CVE-2026-22739

creationtimestamp| type| source ---|---|--- 2026-03-24 01:30:58+00:00| seen| https://bsky.app/profile/thehackerwire.bsky.social/post/3mhrgha7cwp2s 2026-03-24 03:06:44+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mhrlsidflx2i 2026-03-24 14:20:13+00:00| seen|...

CVE-2025-66678

creationtimestamp| type| source ---|---|--- 2026-03-05 19:01:09+00:00| seen| https://bsky.app/profile/thehackerwire.bsky.social/post/3mgdibmy3uv2n...

CVE-2026-2247

CVE-2026-2247 describes an SQL injection in Clicldeu SaaS during report generation via the mobile app’s Day-to-day section. The vulnerability arises when a previously authenticated remote attacker uses a malicious payload in the URL generated after downloading a student’s report card, with the PD...

CVE-2025-71163

creationtimestamp| type| source ---|---|--- 2026-01-25 15:09:16+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mdaz52ax5l2g 2026-03-19 00:00:00+00:00| seen| https://www.cert.ssi.gouv.fr/avis/CERTFR-2026-AVI-0316/ 2026-04-07 18:00:00+00:00| seen|...

CVE-2025-37186

creationtimestamp| type| source ---|---|--- 2026-01-13 21:32:06+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mcdiwkhhzb2y 2026-01-13 22:00:31+00:00| seen| https://bsky.app/profile/thehackerwire.bsky.social/post/3mcdkjffafh2m...

Fedora: Security Advisory (FEDORA-2025-82714dbb22)

The remote host is missing an update for the SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

openSUSE Security Advisory (SUSE-SU-2024:1165-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

CISCO-SA-20180620-FXNXOS

creationtimestamp| type| source ---|---|--- 2024-12-17 06:41:51+00:00| seen| https://social.circl.lu/users/vulnerabilitylookup/statuses/113666794444456523...

Reflected cross-site-scripting vulnerability in report URL of Jenkins CppNCSS Plugin

A cross-site scripting vulnerability exists in Jenkins CppNCSS Plugin 1.1 and earlier in AbstractProjectAction/index.jelly that allow an attacker to craft links to Jenkins URLs that run arbitrary JavaScript in the user's browser when accessed...

GHSA-XGMH-RVPW-6498 Reflected cross-site-scripting vulnerability in report URL of Jenkins CppNCSS Plugin

A cross-site scripting vulnerability exists in Jenkins CppNCSS Plugin 1.1 and earlier in AbstractProjectAction/index.jelly that allow an attacker to craft links to Jenkins URLs that run arbitrary JavaScript in the user's browser when accessed...

pcre2: Heap-buffer-overflow in parse_regex

Project: svn://vcs.exim.org/pcre2/code/trunk Detailed report: https://clusterfuzz-external.appspot.com/testcase?key=6544078783119360 Fuzzer: libFuzzerpcre2fuzzer Job Type: libfuzzerasanpcre2 Platform Id: linux Crash Type: Heap-buffer-overflow READ 1 Crash Address: 0x60300000011c Crash State:...

Bugzilla < 2.18.1 Multiple Information Disclosures

According to its banner, the remote host is running a version of Bugzilla that reportedly may include passwords in the web server logs because it embeds a user's password in a report URL if the user is prompted to log in while viewing a chart. It also allows users to learn whether an invisible...