2026-03-06 23:33:47+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mgghy24ov724...
GHSA-HHJV-JQ77-CMVX
creationtimestamp| type| source ---|---|--- 2026-03-05 07:10:06+00:00| seen| https://gist.github.com/alon710/a578e32999e28d2886af7a62f4473f31...
CVE-2026-2365
creationtimestamp| type| source ---|---|--- 2026-03-05 06:28:55+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mgc6ajd2bp2o...
CVE-2026-3072
creationtimestamp| type| source ---|---|--- 2026-03-05 06:04:16+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mgc4uho5rp27...
CVE-2025-40926
creationtimestamp| type| source ---|---|--- 2026-03-05 05:59:49+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mgc4miebdi2e 2026-03-05 10:13:13+00:00| seen| https://bsky.app/profile/infosec.skyfleet.blue/post/3mgckrmew2q23 2026-03-05 19:16:37+00:00| seen|...
CVE-2026-3381
creationtimestamp| type| source ---|---|--- 2026-03-05 05:57:49+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mgc4ivlts72o 2026-03-05 10:18:10+00:00| seen| https://bsky.app/profile/infosec.skyfleet.blue/post/3mgcl2h6cxl2b 2026-03-12 14:10:08+00:00| seen|...
CVE-2026-29128
creationtimestamp| type| source ---|---|--- 2026-03-05 05:54:09+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mgc4cen66h2n 2026-03-05 06:00:31+00:00| seen| https://bsky.app/profile/offseq.bsky.social/post/3mgc4nqmuim2c 2026-03-05 06:00:31+00:00| seen|...
GHSA-QFFP-2RHF-9H96
creationtimestamp| type| source ---|---|--- 2026-03-05 03:40:06+00:00| seen| https://gist.github.com/alon710/4e188c1f17fb9b45a77309c7ed7f2580 2026-03-05 12:00:54+00:00| seen| https://bsky.app/profile/lambdawatchdog.bsky.social/post/3mgcqs5sr3l22 2026-03-06 12:00:59+00:00| seen|...
CVE-2026-3034
The OoohBoi Steroids for Elementor plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the obspaceratlink, obbbadlink, and obteleporterlink URL parameters in all versions up to, and including, 2.1.24. This makes it possible for authenticated attackers, with Contributor-level...
CVE-2026-3034 OoohBoi Steroids for Elementor <= 2.1.24 - Authenticated (Contributor+) Stored Cross-Site Scripting via Multiple URL Controls
The OoohBoi Steroids for Elementor plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the obspaceratlink, obbbadlink, and obteleporterlink URL parameters in all versions up to, and including, 2.1.24. This makes it possible for authenticated attackers, with Contributor-level...
CVE-2026-3034 OoohBoi Steroids for Elementor <= 2.1.24 - Authenticated (Contributor+) Stored Cross-Site Scripting via Multiple URL Controls
The OoohBoi Steroids for Elementor plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the obspaceratlink, obbbadlink, and obteleporterlink URL parameters in all versions up to, and including, 2.1.24. This makes it possible for authenticated attackers, with Contributor-level...
CVE-2026-26034
UPS Multi-UPS Management Console MUMC version 01.06.0001 A03 contains an Incorrect Default Permissions CWE-276 vulnerability that allows an attacker to execute arbitrary code with SYSTEM privileges by causing the application to load a specially crafted DLL...