CVE-2026-39250

creationtimestamp| type| source ---|---|--- 2026-05-19 22:32:48+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mmah35t7tn2r...

CVE-2026-42639

creationtimestamp| type| source ---|---|--- 2026-05-19 22:32:25+00:00| seen| https://bsky.app/profile/atomicedge.bsky.social/post/3mmagzvfrzc2u...

grafana: Grafana: Information disclosure of data-source passwords via public dashboards

A flaw was found in Grafana. When public dashboards are used with direct data-sources, sensitive credentials, specifically passwords for all direct data-sources, are exposed. This information disclosure occurs even when these data-sources are not actively utilized in the dashboards. A remote...

Important: Red Hat Security Advisory: grafana security update

An update for grafana is now available for Red Hat Enterprise Linux 9. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from t...

CVE-2026-6732

creationtimestamp| type| source ---|---|--- 2026-05-19 22:01:19+00:00| seen| https://bsky.app/profile/msw.bsky.social/post/3mmafccldts2j...

EUVD-2026-30993

CtrlPanel is open-source billing software for hosting providers. Versions 1.1.1 and prior contains a broken access control vulnerability where multiple admin controllers enforce permission checks on form display methods but omit equivalent checks on the corresponding write methods, allowing any...

CVE-2026-34241

CVE-2026-34241 (CtrlPanel) : Open-source hosting billing software with versions ≤ 1.1.1 contains a Stored XSS in the ticket reply notification system. Unsanitized content in $newmessage is stored in notification payloads and later rendered with Blade’s {!! !!} in recipients’ browsers, affecting b...

EUVD-2026-30984

CtrlPanel is open-source billing software for hosting providers. In versions 1.1.1 and prior, the web-based installer public/installer/index.php is vulnerable to unauthenticated Remote Code Execution RCE because it performs the install.lock check only after including and executing form handler...

CVE-2026-34234 CtrlPanel: Unauthenticated RCE using installer script

CtrlPanel is open-source billing software for hosting providers. In versions 1.1.1 and prior, the web-based installer public/installer/index.php is vulnerable to unauthenticated Remote Code Execution RCE because it performs the install.lock check only after including and executing form handler...

GHSA-7HGR-7H44-33W2

creationtimestamp| type| source ---|---|--- 2026-05-19 20:40:52+00:00| seen| https://gist.github.com/alon710/d948bdbe7f1b3b90439141bced4b12bc...

CVE-2026-8912

creationtimestamp| type| source ---|---|--- 2026-05-19 20:32:07+00:00| seen| https://bsky.app/profile/atomicedge.bsky.social/post/3mmaaddplnw2s 2026-06-01 11:03:07+00:00| seen| https://bsky.app/profile/keiwork35.bsky.social/post/3mn7wlucxmo2j...

CVE-2026-32134

creationtimestamp| type| source ---|---|--- 2026-05-19 20:20:29+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mma7o657cd2k...

CVE-2026-6009

creationtimestamp| type| source ---|---|--- 2026-05-19 20:14:14+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mma7dep22x2r...

FileBrowser Quantum: unauthenticated user share share info

Impact Some sensitive info -- such as source and path can get exposed. Patches Update to the latest version Workarounds no...

GHSA-3JMG-P96M-M328 FileBrowser Quantum: unauthenticated user share share info

Impact Some sensitive info -- such as source and path can get exposed. Patches Update to the latest version Workarounds no...

CVE-2026-5511

creationtimestamp| type| source ---|---|--- 2026-05-19 20:12:28+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mma7a7eyfy2n...

GHSA-HCF7-66RW-9F5R

creationtimestamp| type| source ---|---|--- 2026-05-19 20:10:50+00:00| seen| https://gist.github.com/alon710/e381dedd3ac6c2888e1321e911d4bec9...

CVE-2025-61081

creationtimestamp| type| source ---|---|--- 2026-05-19 19:46:01+00:00| seen| https://bsky.app/profile/postac001.bsky.social/post/3mma5qw2scs27 2026-05-19 20:01:24+00:00| seen| https://bsky.app/profile/thehackerwire.bsky.social/post/3mma6mfu34g2q...

GHSA-58QX-3VCG-4XPX

creationtimestamp| type| source ---|---|--- 2026-05-19 19:42:10+00:00| seen| https://gist.github.com/konard/d8a22725a8b00a188eb2098b18eaa766 2026-05-19 19:44:33+00:00| seen| https://gist.github.com/konard/beb604d0f86e740a59c10cc19fb9b50b 2026-05-19 20:19:30+00:00| seen|...

CVE-2026-42660

creationtimestamp| type| source ---|---|--- 2026-05-19 19:32:35+00:00| seen| https://bsky.app/profile/atomicedge.bsky.social/post/3mma4xzwinv2c...