269 matches found
CVE-2026-41309
OSSN versions before 9.0 are vulnerable to resource exhaustion via image processing. An attacker can upload an extremely large image (e.g., 10000×10000), causing the server to allocate substantial memory and CPU during decompression and resizing, leading to DoS. The advisories recommend upgrading...
Open Source Social Network(OSSN) 资源管理错误漏洞
Open Source Social Network OSSN is a social network engine developed by the OSSN team in Switzerland. Prior to version 9.0 of Open Source Social Network OSSN, there was a resource management vulnerability. This vulnerability stemmed from resource exhaustion, which could allow attackers to upload...
CVE-2026-5321
creationtimestamp| type| source ---|---|--- 2026-04-02 06:21:12+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3miikuiyug32z...
CVE-2019-25638
creationtimestamp| type| source ---|---|--- 2026-03-24 13:44:30+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mhspgvfdks2x...
CVE-2025-55289 Chamilo: Stored Cross Site Scripting in Skills Argumentation
Chamilo is a learning management system. Prior to version 1.11.34, there is a stored XSS vulnerability in Chamilo LMS Verison 1.11.32 allows an attacker to inject arbitrary JavaScript into the platform’s social network and internal messaging features. When viewed by an authenticated user includin...
PT-2026-23631
Name of the Vulnerable Software and Affected Versions Chamilo versions prior to 1.11.34 Description Chamilo is a learning management system with a stored cross-site scripting XSS issue. The issue exists in the platform’s social network and internal messaging features. An attacker can inject...
PT-2026-22616
Name of the Vulnerable Software and Affected Versions Chamilo versions prior to 1.11.30 Description Chamilo is a learning management system. A logic issue in the friend request workflow of Chamilo’s social network module allows an authenticated user to add any user as a friend by directly calling...
CVE-2026-2777
creationtimestamp| type| source ---|---|--- 2026-02-25 00:02:18+00:00| seen| https://bsky.app/profile/slackers.it/post/3mfnevqoyme27 2026-02-28 02:01:54+00:00| seen| https://bsky.app/profile/slackers.it/post/3mfv4yf4dfo2t...
Meta patents AI that could keep you posting from beyond the grave
Tech bros have been wanting to become immortal for years. Until they get there, their fallback might be continuing to post nonsense on social media from the afterlife. On December 30, 2025, Meta was granted US patent 12513102B2: Simulation of a user of a social networking system using a language...
CVE-2025-63585
OSSN Open Source Social Network 8.6 is vulnerable to SQL Injection in /action/rtcomments/status via the timestamp parameter...
CVE-2025-63441
Open Source Social Network OSSN 8.6 is vulnerable to Cross Site Scripting XSS via the parameter param at endpoint u/administrator/friends...
CVE-2025-12503
creationtimestamp| type| source ---|---|--- 2025-11-03 08:40:45+00:00| seen| https://bsky.app/profile/jos1264.social.skynetcloud.site.ap.brid.gy/post/3m4pmp42kla42 2025-11-03 15:27:46+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3m4qdhqt6td2n...
CVE-2025-12307
A vulnerability was identified in code-projects Nero Social Networking Site 1.0. Affected by this vulnerability is an unknown functionality of the file /addfriend.php. Such manipulation of the argument ID leads to sql injection. The attack may be performed from remote. The exploit is publicly...
CVE-2025-20727
creationtimestamp| type| source ---|---|--- 2025-10-21 16:21:18+00:00| seen| https://bsky.app/profile/buherator.bsky.social/post/3m3pqfik6ss2g 2025-11-04 07:31:57+00:00| seen| https://bsky.app/profile/offseq.bsky.social/post/3m4rzdtjapn24...
EUVD-2010-1942
Malware in sbrugna...
EUVD-2019-6526
Malware in sbrugna...
EUVD-2023-36360
Malicious code in bioql PyPI...
EUVD-2022-28561
Malicious code in bioql PyPI...
EUVD-2022-38787
Malicious code in bioql PyPI...
EUVD-2022-38798
Malicious code in bioql PyPI...