CVE-2025-30187

creationtimestamp| type| source ---|---|--- 2025-09-18 11:17:29+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3lz47ztxdzp2g 2025-10-02 20:42:51+00:00| seen| https://bsky.app/profile/ferramentaslinux.bsky.social/post/3m2ag5mcysc2t...

CVE-2025-30519

creationtimestamp| type| source ---|---|--- 2025-09-18 10:00:00+00:00| seen| https://www.cisa.gov/news-events/ics-advisories/icsa-25-261-07 2025-09-18 20:03:59+00:00| seen| https://bsky.app/profile/pigondrugs.bsky.social/post/3lz55hd4prc27 2025-09-19 01:32:16+00:00| seen|...

CVE-2025-54754

creationtimestamp| type| source ---|---|--- 2025-09-18 10:00:00+00:00| seen| https://www.cisa.gov/news-events/ics-advisories/icsa-25-261-06 2025-09-18 20:03:18+00:00| seen| https://bsky.app/profile/pigondrugs.bsky.social/post/3lz55g3jmvi2g 2025-09-18 21:29:01+00:00| seen|...

CVE-2025-10493

creationtimestamp| type| source ---|---|--- 2025-09-18 07:27:17+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3lz3t6amegp2x 2025-12-25 18:30:11+00:00| seen| https://bsky.app/profile/exploitdb-bot.bsky.social/post/3matfvqfi2l2u 2025-12-26 21:03:02+00:00| seen|...

CVE-2023-49564

creationtimestamp| type| source ---|---|--- 2025-09-18 07:17:17+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3lz3smdpk672c 2025-09-18 08:27:48+00:00| seen| https://gist.github.com/Darkcrai86/d31f51c58973cf36f4efdaaec55924df 2025-09-19 12:49:10+00:00| seen|...

CVE-2025-59340

creationtimestamp| type| source ---|---|--- 2025-09-18 04:32:10+00:00| seen| https://bsky.app/profile/offseq.bsky.social/post/3lz3jf3gfbn2w 2025-09-19 07:32:32+00:00| seen| https://bsky.app/profile/crowdcyber.bsky.social/post/3lz6dwkaulg2c 2025-09-19 13:13:41+00:00| seen|...

CVE-2025-43359

creationtimestamp| type| source ---|---|--- 2025-09-17 23:12:47+00:00| seen| https://bsky.app/profile/getpokemon7.bsky.social/post/3lz2xjylsvs2d 2025-09-17 23:14:57+00:00| seen| https://bsky.app/profile/getpokemon7.bsky.social/post/3lz2xnuhons2d 2025-10-13 16:14:58+00:00| seen|...

CVE-2025-55911

creationtimestamp| type| source ---|---|--- 2025-09-17 21:02:31+00:00| seen| https://bsky.app/profile/beikokucyber.bsky.social/post/3lz2qaxzzye2r 2025-09-18 06:13:20+00:00| seen| https://bsky.app/profile/securitycipher.bsky.social/post/3lz3ozyewsb2j...

CVE-2025-23316

creationtimestamp| type| source ---|---|--- 2025-09-17 19:45:18+00:00| seen| https://bsky.app/profile/crowdcyber.bsky.social/post/3lz2lwyaysv2p 2025-09-17 23:16:43+00:00| seen| https://bsky.app/profile/getpokemon7.bsky.social/post/3lz2xqz57jk2d 2025-09-18 00:02:01+00:00| seen|...

CVE-2025-8411

creationtimestamp| type| source ---|---|--- 2025-09-17 15:28:49+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3lz25med5a42x 2025-09-18 16:08:16+00:00| seen| https://bsky.app/profile/lynxintel.bsky.social/post/3lz4qbs37vf2q...

CVE-2025-9078

Mattermost versions 10.8.x = 10.8.3, 10.5.x = 10.5.8, 9.11.x = 9.11.17, 10.10.x = 10.10.1, 10.9.x = 10.9.3 fail to properly validate cache keys for link metadata which allows authenticated users to access unauthorized posts and poison link previews via hash collision attacks on FNV-1 hashing...

CVE-2025-9242

creationtimestamp| type| source ---|---|--- 2025-09-17 09:01:57+00:00| seen| https://bsky.app/profile/offseq.bsky.social/post/3lyzhykpokn2b 2025-09-17 09:40:12+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3lyzk4xxe232u 2025-09-17 11:07:55+00:00| seen|...

CVE-2025-9971

creationtimestamp| type| source ---|---|--- 2025-09-17 07:32:06+00:00| seen| https://bsky.app/profile/offseq.bsky.social/post/3lyzcxuzhta2b 2025-09-17 07:50:27+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3lyzdypxovr2t...

CVE-2025-34186

creationtimestamp| type| source ---|---|--- 2025-09-16 23:27:32+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3lyyhvhe4ww2t 2025-09-17 01:32:05+00:00| seen| https://bsky.app/profile/offseq.bsky.social/post/3lyyou5fkyy2w 2025-09-17 21:02:30+00:00| seen|...

CVE-2025-34183

creationtimestamp| type| source ---|---|--- 2025-09-16 23:12:30+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3lyyh2lb7ii2j 2025-09-17 04:32:12+00:00| seen| https://bsky.app/profile/offseq.bsky.social/post/3lyyyw7ljza2m 2025-09-17 21:02:28+00:00| seen|...

CVE-2025-34184

creationtimestamp| type| source ---|---|--- 2025-09-16 20:10:13+00:00| seen| https://gist.github.com/Darkcrai86/5a792e7221fda584809dd70986574994 2025-09-16 23:22:31+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3lyyhmigpbu2c 2025-09-17 03:02:04+00:00| seen|...

Improper Access Control

github.com/mattermost/mattermost-server is vulnerable to Improper Access Control. The vulnerability is due to failing to validate access controls at the time of access, which allows an attacker to read a thread via AI posts...

CVE-2025-4688

creationtimestamp| type| source ---|---|--- 2025-09-16 09:02:05+00:00| seen| https://bsky.app/profile/offseq.bsky.social/post/3lywxjui6772o 2025-09-16 10:05:16+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3lyx32upekl2x 2025-09-17 21:02:47+00:00| seen|...

Use of Weak Hash

Overview github.com/mattermost/mattermost/server/channels/app is a private-cloud Slack alternative Affected versions of this package are vulnerable to Use of Weak Hash via the FNV-1 hashing process for cache key validation. An attacker can access unauthorized posts and manipulate link previews by...

Mattermost makes Use of Weak Hash

Mattermost versions 10.8.x = 10.8.3, 10.5.x = 10.5.8, 9.11.x = 9.11.17, 10.10.x = 10.10.1, 10.9.x = 10.9.3 fail to properly validate cache keys for link metadata which allows authenticated users to access unauthorized posts and poison link previews via hash collision attacks on FNV-1 hashing...