CVE-2026-20014

creationtimestamp| type| source ---|---|--- 2026-03-04 19:00:50+00:00| seen| https://bsky.app/profile/thehackerwire.bsky.social/post/3mgaxs3eh6r2s 2026-03-04 19:01:34+00:00| seen| https://bsky.app/profile/thehackerwire.bsky.social/post/3mgaxtgl6iq26 2026-03-05 11:03:43+00:00| seen|...

CVE-2026-20049

creationtimestamp| type| source ---|---|--- 2026-03-04 18:29:22+00:00| seen| https://bsky.app/profile/thehackerwire.bsky.social/post/3mgavztxq5m2s 2026-03-04 18:29:54+00:00| seen| https://bsky.app/profile/thehackerwire.bsky.social/post/3mgaw2sj5as25 2026-03-05 11:03:43+00:00| seen|...

CVE-2026-20039

creationtimestamp| type| source ---|---|--- 2026-03-04 18:29:14+00:00| seen| https://bsky.app/profile/thehackerwire.bsky.social/post/3mgavznbcke2k 2026-03-04 18:29:45+00:00| seen| https://bsky.app/profile/thehackerwire.bsky.social/post/3mgaw2knlpf2c 2026-03-04 21:52:22+00:00| seen|...

CVE-2026-20100

creationtimestamp| type| source ---|---|--- 2026-03-04 18:29:07+00:00| seen| https://bsky.app/profile/thehackerwire.bsky.social/post/3mgavzf6jog2d 2026-03-04 18:29:37+00:00| seen| https://bsky.app/profile/thehackerwire.bsky.social/post/3mgaw2cvzun2f 2026-03-05 11:03:43+00:00| seen|...

CVE-2025-70241

creationtimestamp| type| source ---|---|--- 2026-03-04 17:14:03+00:00| seen| https://bsky.app/profile/thehackerwire.bsky.social/post/3mgart6ddyh2t 2026-03-04 17:14:28+00:00| seen| https://bsky.app/profile/thehackerwire.bsky.social/post/3mgartwhijs25...

CVE-2025-70237

creationtimestamp| type| source ---|---|--- 2026-03-04 17:13:56+00:00| seen| https://bsky.app/profile/thehackerwire.bsky.social/post/3mgarsx3mlr2n 2026-03-04 17:14:20+00:00| seen| https://bsky.app/profile/thehackerwire.bsky.social/post/3mgartowgvs2s...

CVE-2025-62814

creationtimestamp| type| source ---|---|--- 2026-03-04 16:31:53+00:00| seen| https://t.me/cKure/16030 2026-03-04 17:14:10+00:00| seen| https://bsky.app/profile/thehackerwire.bsky.social/post/3mgartff3jl2d 2026-03-04 17:14:36+00:00| seen|...

CVE-2026-27441

creationtimestamp| type| source ---|---|--- 2026-03-04 10:08:47+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mga22qm65b24 2026-03-04 10:49:54+00:00| seen| https://bsky.app/profile/basefortify.bsky.social/post/3mga4e2k2nk2c 2026-03-04 10:49:55+00:00| seen|...

CVE-2026-2363

The WP-Members Membership Plugin plugin for WordPress is vulnerable to SQL Injection via the 'orderby' attribute of the wpmemusermembershipposts shortcode in all versions up to, and including, 3.5.5.1. This is due to insufficient escaping on the user supplied parameter and lack of sufficient...

CVE-2026-29183

creationtimestamp| type| source ---|---|--- 2026-03-04 03:48:11+00:00| published-proof-of-concept| https://github.com/siyuan-note/siyuan/security/advisories/GHSA-6865-qjcf-286f 2026-03-06 08:20:31+00:00| seen| https://bsky.app/profile/thehackerwire.bsky.social/post/3mgeuwyjvth2c 2026-03-06...

SUSE CVE-2026-22892

Mattermost versions 11.1.x = 11.1.2, 10.11.x = 10.11.9, 11.2.x = 11.2.1 fail to validate user permissions when creating Jira issues from Mattermost posts, which allows an authenticated attacker with access to the Jira plugin to read post content and attachments from channels they do not have acce...

CVE-2026-27600

HomeBox is a home inventory and organization system. Prior to 0.24.0-rc.1, the notifier functionality allows authenticated users to specify arbitrary URLs to which the application sends HTTP POST requests. No validation or restriction is applied to the supplied host, IP address, or port. Although...

CVE-2026-24502

creationtimestamp| type| source ---|---|--- 2026-03-03 21:59:58+00:00| seen| https://bsky.app/profile/thehackerwire.bsky.social/post/3mg6rdjfu3u2s 2026-03-03 22:03:53+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mg6rkk6yds2u 2026-03-05 22:20:09+00:00| seen|...

BIT-DISCOURSE-2026-27162 DIscourse doesn't prevent whispers to leak in excerpts

Discourse is an open source discussion platform. Prior to versions 2025.12.2, 2026.1.1, and 2026.2.0, postsnearby was checking topic access but then returning all posts regardless of type, including whispers that should only be visible to whisperers. Use Post.securedguardian to properly filter po...

BIT-DISCOURSE-2026-27151 Discourse doesn't validate destination topic when moving posts

Discourse is an open source discussion platform. Prior to versions 2025.12.2, 2026.1.1, and 2026.2.0, the moveposts action only checked canmoveposts? on the source topic but never validated write permissions on the destination topic. This allowed TL4 users and category group moderators to move...

CVE-2026-1874

creationtimestamp| type| source ---|---|--- 2026-03-03 08:21:14+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mg5dlj6nfy2x 2026-03-03 08:36:15+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mg5egelkcg27 2026-03-03 09:00:31+00:00| seen|...

CVE-2026-0754

creationtimestamp| type| source ---|---|--- 2026-03-03 04:05:25+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mg4vc3hhpa2v 2026-03-03 04:10:25+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mg4vkzvqvk2e...

CVE-2025-48636

creationtimestamp| type| source ---|---|--- 2026-03-02 20:20:13+00:00| seen| https://bsky.app/profile/thehackerwire.bsky.social/post/3mg43carjil2f 2026-03-02 20:20:34+00:00| seen| https://bsky.app/profile/thehackerwire.bsky.social/post/3mg43cuf3wg2s...

CVE-2026-21853

creationtimestamp| type| source ---|---|--- 2026-03-02 19:18:23+00:00| seen| https://bsky.app/profile/thehackerwire.bsky.social/post/3mg3xtoe7yt2s 2026-03-02 19:18:35+00:00| seen| https://bsky.app/profile/thehackerwire.bsky.social/post/3mg3xtzdyf52c 2026-03-02 19:18:52+00:00| seen|...

GHSA-5PMP-JPCF-PWX6

creationtimestamp| type| source ---|---|--- 2026-03-02 18:40:09+00:00| seen| https://gist.github.com/alon710/c8ef02a720c5ab2caad0ee631080ee0f 2026-03-02 18:55:03+00:00| seen| https://bsky.app/profile/flarestart.bsky.social/post/3mg3wjx7soq2t...