108 matches found
SUSE CVE-2026-31539
In the Linux kernel, the following vulnerability has been resolved: smb: smbdirect: introduce smbdirectsocket.recvio.credits.available The logic off managing recv credits by counting posted recvio and granted credits is racy. That's because the peer might already consumed a credit, but between...
CVE-2026-31539
In the Linux kernel, the following vulnerability has been resolved: smb: smbdirect: introduce smbdirectsocket.recvio.credits.available The logic off managing recv credits by counting posted recvio and granted credits is racy. That's because the peer might already consumed a credit, but between...
CVE-2026-31538
In the Linux kernel, the following vulnerability has been resolved: smb: server: make use of smbdirectsocket.recvio.credits.available The logic off managing recv credits by counting posted recvio and granted credits is racy. That's because the peer might already consumed a credit, but between...
CVE-2026-22740
creationtimestamp| type| source ---|---|--- 2026-04-20 12:25:17+00:00| seen| https://bsky.app/profile/o2cloud.bsky.social/post/3mjwhlzimrz2w...
CVE-2026-39922
creationtimestamp| type| source ---|---|--- 2026-04-10 22:28:58+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mj6eoepih22t 2026-06-08 15:11:10+00:00| seen| https://gist.github.com/alon710/56fac469b83d68f32bede1d2945e0063...
Missing Authorization
Django is vulnerable to Missing Authorization. The vulnerability is due to missing validation of add permissions for inline model instances in GenericInlineModelAdmin, which allows an attacker to submit forged POST data and create unauthorized objects...
CVE-2026-40259
creationtimestamp| type| source ---|---|--- 2026-04-10 09:32:21+00:00| published-proof-of-concept| https://github.com/siyuan-note/siyuan/security/advisories/GHSA-7m5h-w69j-qggg 2026-04-17 00:56:20+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mjnppgbvvx2d 2026-04-17 01:16:10+00:00...
CVE-2026-35413
creationtimestamp| type| source ---|---|--- 2026-04-06 22:36:18+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3miud7skcjm2i...
CVE-2026-5565
creationtimestamp| type| source ---|---|--- 2026-04-05 15:16:27+00:00| published-proof-of-concept| Telegram/bba5KoRxZjw4aUqHfMWZuI7ux2762ZWKOY2q9V8MiGPKQ0 2026-04-05 15:26:35+00:00| seen| https://bsky.app/profile/postac001.bsky.social/post/3mir2qih75y2y 2026-04-05 16:13:08+00:00| seen|...
CVE-2026-34229
creationtimestamp| type| source ---|---|--- 2026-04-04 00:09:31+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mimwzpv5eq2i...
CVE-2026-3692
creationtimestamp| type| source ---|---|--- 2026-04-02 14:30:18+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mijg73ztsh27 2026-04-02 15:21:36+00:00| seen| Telegram/c85hrsWNyFYwFes4s7T57trjOQm7U5y5MEbFlOtoT8A7NA...
CVE-2026-23361 PCI: dwc: ep: Flush MSI-X write before unmapping its ATU entry
In the Linux kernel, the following vulnerability has been resolved: PCI: dwc: ep: Flush MSI-X write before unmapping its ATU entry Endpoint drivers use dwpcieepraisemsixirq to raise an MSI-X interrupt to the host using a writel, which generates a PCI posted write transaction. There's no completio...
CVE-2018-25189
creationtimestamp| type| source ---|---|--- 2026-03-06 13:54:00+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mgfhlde5ii2e...
CVE-2026-0008
creationtimestamp| type| source ---|---|--- 2026-03-02 23:00:51+00:00| seen| https://bsky.app/profile/thehackerwire.bsky.social/post/3mg4ebi5kvm2u 2026-03-03 08:00:44+00:00| seen| https://bsky.app/profile/thehackerwire.bsky.social/post/3mg5cgtsmso2c...
Smoothwall Express Cross-Site Scripting Vulnerability (CNVD-2026-14286)
Smoothwall Express is Smoothwall open source a GNU/Linux-based firewall operating system . Smoothwall Express has a cross-site scripting vulnerability , the vulnerability stems from the apcupsd.cgi script multiple POST parameters on the user-supplied data lack of effective filtering and escaping ...
CVE-2026-3275
creationtimestamp| type| source ---|---|--- 2026-02-27 03:51:09+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mfssmvfqaw27 2026-02-27 17:40:10+00:00| seen| https://bsky.app/profile/cyberhub.blog/post/3mfuaxbxbdi2m...
CVE-2019-25383
CVE-2019-25383 affects Smoothwall Express 3.1-SP4-polar-x86_64-update9. The vulnerability is a set of reflected cross-site scripting flaws in apcupsd.cgi, allowing an attacker to inject arbitrary JavaScript in victim browsers by crafting POST requests with payloads in parameters such as BATTLEVEL...
CVE-2020-37137
PHP-Fusion 9.03.50 contains a remote code execution vulnerability in the 'addpanelform' function that allows attackers to execute arbitrary code through an eval function with unsanitized POST data. Attackers can exploit the vulnerability by sending crafted panelcontent POST parameters to the...
CVE-2025-13905
creationtimestamp| type| source ---|---|--- 2026-01-22 11:00:00+00:00| seen| https://www.cisa.gov/news-events/ics-advisories/icsa-26-022-01 2026-01-29 17:38:08+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mdldcxowvt2t 2026-05-12 04:05:34+00:00| seen|...
CVE-2026-23852
creationtimestamp| type| source ---|---|--- 2026-01-19 22:21:41+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mcsoirybhl26...