CVE-2026-7198

creationtimestamp| type| source ---|---|--- 2026-06-03 01:00:36+00:00| seen| https://bsky.app/profile/thehackerwire.bsky.social/post/3mndvucat4n2n 2026-06-05 10:19:13+00:00| seen| https://cyber.gc.ca/en/alerts-advisories/progress-security-advisory-av26-552...

CVE-2024-14036

creationtimestamp| type| source ---|---|--- 2026-06-03 00:11:08+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mndt3uf7ie2o...

CVE-2022-4992

creationtimestamp| type| source ---|---|--- 2026-06-03 00:06:08+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mndssvv4wc2r...

CVE-2026-35482

creationtimestamp| type| source ---|---|--- 2026-06-03 00:01:11+00:00| seen| https://bsky.app/profile/thehackerwire.bsky.social/post/3mndsk2lvzu22 2026-06-03 02:43:11+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mne3lqz6f62q 2026-06-03 04:30:30+00:00| seen|...

CVE-2026-8936

creationtimestamp| type| source ---|---|--- 2026-06-03 00:01:07+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mndsjxekem23 2026-06-03 07:30:26+00:00| seen| https://bsky.app/profile/offseq.bsky.social/post/3mnelnebyt42f...

CVE-2026-10693

A security vulnerability has been detected in SourceCodester Online Boat Reservation System 1.0. Affected by this vulnerability is an unknown functionality of the component Administrative Endpoint. The manipulation leads to improper authorization. The attack can be initiated remotely. The exploit...

CVE-2026-10693

SourceCodester Online Boat Reservation System 1.0 is affected by an improper authorization issue in the Administrative Endpoint. The vulnerability enables remote manipulation across multiple endpoints, with exploit publicly disclosed and documented at CVE-2026-10693. CVSS metrics indicate network...

PT-2026-46095

When using React Router v7 Framework Mode with Pre-rendering enabled, an improper neutralization of the HTTP Location header value can permit Cross-Site Scripting XSS in statically generated HTML files if the redirect location comes from an untrusted source. !NOTE This does not impact your React...

Canarytokens 安全漏洞

Canarytokens is a network activity tracking system open-source by Thinkst Applied Research. There is a security vulnerability in Canarytokens, which stems from HTML injection in notification emails. This vulnerability may lead to interface manipulation and cross-site scripting attacks...

daphne 安全漏洞

Daphne is an open-source ASGI protocol server developed by Django, which supports HTTP, HTTP2, and WebSocket. Versions of Daphne prior to 4.2.2 contained security vulnerabilities. These vulnerabilities were due to differences in the parser, which could allow attackers to inject additional headers...

The Coverage Gap: Chile's Cyber Disclosure Framework Versus the USA, EU and UK

We introduce the Coverage Gap as a measurable distance between the observable public exposure of critical-infrastructure operators and their declared capability to coordinate vulnerability disclosure. We instantiate it against the 915 Chilean Operadores de Importancia Vital OIVs -- Operators of...

CyberGym-E2E: Scalable Real-World Benchmark for AI Agents' End-To-End Cybersecurity Capabilities

AI has the potential to transform cybersecurity by enabling systems that can autonomously detect, analyze, and remediate software vulnerabilities. However, existing cybersecurity evaluations of AI systems are limited in scale or scope, and fail to capture the end-to-end lifecycle of real-world...

GPAC 安全漏洞

GPAC is an open-source multimedia framework developed by GPAC. Versions of GPAC prior to 26.02.0 contained security vulnerabilities. These vulnerabilities were caused by a null pointer dereferencing in the gffilterpidresolvefiletemplateex function, which could allow attackers to cause...

GLPI 安全漏洞

GLPI is an open-source IT and asset management software developed by GLPI. This software provides a comprehensive IT resource management interface, allowing you to create databases to manage various IT assets such as computers, monitors, servers, printers, network devices, telephones, and even...

GLPI 安全漏洞

GLPI is an open-source IT and asset management software developed by GLPI. This software provides a comprehensive IT resource management interface, allowing you to create databases for managing various IT assets such as computers, monitors, servers, printers, network devices, telephones, and even...

morgan 安全漏洞

Morgan is an open-source HTTP request logging middleware developed by ExpressJS. Versions 1.2.0 to 1.10.1 of Morgan contain security vulnerabilities. These vulnerabilities stem from the remoteuser token not being escaped with control characters, which may lead to log manipulation...

samba security update

4.19.4-16.0.1 - s3: winbindd: winbinddpam: fix leak in extractpacvrfysigs Orabug: 36518285 - s3:passdb: Do not leak memory in pdbtdb Orabug: 36371377 - Gluster volumes not accessible via Samba due to missing samba-vfs-glusterfs in OL8 Orabug: 30205755 4.19.4-16 - resolves: RHEL-156322 - Fix...

CVE-2021-4481

creationtimestamp| type| source ---|---|--- 2026-06-02 23:51:06+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mndry2b42t23...

CVE-2026-8036

creationtimestamp| type| source ---|---|--- 2026-06-02 23:46:06+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mndrozqits2m...

CVE-2021-4480

creationtimestamp| type| source ---|---|--- 2026-06-02 23:38:01+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mndran2mhl23...