2929 matches found
CVE-2026-50551
creationtimestamp| type| source ---|---|--- 2026-06-25 02:08:47+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mp3dwi46mr2x 2026-06-25 03:00:27+00:00| seen| https://bsky.app/profile/offseq.bsky.social/post/3mp3gsuacvy2b 2026-06-25 03:00:28+00:00| seen|...
GitLab 13.11 < 18.11.6 / 19.0 < 19.0.3 / 19.1 < 19.1.1 (CVE-2026-11379)
The version of GitLab installed on the remote host is affected by a vulnerability, as follows: - GitLab has remediated an issue in GitLab EE affecting all versions from 13.11 prior to 18.11.6, 19.0 prior to 19.0.3, and 19.1 prior to 19.1.1 in which incorrect authorization in DAST site profile...
CVE-2025-71361
creationtimestamp| type| source ---|---|--- 2026-06-24 13:49:30+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mp22mka3ji2z 2026-06-24 14:30:53+00:00| seen| https://bsky.app/profile/postac001.bsky.social/post/3mp24wkjxnn25 2026-06-24 17:18:03+00:00| seen|...
CVE-2026-50160
creationtimestamp| type| source ---|---|--- 2026-06-23 17:43:08+00:00| seen| https://bsky.app/profile/r-netsec-bot.bsky.social/post/3moxx7foljc2c 2026-06-23 19:10:19+00:00| seen| https://bsky.app/profile/infosec.skyfleet.blue/post/3moy43cm7u325...
CVE-2025-71348
creationtimestamp| type| source ---|---|--- 2026-06-21 16:27:12+00:00| seen| https://bsky.app/profile/postac001.bsky.social/post/3mosrzrpvn52y 2026-06-21 17:14:24+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mosuo6f7cg2k 2026-06-22 11:40:01+00:00| seen|...
CVE-2026-12781
creationtimestamp| type| source ---|---|--- 2026-06-21 09:57:57+00:00| seen| https://bsky.app/profile/suriq.io/post/3mos4bpp2d52t 2026-06-21 12:00:26+00:00| seen| https://infosec.exchange/users/offseq/statuses/116787984752269342 2026-06-21 12:00:27+00:00| seen|...
CVE-2026-12774
creationtimestamp| type| source ---|---|--- 2026-06-21 04:30:25+00:00| seen| https://bsky.app/profile/offseq.bsky.social/post/3morjy2zbp42u 2026-06-21 04:30:27+00:00| seen| https://infosec.exchange/users/offseq/statuses/116786215216470891 2026-06-21 08:34:07+00:00| seen|...
CVE-2026-11912
creationtimestamp| type| source ---|---|--- 2026-06-20 11:59:52+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mopsmtdged2h 2026-06-20 12:00:31+00:00| seen| https://bsky.app/profile/offseq.bsky.social/post/3mopsnvc2xj2l 2026-06-20 12:00:39+00:00| seen|...
CVE-2026-47645
creationtimestamp| type| source ---|---|--- 2026-06-19 22:26:46+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3moof6vfqd62e 2026-06-19 23:03:43+00:00| seen| https://bsky.app/profile/hugovalters.bsky.social/post/3moohax4noi2c 2026-06-26 22:04:00+00:00| seen|...
CVE-2026-54224
UBB.threads is affected by a Denial of Service described in CVE-2026-54224. An authenticated attacker can trigger DoS by issuing multiple concurrent requests to view user profiles on instances with many registered users, exhausting database resources and denying access to the application for othe...
Joomla! Extension 'JCE' < 2.9.99.5 Remote Code Execution
The version of the JCE Joomla Content Editor extension for the Joomla! application running on the remote host is prior to 2.9.99.5. It is, therefore, affected by an improper access control vulnerability. The extension allows the creation of new editor profiles for unauthenticated users, ultimatel...
CVE-2026-20266
creationtimestamp| type| source ---|---|--- 2026-06-17 21:24:42+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mojas23eof2f 2026-06-18 04:30:27+00:00| seen| https://bsky.app/profile/offseq.bsky.social/post/3mojyldna6o2w 2026-06-18 13:10:36+00:00| seen|...
CVE-2026-55198
Hermes WebUI before 0.51.443 contains an authorization bypass vulnerability in the session export endpoint that allows authenticated users to access sessions from other profiles. The handlesessionexport handler in api/routes.py fails to verify active-profile ownership before serializing session...
CVE-2026-53871
Hermes WebUI before 0.51.368 contains an authorization bypass vulnerability in the getprofilecookie function that accepts unauthenticated profile names from the hermesprofile cookie. An authenticated attacker can forge the hermesprofile cookie value to bypass profile-scoped authorization checks a...
CVE-2026-55198
Hermes WebUI prior to 0.51.443 contains an authorization bypass in the session export endpoint. The _handle_session_export handler in api/routes.py fails to verify active-profile ownership before serializing session data, allowing authenticated users to exfiltrate transcripts from other profiles ...
CVE-2026-53871
Hermes WebUI prior to version 0.51.368 contains an authorization bypass in get_profile_cookie() that accepts unauthenticated profile names via the hermes_profile cookie. An authenticated attacker can forge the hermes_profile cookie to bypass profile-scoped authorization and access sessions, files...
CVE-2026-12442
creationtimestamp| type| source ---|---|--- 2026-06-17 01:56:44+00:00| seen| https://www.acn.gov.it/portale/w/risolte-vulnerabilita-in-google-chrome-56 2026-06-17 04:30:30+00:00| seen| https://bsky.app/profile/offseq.bsky.social/post/3mohi4jqflv2o 2026-06-17 05:03:16+00:00| seen|...
CVE-2026-53853
creationtimestamp| type| source ---|---|--- 2026-06-16 21:01:39+00:00| seen| https://bsky.app/profile/thehackerwire.bsky.social/post/3mogozvim4327 2026-06-16 21:21:53+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mogq63qo3o2j 2026-06-19 08:11:42+00:00| seen|...
CVE-2026-53776
creationtimestamp| type| source ---|---|--- 2026-06-16 17:21:17+00:00| seen| https://bsky.app/profile/securitycyberuk.bsky.social/post/3mogcpum37t2k 2026-06-16 17:58:10+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mogert55pv2f 2026-06-16 18:00:45+00:00| seen|...
CVE-2026-5416
creationtimestamp| type| source ---|---|--- 2026-06-16 08:18:30+00:00| seen| https://bsky.app/profile/certvde.infosec.exchange.ap.brid.gy/post/3mofeee5snmy2 2026-06-16 11:00:54+00:00| seen| https://bsky.app/profile/thehackerwire.bsky.social/post/3mofnhp7x6t2n 2026-06-16 13:42:38+00:00| seen|...