Pterodactyl Panel 安全漏洞

Pterodactyl Panel is an open-source game server management panel developed by Pterodactyl. Versions of Pterodactyl Panel prior to 1.12.3 contained security vulnerabilities. These vulnerabilities stemmed from a complete failure of the database locking mechanism, which could allow users to bypass...

Tesla 安全漏洞

Tesla is an HTTP client software open source by Elixir Tesla. Versions of Tesla from 1.4.0 to 1.18.3 contained security vulnerabilities. These vulnerabilities stemmed from the use of case-sensitive string comparisons in handling security-sensitive headers. This could lead to credential leakage to...

Google Chrome 安全漏洞

Google Chrome is a web browser developed by Google Inc. Versions of Google Chrome prior to 149.0.7827.53 contained a security vulnerability. This vulnerability stemmed from the improper initialization of Skia, which could allow remote attackers to exploit the vulnerability through specially craft...

Google Chrome 输入验证错误漏洞

Google Chrome is a web browser developed by Google Inc. Versions of Google Chrome prior to 149.0.7827.53 had a vulnerability related to input validation. This vulnerability stemmed from insufficient trust-based input validation in the Dawn component, which could allow remote attackers to exploit...

SourceCodester Human Resource Management 安全漏洞

SourceCodester Human Resource Management is an open-source human resource management system developed by SourceCodester. Version 1.0 of SourceCodester Human Resource Management contains a security vulnerability. This vulnerability stems from the handling of the parameter employeeid in the Employe...

Google Chrome 资源管理错误漏洞

Google Chrome is a web browser developed by Google Inc. in the United States. Network is a network component open source by Cloudburst. Versions of Google Chrome prior to 149.0.7827.53 had a resource management vulnerability. This vulnerability stemmed from the Network component’s ability to reus...

Student-Management-System 授权问题漏洞

Student-Management-System is an open-source student information management system developed by Cyber-III. There is a vulnerability in the student-management-system’s authorization mechanism; this vulnerability stems from improper authentication of unknown functions, which may lead to remote attac...

gleam 安全漏洞

Gleam is an open-source, type-safe, extensible system construction language developed by Gleam. Versions of Gleam from 0.10.0-rc1 to 1.17.0 contain security vulnerabilities. These vulnerabilities stem from a symbol linking issue, which may cause files located outside the project root directory to...

CVE-2026-10293

creationtimestamp| type| source ---|---|--- 2026-06-01 23:55:47+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mnbbrihf4g2f...

CVE-2018-25434

creationtimestamp| type| source ---|---|--- 2026-06-01 23:50:46+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mnbbijrsve26...

CVE-2018-25432

creationtimestamp| type| source ---|---|--- 2026-06-01 23:41:28+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mnbaxvphnn27...

CVE-2018-25433

creationtimestamp| type| source ---|---|--- 2026-06-01 23:31:22+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mnbaftnk6q27...

CVE-2018-25427

creationtimestamp| type| source ---|---|--- 2026-06-01 23:28:38+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mnbaawxpqt2w 2026-06-02 09:13:23+00:00| seen| https://bsky.app/profile/hugovalters.bsky.social/post/3mncawkjpq62y...

CVE-2025-60495

creationtimestamp| type| source ---|---|--- 2026-06-01 22:52:24+00:00| seen| https://bsky.app/profile/infosec.skyfleet.blue/post/3mnb6a5sfpy2a...

CVE-2025-55664

creationtimestamp| type| source ---|---|--- 2026-06-01 22:32:24+00:00| seen| https://bsky.app/profile/infosec.skyfleet.blue/post/3mnb54fpn242t...

CVE-2025-60483

creationtimestamp| type| source ---|---|--- 2026-06-01 22:27:23+00:00| seen| https://bsky.app/profile/infosec.skyfleet.blue/post/3mnb4tgjcvl2a...

EUVD-2026-33829

eLabFTW is an open source electronic lab notebook. Prior to version 5.4.2, in certain cases, an authenticated user performing a numeric reference/search can return results that include resources the requesting user is not authorized to view. The exposed information is limited only the title...

CVE-2026-10289

creationtimestamp| type| source ---|---|--- 2026-06-01 21:14:18+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mnayqj54cb2n...

CVE-2026-45545

creationtimestamp| type| source ---|---|--- 2026-06-01 21:04:10+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mnay6m25l42w 2026-06-05 03:08:11+00:00| seen| https://bsky.app/profile/cyberhub.blog/post/3mnj5uepyuj2f...

Malicious Package

Overview vpmdhaj-opensearch-setup is a malicious package. This package contains malicious code, and its content has been removed from the official package manager. While this package typosquats well-known libraries to impersonate valid open-source ecosystems, there is no connection between those...