110177 matches found
EUVD-2018-21926
The Open ISES Project 3.30A contains an SQL injection vulnerability that allows unauthenticated attackers to execute arbitrary SQL queries by injecting malicious code through the ticketid parameter. Attackers can send GET requests to addfacnote.php with crafted SQL payloads to extract sensitive...
CVE-2026-42400
creationtimestamp| type| source ---|---|--- 2026-05-29 14:45:15+00:00| seen| https://bsky.app/profile/o2cloud.bsky.social/post/3mmyrmbdqgh2a...
CVE-2026-49094
creationtimestamp| type| source ---|---|--- 2026-05-29 14:45:15+00:00| seen| https://bsky.app/profile/o2cloud.bsky.social/post/3mmyrmbdqgh2a...
CVE-2026-49095
creationtimestamp| type| source ---|---|--- 2026-05-29 14:45:15+00:00| seen| https://bsky.app/profile/o2cloud.bsky.social/post/3mmyrmbdqgh2a...
CVE-2026-47694
WWBN AVideo is an open source video platform. In 29.0 and earlier, AVideo stores category descriptions from user input and later renders categorydescription as raw HTML in the Gallery view. A user who can create or edit categories can store JavaScript in a category description, which executes whe...
CVE-2025-41281
creationtimestamp| type| source ---|---|--- 2026-05-29 13:53:26+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mmyopnpjpv2e...
CVE-2025-41278
creationtimestamp| type| source ---|---|--- 2026-05-29 13:24:06+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mmyn33sjh32j...
CVE-2025-41279
creationtimestamp| type| source ---|---|--- 2026-05-29 13:20:17+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mmymuebmrv27...
CVE-2025-41280
creationtimestamp| type| source ---|---|--- 2026-05-29 13:16:56+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mmymof6alp2r...
CVE-2026-45619
WWBN AVideo is an open source video platform. In 29.0 and earlier, EpgParser.php, plugin/AI/receiveAsync.json.php, and other locations do not use the $resolvedIP out-param of isSSRFSafeURL for DNS pinning via CURLOPTRESOLVE, opening DNS-rebinding TOCTOU...
CVE-2025-41276
creationtimestamp| type| source ---|---|--- 2026-05-29 13:08:41+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mmym7n453n2i 2026-06-22 07:16:50+00:00| seen| https://bsky.app/profile/securitycyberuk.bsky.social/post/3moudqkm2oi2b...
CVE-2026-45620 AVideo CVE-2026-43881 incomplete fix - `objects/mention.json.php:17` is an unauthenticated user enumeration
WWBN AVideo is an open source video platform. In 29.0 and earlier, objects/mention.json.php has no User::loginCheck or admin gate. It only has an entry guard: pregmatch'/^@/', $REQUEST'term' and hard-coded rowCount=10. This enables unauthenticated user enumeration...
CVE-2025-41270
creationtimestamp| type| source ---|---|--- 2026-05-29 13:06:22+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mmym3ipin42t 2026-06-22 06:46:51+00:00| seen| https://bsky.app/profile/securitycyberuk.bsky.social/post/3mouc2xtuq22f...
CVE-2025-41268
creationtimestamp| type| source ---|---|--- 2026-05-29 13:04:13+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mmylxnnadf22 2026-06-22 00:31:15+00:00| seen| https://bsky.app/profile/securitycyberuk.bsky.social/post/3motn3czgn52l...
CVE-2025-41269
creationtimestamp| type| source ---|---|--- 2026-05-29 13:02:13+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mmylu2roej2g 2026-06-22 06:46:44+00:00| seen| https://bsky.app/profile/securitycyberuk.bsky.social/post/3mouc2qsevs2f...
CVE-2025-41272
creationtimestamp| type| source ---|---|--- 2026-05-29 13:00:20+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mmylqp4ykq2t 2026-06-22 07:01:35+00:00| seen| https://bsky.app/profile/securitycyberuk.bsky.social/post/3moucvbux762v...
CVE-2025-41267
creationtimestamp| type| source ---|---|--- 2026-05-29 12:58:33+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mmylnj34qv2e...
CVE-2025-41274
creationtimestamp| type| source ---|---|--- 2026-05-29 12:56:53+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mmylkjefwc2i 2026-06-22 07:01:49+00:00| seen| https://bsky.app/profile/securitycyberuk.bsky.social/post/3moucvpnqb227...
CVE-2025-41271
creationtimestamp| type| source ---|---|--- 2026-05-29 12:55:17+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mmylhohk3x2r...
CVE-2025-41273
creationtimestamp| type| source ---|---|--- 2026-05-29 12:53:47+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mmyley7qrw2k 2026-06-22 07:01:42+00:00| seen| https://bsky.app/profile/securitycyberuk.bsky.social/post/3moucvirz4h2z...