Lucene search
K

37546 matches found

Circl
Circl
added yesterday3 views

CVE-2026-54998

creationtimestamp| type| source ---|---|--- 2026-07-02 23:24:10+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mpp6hj5djk2o 2026-07-03 00:00:45+00:00| seen| https://bsky.app/profile/thehackerwire.bsky.social/post/3mppaiuuxbg2b...

8.8CVSS5.8AI score
Exploits0References2
Circl
Circl
added yesterday3 views

CVE-2026-50722

creationtimestamp| type| source ---|---|--- 2026-07-02 23:21:52+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mpp6derudq22 2026-07-03 02:21:58+00:00| seen| https://bsky.app/profile/postac001.bsky.social/post/3mppifgegwx2x...

8.1CVSS5.8AI score
Exploits0References2
Circl
Circl
added yesterday2 views

CVE-2026-59099

creationtimestamp| type| source ---|---|--- 2026-07-02 22:00:57+00:00| seen| https://bsky.app/profile/thehackerwire.bsky.social/post/3mpozsoeoil2t 2026-07-03 00:08:50+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mppaxex7xh24...

9.3CVSS5.8AI score
Exploits0References2
Circl
Circl
added yesterday3 views

CVE-2026-57679

creationtimestamp| type| source ---|---|--- 2026-07-02 21:46:05+00:00| seen| https://bsky.app/profile/stackflag.bsky.social/post/3mpoyy457if2r 2026-07-03 00:35:59+00:00| seen| https://bsky.app/profile/kriptabiz.bsky.social/post/3mppchwjyrl2b 2026-07-03 00:36:00+00:00| seen|...

9.3CVSS5.8AI score
Exploits0References3
CVE
CVE
added yesterday9 views

CVE-2026-7311

The TinyPNG – JPEG, PNG & WebP image compression plugin for WordPress (up to version 3.6.13) is vulnerable to arbitrary file deletion due to insufficient file path validation in delete_converted_image_size. Authenticated attackers with author-level access can delete arbitrary files on the server ...

8.1CVSS6.5AI score
Exploits0References6
ATTACKERKB
ATTACKERKB
added yesterday2 views

CVE-2026-7311

The TinyPNG – JPEG, PNG & WebP image compression plugin for WordPress is vulnerable to arbitrary file deletion due to insufficient file path validation in the deleteconvertedimagesize function in all versions up to, and including, 3.6.13. This makes it possible for authenticated attackers, with...

8.1CVSS6.5AI score
Exploits0References7
Circl
Circl
added yesterday3 views

CVE-2025-58902

creationtimestamp| type| source ---|---|--- 2026-07-02 17:05:07+00:00| seen| https://bsky.app/profile/postac001.bsky.social/post/3mpojbp3e6w2v 2026-07-03 03:26:57+00:00| seen| https://bsky.app/profile/kriptabiz.bsky.social/post/3mpplzmqmgt2k...

8.1CVSS5.8AI score
Exploits0References2
Circl
Circl
added yesterday5 views

CVE-2026-13369

creationtimestamp| type| source ---|---|--- 2026-07-02 13:15:07+00:00| seen| https://bsky.app/profile/atomicedge.bsky.social/post/3mpo4gghvii2l 2026-07-02 22:22:43+00:00| seen| https://bsky.app/profile/kriptabiz.bsky.social/post/3mpp2zmhr5l26 2026-07-03 03:32:52+00:00| seen|...

7.5CVSS5.8AI score0.00522EPSS
Exploits0References3
Circl
Circl
added yesterday6 views

CVE-2026-54430

creationtimestamp| type| source ---|---|--- 2026-07-02 13:15:02+00:00| seen| https://cert.pl/en/posts/2026/07/CVE-2026-54430 2026-07-02 23:17:00+00:00| seen| https://bsky.app/profile/kriptabiz.bsky.social/post/3mpp62olsut2i 2026-07-03 03:29:23+00:00| seen|...

5.1CVSS5.8AI score
Exploits0References3
Circl
Circl
added yesterday4 views

CVE-2026-14336

creationtimestamp| type| source ---|---|--- 2026-07-02 12:51:52+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mpo34u2skz2o 2026-07-02 22:23:25+00:00| seen| https://bsky.app/profile/kriptabiz.bsky.social/post/3mpp32uditj2m 2026-07-03 03:29:02+00:00| seen|...

