CVE-2026-48209

An improper neutralization of user-controllable input in OTRS or OTRS Community Edition ticket handling allows authenticated attackers to perform reflected cross-site scripting XSS attacks via crafted request parameters associated with ticket actions. By injecting malicious JavaScript into...

CVE-2026-10208

creationtimestamp| type| source ---|---|--- 2026-06-01 03:24:57+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mn74ylch4u24...

CVE-2026-10211

creationtimestamp| type| source ---|---|--- 2026-06-01 03:18:35+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mn74n7aq532j...

CVE-2026-10198

creationtimestamp| type| source ---|---|--- 2026-06-01 03:15:51+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mn74icqu6k2j...

CVE-2026-10201

creationtimestamp| type| source ---|---|--- 2026-06-01 03:14:50+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mn74gixydi26...

CVE-2026-40546

creationtimestamp| type| source ---|---|--- 2026-06-01 01:55:00+00:00| seen| https://cert.pl/en/posts/2026/06/CVE-2026-40543 2026-06-01 12:45:12+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mna4cfm7cs2t...

[SECURITY] Fedora 43 Update: chromium-148.0.7778.215-1.fc43

Chromium is an open-source web browser, powered by WebKit Blink...

[SECURITY] Fedora 44 Update: chromium-148.0.7778.215-1.fc44

Chromium is an open-source web browser, powered by WebKit Blink...

CVE-2026-49389

creationtimestamp| type| source ---|---|--- 2026-06-01 00:01:30+00:00| seen| https://bsky.app/profile/slackers.it/post/3mn6rmrienf2z...

CVE-2026-49388

creationtimestamp| type| source ---|---|--- 2026-06-01 00:01:30+00:00| seen| https://bsky.app/profile/slackers.it/post/3mn6rmqdab727...

CVE-2026-44074

creationtimestamp| type| source ---|---|--- 2026-06-01 00:01:29+00:00| seen| https://bsky.app/profile/slackers.it/post/3mn6rmqdab727...

SourceCodester Pharmacy Sales and Inventory System 访问控制错误漏洞

SourceCodester Pharmacy Sales and Inventory System is an open-source medication sales and inventory management system developed by SourceCodester. Version 1.0 of the SourceCodester Pharmacy Sales and Inventory System contains a vulnerability related to access control. This vulnerability stems fro...

SourceCodester Pharmacy Sales and Inventory System 安全漏洞

SourceCodester Pharmacy Sales and Inventory System is an open-source medication sales and inventory management system developed by SourceCodester. Versions of the SourceCodester Pharmacy Sales and Inventory System prior to version 1.0 contained security vulnerabilities. These vulnerabilities were...

SourceCodester Pet Grooming Management Software 安全漏洞

SourceCodester Pet Grooming Management Software is an open-source pet grooming management system developed by SourceCodester. Version 1.0 of SourceCodester Pet Grooming Management Software contains a security vulnerability. This vulnerability arises from improper operations with files in the admi...

SourceCodester Pharmacy Sales and Inventory System 代码注入漏洞

SourceCodester Pharmacy Sales and Inventory System is an open-source medication sales and inventory management system developed by SourceCodester. Version 1.0 of the SourceCodester Pharmacy Sales and Inventory System contains a code injection vulnerability. This vulnerability stems from improper...

goclaw 授权问题漏洞

Goclaw is an open-source multi-tenant AI agent platform developed by Next Level Builder. Goclaw versions 3.11.3 and earlier have a vulnerability related to authorization. This vulnerability stems from improper authorization in the auth function within the internal/http/evolutionhandlers.go file,...

droidclaw 安全漏洞

Droidclaw is an open-source AI tool developed by Unitedby AI U/AI, which allows for control of Android phones through natural language commands. Droidclaw versions 0.5.3 and earlier contain security vulnerabilities. These vulnerabilities stem from an improper limit on the number of authentication...

CloakBrowser 路径遍历漏洞

CloakBrowser is an open-source browser tool developed by CloakHQ that bypasses robot detection. Versions of CloakBrowser prior to 0.3.28 contained a path traversal vulnerability. This vulnerability stemmed from the cloakserve CDP multiplexer directly using the user-provided fingerprint query...

PT-2026-45468

Name of the Vulnerable Software and Affected Versions CloudPirates Open Source Helm Charts versions prior to commit fcf9302 Description A GitHub Actions workflow named 'generate-schema.yaml' exposes sensitive credentials, specifically a Personal Access Token and an SSH signing key, to code...

PT-2026-45660

eLabFTW is an open source electronic lab notebook. Prior to version 5.4.2, in certain cases, an authenticated user performing a numeric reference/search can return results that include resources the requesting user is not authorized to view. The exposed information is limited only the title...