CVE-2026-50551

creationtimestamp| type| source ---|---|--- 2026-06-25 02:08:47+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mp3dwi46mr2x 2026-06-25 03:00:27+00:00| seen| https://bsky.app/profile/offseq.bsky.social/post/3mp3gsuacvy2b 2026-06-25 03:00:28+00:00| seen|...

GitLab 13.11 < 18.11.6 / 19.0 < 19.0.3 / 19.1 < 19.1.1 (CVE-2026-11379)

The version of GitLab installed on the remote host is affected by a vulnerability, as follows: - GitLab has remediated an issue in GitLab EE affecting all versions from 13.11 prior to 18.11.6, 19.0 prior to 19.0.3, and 19.1 prior to 19.1.1 in which incorrect authorization in DAST site profile...

CVE-2025-71361

creationtimestamp| type| source ---|---|--- 2026-06-24 13:49:30+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mp22mka3ji2z 2026-06-24 14:30:53+00:00| seen| https://bsky.app/profile/postac001.bsky.social/post/3mp24wkjxnn25 2026-06-24 17:18:03+00:00| seen|...

CVE-2026-50160

creationtimestamp| type| source ---|---|--- 2026-06-23 17:43:08+00:00| seen| https://bsky.app/profile/r-netsec-bot.bsky.social/post/3moxx7foljc2c 2026-06-23 19:10:19+00:00| seen| https://bsky.app/profile/infosec.skyfleet.blue/post/3moy43cm7u325...

CVE-2025-71348

creationtimestamp| type| source ---|---|--- 2026-06-21 16:27:12+00:00| seen| https://bsky.app/profile/postac001.bsky.social/post/3mosrzrpvn52y 2026-06-21 17:14:24+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mosuo6f7cg2k 2026-06-22 11:40:01+00:00| seen|...

CVE-2026-12781

creationtimestamp| type| source ---|---|--- 2026-06-21 09:57:57+00:00| seen| https://bsky.app/profile/suriq.io/post/3mos4bpp2d52t 2026-06-21 12:00:26+00:00| seen| https://infosec.exchange/users/offseq/statuses/116787984752269342 2026-06-21 12:00:27+00:00| seen|...

CVE-2026-12774

creationtimestamp| type| source ---|---|--- 2026-06-21 04:30:25+00:00| seen| https://bsky.app/profile/offseq.bsky.social/post/3morjy2zbp42u 2026-06-21 04:30:27+00:00| seen| https://infosec.exchange/users/offseq/statuses/116786215216470891 2026-06-21 08:34:07+00:00| seen|...

CVE-2026-11912

creationtimestamp| type| source ---|---|--- 2026-06-20 11:59:52+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mopsmtdged2h 2026-06-20 12:00:31+00:00| seen| https://bsky.app/profile/offseq.bsky.social/post/3mopsnvc2xj2l 2026-06-20 12:00:39+00:00| seen|...

CVE-2026-47645

creationtimestamp| type| source ---|---|--- 2026-06-19 22:26:46+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3moof6vfqd62e 2026-06-19 23:03:43+00:00| seen| https://bsky.app/profile/hugovalters.bsky.social/post/3moohax4noi2c 2026-06-26 22:04:00+00:00| seen|...

Astra Linux – Vulnerability in Chromium

Before version 95.0.4638.54, using "Use after free" in Google Chrome allowed a remote attacker who convinced a user to perform certain gestures to potentially exploit heap corruption through a crafted HTML page...

CVE-2026-54224

UBB.threads is affected by a Denial of Service described in CVE-2026-54224. An authenticated attacker can trigger DoS by issuing multiple concurrent requests to view user profiles on instances with many registered users, exhausting database resources and denying access to the application for othe...

Joomla! Extension 'JCE' < 2.9.99.5 Remote Code Execution

The version of the JCE Joomla Content Editor extension for the Joomla! application running on the remote host is prior to 2.9.99.5. It is, therefore, affected by an improper access control vulnerability. The extension allows the creation of new editor profiles for unauthenticated users, ultimatel...

CVE-2026-20266

creationtimestamp| type| source ---|---|--- 2026-06-17 21:24:42+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mojas23eof2f 2026-06-18 04:30:27+00:00| seen| https://bsky.app/profile/offseq.bsky.social/post/3mojyldna6o2w 2026-06-18 13:10:36+00:00| seen|...

CVE-2026-55198

Hermes WebUI before 0.51.443 contains an authorization bypass vulnerability in the session export endpoint that allows authenticated users to access sessions from other profiles. The handlesessionexport handler in api/routes.py fails to verify active-profile ownership before serializing session...

CVE-2026-53871

Hermes WebUI before 0.51.368 contains an authorization bypass vulnerability in the getprofilecookie function that accepts unauthenticated profile names from the hermesprofile cookie. An authenticated attacker can forge the hermesprofile cookie value to bypass profile-scoped authorization checks a...

CVE-2026-55198

Hermes WebUI prior to 0.51.443 contains an authorization bypass in the session export endpoint. The _handle_session_export handler in api/routes.py fails to verify active-profile ownership before serializing session data, allowing authenticated users to exfiltrate transcripts from other profiles ...

CVE-2026-53871

Hermes WebUI prior to version 0.51.368 contains an authorization bypass in get_profile_cookie() that accepts unauthenticated profile names via the hermes_profile cookie. An authenticated attacker can forge the hermes_profile cookie to bypass profile-scoped authorization and access sessions, files...

CVE-2026-12442

creationtimestamp| type| source ---|---|--- 2026-06-17 01:56:44+00:00| seen| https://www.acn.gov.it/portale/w/risolte-vulnerabilita-in-google-chrome-56 2026-06-17 04:30:30+00:00| seen| https://bsky.app/profile/offseq.bsky.social/post/3mohi4jqflv2o 2026-06-17 05:03:16+00:00| seen|...

CVE-2026-53853

creationtimestamp| type| source ---|---|--- 2026-06-16 21:01:39+00:00| seen| https://bsky.app/profile/thehackerwire.bsky.social/post/3mogozvim4327 2026-06-16 21:21:53+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mogq63qo3o2j 2026-06-19 08:11:42+00:00| seen|...

CVE-2026-53776

creationtimestamp| type| source ---|---|--- 2026-06-16 17:21:17+00:00| seen| https://bsky.app/profile/securitycyberuk.bsky.social/post/3mogcpum37t2k 2026-06-16 17:58:10+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mogert55pv2f 2026-06-16 18:00:45+00:00| seen|...