PT-2026-23756

Name of the Vulnerable Software and Affected Versions Flare versions prior to 1.7.2 Description Flare, a Next.js-based file sharing platform, had a flaw where authenticated, non-owner users could access private files if they knew the file URL. This occurred because the raw and direct file routes...

app.getxray:xray-junit-extensions (=0.10.0), com.android.tools.screenshot:screenshot-validation-junit-engine (>=0.0.1-alpha11 <=0.0.1-alpha14) +23 more potentially affected by CVE-2025-53103 via org.junit.platform:junit-platform-reporting (>=1.12.0-M1 <=1.13.1)

org.junit.platform:junit-platform-reporting MAVEN version =1.12.0-M1, =0.0.1-alpha11, =5.2.0, =4.0.24, =1.12.0, =0.103.1, =0.103.1, =0.103.1, =0.103.1, =0.103.1, =0.103.4, =0.103.1, =0.103.1, =0.103.1, =0.104.2 - org.projectnessie.nessie:nessie-versioned-storage-common-tests...

Microsoft Issues Patch for aCropalypse Privacy Flaw in Windows Screenshot Tools

Microsoft has released an out-of-band update to address a privacy-defeating flaw in its screenshot editing tool for Windows 10 and Windows 11. The issue, dubbed aCropalypse , could enable malicious actors to recover edited portions of screenshots, potentially revealing sensitive information that...