38355 matches found
CVE-2026-12924
creationtimestamp| type| source ---|---|--- 2026-07-10 11:47:44+00:00| seen| https://bsky.app/profile/kriptabiz.bsky.social/post/3mqc3bk2f7d22 2026-07-10 21:17:05+00:00| seen| https://bsky.app/profile/kriptabiz.bsky.social/post/3mqd33n2tbx2y 2026-07-10 21:51:40+00:00| seen|...
CVE-2026-12400
creationtimestamp| type| source ---|---|--- 2026-07-10 11:47:20+00:00| seen| https://bsky.app/profile/kriptabiz.bsky.social/post/3mqc3asfthd2a 2026-07-10 21:16:44+00:00| seen| https://bsky.app/profile/kriptabiz.bsky.social/post/3mqd32za45n2e...
CVE-2026-13347
creationtimestamp| type| source ---|---|--- 2026-07-10 11:16:00+00:00| seen| https://bsky.app/profile/kriptabiz.bsky.social/post/3mqbzis5yut2y 2026-07-10 12:15:24+00:00| seen| https://www.incibe.es/incibe-cert/alerta-temprana/vulnerabilidades/cve-2026-13347 2026-07-12 18:01:08+00:00| seen|...
CVE-2026-28564
creationtimestamp| type| source ---|---|--- 2026-07-10 10:58:20+00:00| seen| https://bsky.app/profile/kriptabiz.bsky.social/post/3mqbyj7nlat2y 2026-07-10 12:15:27+00:00| seen| https://www.incibe.es/incibe-cert/alerta-temprana/vulnerabilidades/cve-2026-28564 2026-07-10 13:10:06+00:00| seen|...
CVE-2026-59725
A flaw was found in Socket.IO, specifically within the Engine.IO protocol v4 polling transport. An unauthenticated attacker can exploit this vulnerability by sending invalid binary POST requests with a Content-Type of application/octet-stream. This improper handling of requests prevents the HTTP...
EUVD-2026-42862
The Mail Mint – Email Marketing, Newsletter, Email Automation & WooCommerce Emails plugin for WordPress is vulnerable to generic SQL Injection via the 'recipients' parameter in all versions up to, and including, 1.24.1 due to insufficient escaping on the user supplied parameter and lack of...
CVE-2026-15026
The Import and export users and customers plugin for WordPress is vulnerable to Sensitive Information Exposure in all versions up to, and including, 2.4.0 via the emailtemplateselected. This makes it possible for authenticated attackers, with subscriber-level access and above, to extract the...
CVE-2026-59721
creationtimestamp| type| source ---|---|--- 2026-07-10 09:14:21+00:00| seen| https://bsky.app/profile/hugovalters.bsky.social/post/3mqbspbvraw27...
CVE-2026-21054
creationtimestamp| type| source ---|---|--- 2026-07-10 08:52:09+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mqbrhlg4e72z 2026-07-10 09:56:21+00:00| seen| https://bsky.app/profile/kriptabiz.bsky.social/post/3mqbv2f3xzq27...
CVE-2026-15026
The Import and export users and customers plugin for WordPress is vulnerable to Sensitive Information Exposure in all versions up to, and including, 2.4.0 via the emailtemplateselected. This makes it possible for authenticated attackers, with subscriber-level access and above, to extract the...
CVE-2026-15026
The CVE concerns the WordPress plugin “Import and export users and customers” (versions
CVE-2026-15026 Import and export users and customers <= 2.4.0 - Missing Authorization to Authenticated (Subscriber+) Sensitive Information Exposure via email_template_selected AJAX Action
The Import and export users and customers plugin for WordPress is vulnerable to Sensitive Information Exposure in all versions up to, and including, 2.4.0 via the emailtemplateselected. This makes it possible for authenticated attackers, with subscriber-level access and above, to extract the...
CVE-2026-21043
creationtimestamp| type| source ---|---|--- 2026-07-10 08:17:43+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mqbpjynmsx2t 2026-07-10 09:37:22+00:00| seen| https://bsky.app/profile/kriptabiz.bsky.social/post/3mqbtyglqpd2e...
CVE-2026-21055
creationtimestamp| type| source ---|---|--- 2026-07-10 08:14:59+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mqbpf4bkvr2l 2026-07-10 09:58:01+00:00| seen| https://bsky.app/profile/kriptabiz.bsky.social/post/3mqbv5dstyl2e 2026-07-10 16:56:41+00:00| seen|...
CVE-2026-21041
creationtimestamp| type| source ---|---|--- 2026-07-10 08:08:00+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mqboymq5bl2e 2026-07-10 09:36:57+00:00| seen| https://bsky.app/profile/kriptabiz.bsky.social/post/3mqbtxonpzj2e...
CVE-2026-21051
creationtimestamp| type| source ---|---|--- 2026-07-10 08:06:00+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mqbouzxitv24 2026-07-10 09:54:54+00:00| seen| https://bsky.app/profile/qiancx.bsky.social/post/3mqbuxrszlf25 2026-07-10 09:54:54+00:00| seen|...
CVE-2026-21048
creationtimestamp| type| source ---|---|--- 2026-07-10 07:59:06+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mqboilsa4y27 2026-07-10 09:55:35+00:00| seen| https://bsky.app/profile/kriptabiz.bsky.social/post/3mqbuyzhcc62i 2026-07-10 12:46:54+00:00| seen|...
CVE-2026-12123
The All-in-One Video Gallery plugin for WordPress is vulnerable to Server-Side Request Forgery in all versions up to, and including, 4.8.5 via the 'vdl' parameter. This makes it possible for authenticated attackers, with subscriber-level access and above, to make web requests to arbitrary locatio...
CVE-2026-15321
creationtimestamp| type| source ---|---|--- 2026-07-10 05:42:34+00:00| seen| https://bsky.app/profile/kriptabiz.bsky.social/post/3mqbgugdthm2a...
CVE-2026-13430
creationtimestamp| type| source ---|---|--- 2026-07-10 05:42:12+00:00| seen| https://bsky.app/profile/kriptabiz.bsky.social/post/3mqbgtwfjbv27...