8.2CVSS5.8AI score0.00321EPSS
Exploits0References3
Circl
Circl
added yesterday5 views

CVE-2026-57765

creationtimestamp| type| source ---|---|--- 2026-07-02 12:14:26+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mpnyzwok7p2w 2026-07-02 13:42:44+00:00| seen| https://bsky.app/profile/malwareobserver.bsky.social/post/3mpo5xsoa2s2m 2026-07-03 00:46:54+00:00| seen|...

8.5CVSS5.8AI score
Exploits0References3
Circl
Circl
added yesterday5 views

CVE-2026-57761

creationtimestamp| type| source ---|---|--- 2026-07-02 12:08:42+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mpnypoe2ob26 2026-07-03 00:49:14+00:00| seen| https://bsky.app/profile/kriptabiz.bsky.social/post/3mppd7mcewg2k...

7.1CVSS5.8AI score
Exploits0References2
Circl
Circl
added yesterday5 views

CVE-2026-57750

creationtimestamp| type| source ---|---|--- 2026-07-02 12:01:44+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mpnyd7myy42n 2026-07-03 00:42:39+00:00| seen| https://bsky.app/profile/kriptabiz.bsky.social/post/3mppcttkcco2u...

5.3CVSS5.8AI score
Exploits0References2
Circl
Circl
added yesterday4 views

CVE-2026-57754

creationtimestamp| type| source ---|---|--- 2026-07-02 11:54:24+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mpnxw465un2a 2026-07-03 00:47:35+00:00| seen| https://bsky.app/profile/kriptabiz.bsky.social/post/3mppd4ntp342m...

6.5CVSS5.8AI score
Exploits0References2
Circl
Circl
added yesterday5 views

CVE-2026-12657

creationtimestamp| type| source ---|---|--- 2026-07-02 10:15:07+00:00| seen| https://bsky.app/profile/atomicedge.bsky.social/post/3mpnsele5lt2f 2026-07-02 22:21:13+00:00| seen| https://bsky.app/profile/kriptabiz.bsky.social/post/3mpp2wwhjft2d...

5.3CVSS5.8AI score0.00671EPSS
Exploits0References2
Circl
Circl
added yesterday4 views

CVE-2026-51947

creationtimestamp| type| source ---|---|--- 2026-07-02 09:54:48+00:00| seen| https://bsky.app/profile/kriptabiz.bsky.social/post/3mpnra7ojcj27...

9.8CVSS5.8AI score0.00573EPSS
Exploits0References1
Nuclei
Nuclei
added yesterday13 views

St. Joe ERP system - SQL Injection

A SQL injection vulnerability exists in the St. Joe ERP system "圣乔ERP系统" that allows unauthenticated remote attackers to execute arbitrary SQL commands via crafted HTTP POST requests to the login endpoint. The application fails to properly sanitize user-supplied input before incorporating it into...

9.8CVSS6.1AI score0.02899EPSS
Exploits1References2
Nuclei
Nuclei
added yesterday63 views

WordPress Core <6.5.2 - Cross-Site Scripting

WordPress Core is vulnerable to Stored Cross-Site Scripting via user display names in the Avatar block in various versions up to 6.5.2 due to insufficient output escaping on the display name. id: CVE-2024-4439 info: name: WordPress Core 6.5.2 - Cross-Site Scripting author: nqdung2002 severity: hi...

7.2CVSS7AI score0.70822EPSS
Exploits4References2
Nuclei
Nuclei
added yesterday36 views

Combo Blocks < 2.2.76 - Improper Access Control

The Post Grid, Form Maker, Popup Maker, WooCommerce Blocks, Post Blocks, Post Carousel WordPress plugin before 2.2.76 does not prevent password protected posts from being displayed in the result of some unauthenticated AJAX actions, allowing unauthenticated users to read such posts id:...

5.4CVSS5.8AI score0.16906EPSS
Exploits2References3
Nuclei
Nuclei
added yesterday140 views

Likeshop < 2.5.7.20210311 - Arbitrary File Upload

A vulnerability classified as critical was found in Likeshop up to 2.5.7.20210311. This vulnerability affects the function FileServer::userFormImage of the file server/application/api/controller/File.php of the component HTTP POST Request Handler. The manipulation of the argument file with an...

9.8CVSS6.8AI score0.70688EPSS
Exploits1References5
Rows per page
Query Builder