37546 matches found
CVE-2026-54998
creationtimestamp| type| source ---|---|--- 2026-07-02 23:24:10+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mpp6hj5djk2o 2026-07-03 00:00:45+00:00| seen| https://bsky.app/profile/thehackerwire.bsky.social/post/3mppaiuuxbg2b...
CVE-2026-50722
creationtimestamp| type| source ---|---|--- 2026-07-02 23:21:52+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mpp6derudq22 2026-07-03 02:21:58+00:00| seen| https://bsky.app/profile/postac001.bsky.social/post/3mppifgegwx2x...
CVE-2026-59099
creationtimestamp| type| source ---|---|--- 2026-07-02 22:00:57+00:00| seen| https://bsky.app/profile/thehackerwire.bsky.social/post/3mpozsoeoil2t 2026-07-03 00:08:50+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mppaxex7xh24...
CVE-2026-57679
creationtimestamp| type| source ---|---|--- 2026-07-02 21:46:05+00:00| seen| https://bsky.app/profile/stackflag.bsky.social/post/3mpoyy457if2r 2026-07-03 00:35:59+00:00| seen| https://bsky.app/profile/kriptabiz.bsky.social/post/3mppchwjyrl2b 2026-07-03 00:36:00+00:00| seen|...
CVE-2026-7311
The TinyPNG – JPEG, PNG & WebP image compression plugin for WordPress (up to version 3.6.13) is vulnerable to arbitrary file deletion due to insufficient file path validation in delete_converted_image_size. Authenticated attackers with author-level access can delete arbitrary files on the server ...
CVE-2026-7311
The TinyPNG – JPEG, PNG & WebP image compression plugin for WordPress is vulnerable to arbitrary file deletion due to insufficient file path validation in the deleteconvertedimagesize function in all versions up to, and including, 3.6.13. This makes it possible for authenticated attackers, with...
CVE-2025-58902
creationtimestamp| type| source ---|---|--- 2026-07-02 17:05:07+00:00| seen| https://bsky.app/profile/postac001.bsky.social/post/3mpojbp3e6w2v 2026-07-03 03:26:57+00:00| seen| https://bsky.app/profile/kriptabiz.bsky.social/post/3mpplzmqmgt2k...
CVE-2026-13369
creationtimestamp| type| source ---|---|--- 2026-07-02 13:15:07+00:00| seen| https://bsky.app/profile/atomicedge.bsky.social/post/3mpo4gghvii2l 2026-07-02 22:22:43+00:00| seen| https://bsky.app/profile/kriptabiz.bsky.social/post/3mpp2zmhr5l26 2026-07-03 03:32:52+00:00| seen|...
CVE-2026-54430
creationtimestamp| type| source ---|---|--- 2026-07-02 13:15:02+00:00| seen| https://cert.pl/en/posts/2026/07/CVE-2026-54430 2026-07-02 23:17:00+00:00| seen| https://bsky.app/profile/kriptabiz.bsky.social/post/3mpp62olsut2i 2026-07-03 03:29:23+00:00| seen|...
CVE-2026-14336
creationtimestamp| type| source ---|---|--- 2026-07-02 12:51:52+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mpo34u2skz2o 2026-07-02 22:23:25+00:00| seen| https://bsky.app/profile/kriptabiz.bsky.social/post/3mpp32uditj2m 2026-07-03 03:29:02+00:00| seen|...
CVE-2026-57765
creationtimestamp| type| source ---|---|--- 2026-07-02 12:14:26+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mpnyzwok7p2w 2026-07-02 13:42:44+00:00| seen| https://bsky.app/profile/malwareobserver.bsky.social/post/3mpo5xsoa2s2m 2026-07-03 00:46:54+00:00| seen|...
CVE-2026-57761
creationtimestamp| type| source ---|---|--- 2026-07-02 12:08:42+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mpnypoe2ob26 2026-07-03 00:49:14+00:00| seen| https://bsky.app/profile/kriptabiz.bsky.social/post/3mppd7mcewg2k...
CVE-2026-57750
creationtimestamp| type| source ---|---|--- 2026-07-02 12:01:44+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mpnyd7myy42n 2026-07-03 00:42:39+00:00| seen| https://bsky.app/profile/kriptabiz.bsky.social/post/3mppcttkcco2u...
CVE-2026-57754
creationtimestamp| type| source ---|---|--- 2026-07-02 11:54:24+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mpnxw465un2a 2026-07-03 00:47:35+00:00| seen| https://bsky.app/profile/kriptabiz.bsky.social/post/3mppd4ntp342m...
CVE-2026-12657
creationtimestamp| type| source ---|---|--- 2026-07-02 10:15:07+00:00| seen| https://bsky.app/profile/atomicedge.bsky.social/post/3mpnsele5lt2f 2026-07-02 22:21:13+00:00| seen| https://bsky.app/profile/kriptabiz.bsky.social/post/3mpp2wwhjft2d...
CVE-2026-51947
creationtimestamp| type| source ---|---|--- 2026-07-02 09:54:48+00:00| seen| https://bsky.app/profile/kriptabiz.bsky.social/post/3mpnra7ojcj27...
St. Joe ERP system - SQL Injection
A SQL injection vulnerability exists in the St. Joe ERP system "圣乔ERP系统" that allows unauthenticated remote attackers to execute arbitrary SQL commands via crafted HTTP POST requests to the login endpoint. The application fails to properly sanitize user-supplied input before incorporating it into...
WordPress Core <6.5.2 - Cross-Site Scripting
WordPress Core is vulnerable to Stored Cross-Site Scripting via user display names in the Avatar block in various versions up to 6.5.2 due to insufficient output escaping on the display name. id: CVE-2024-4439 info: name: WordPress Core 6.5.2 - Cross-Site Scripting author: nqdung2002 severity: hi...
Combo Blocks < 2.2.76 - Improper Access Control
The Post Grid, Form Maker, Popup Maker, WooCommerce Blocks, Post Blocks, Post Carousel WordPress plugin before 2.2.76 does not prevent password protected posts from being displayed in the result of some unauthenticated AJAX actions, allowing unauthenticated users to read such posts id:...
Likeshop < 2.5.7.20210311 - Arbitrary File Upload
A vulnerability classified as critical was found in Likeshop up to 2.5.7.20210311. This vulnerability affects the function FileServer::userFormImage of the file server/application/api/controller/File.php of the component HTTP POST Request Handler. The manipulation of the argument file with an...