CVE-2026-48485

creationtimestamp| type| source ---|---|--- 2026-06-12 13:41:59+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mo3um2z5le2f...

CVE-2026-49993 @nuxt/webpack-builder and @nuxt/rspack-builder dev server same-origin check bypassed when Sec-Fetch-Site, Origin, and Referer are all absent (incomplete fix for GHSA-6m52-m754-pw2g)

Nuxt is an open-source web development framework for Vue.js. In @nuxt/rspack-builder and @nuxt/webpack-builder from versions 3.15.4 to before 3.21.7 and 4.0.0 to before 4.4.7, there is an incomplete fix for GHSA-6m52-m754-pw2g. Source code may still be stolen during dev when using the webpack /...

CVE-2026-49993

Nuxt (Vue.js) users using the @nuxt/rspack-builder and @nuxt/webpack-builder are affected. The CVE concerns an incomplete fix for GHSA-6m52-m754-pw2g in versions 3.15.4–3.21.6 and 4.0.0–4.4.6, where the dev server could leak source code if bound to a non-loopback address and a malicious site is o...

CVE-2026-41708

creationtimestamp| type| source ---|---|--- 2026-06-12 12:55:27+00:00| seen| https://bsky.app/profile/o2cloud.bsky.social/post/3mo3rytodm42d 2026-06-15 20:13:45+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3moe3ve7spj2y...

CVE-2026-47825

creationtimestamp| type| source ---|---|--- 2026-06-12 12:55:27+00:00| seen| https://bsky.app/profile/o2cloud.bsky.social/post/3mo3rytodm42d...

CVE-2026-45670 Nuxt: Dev server exposes built source over LAN to malicious sites (incomplete fix for GHSA-4gf7-ff8x-hq99)

Nuxt is an open-source web development framework for Vue.js. In @nuxt/rspack-builder and @nuxt/webpack-builder versions 3.15.4 to before 3.21.6, and 4.0.0-alpha.1 to before 4.4.6, there is an incomplete fix for GHSA-4gf7-ff8x-hq99. Source code may be stolen during dev when using the webpack /...

CVE-2026-50012

creationtimestamp| type| source ---|---|--- 2026-06-12 12:48:19+00:00| seen| https://bsky.app/profile/infosec.skyfleet.blue/post/3mo3rm3en6x2v 2026-06-15 14:19:30+00:00| seen| https://bsky.app/profile/infosec.skyfleet.blue/post/3modi3vazfl2z 2026-06-15 23:59:01+00:00| seen|...

CVE-2026-47729

creationtimestamp| type| source ---|---|--- 2026-06-12 12:48:18+00:00| seen| https://bsky.app/profile/infosec.skyfleet.blue/post/3mo3rm3en6x2v 2026-06-15 14:19:29+00:00| seen| https://bsky.app/profile/infosec.skyfleet.blue/post/3modi3vazfl2z 2026-06-15 23:59:01+00:00| seen|...

Agentjacking Attack Tricks AI Coding Agents Into Running Malicious Code

Cybersecurity researchers have described what they say is a new class of attack that can trick artificial intelligence AI coding agents into running arbitrary code on developer machines. Called Agentjacking by Tenet Security, the attack can be triggered by means of a fake error report crafted usi...

CVE-2026-12058

creationtimestamp| type| source ---|---|--- 2026-06-12 11:27:53+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mo3n4b5dti2j...

CVE-2026-44417

creationtimestamp| type| source ---|---|--- 2026-06-12 11:00:28+00:00| seen| https://bsky.app/profile/euvd-bot.bsky.social/post/3mo3llavbst2u 2026-06-14 12:00:29+00:00| seen| https://bsky.app/profile/thehackerwire.bsky.social/post/3moapueqzdn2p...

CVE-2026-53943

creationtimestamp| type| source ---|---|--- 2026-06-12 09:45:53+00:00| seen| https://bsky.app/profile/cryptocat.me/post/3mo3hfsyulk2h...

CVE-2026-12060

creationtimestamp| type| source ---|---|--- 2026-06-12 07:56:59+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mo3bd5cnoy2q 2026-06-13 02:38:51+00:00| seen| https://bsky.app/profile/pmloik.bsky.social/post/3mo57ksxbqi2d...

CVE-2026-45169

creationtimestamp| type| source ---|---|--- 2026-06-12 07:51:58+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mo3b26v7uk2q...

CVE-2026-48613

creationtimestamp| type| source ---|---|--- 2026-06-12 07:36:57+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mo3a7dmx5p2r...

CVE-2026-47366

creationtimestamp| type| source ---|---|--- 2026-06-12 07:20:40+00:00| seen| https://bsky.app/profile/postac001.bsky.social/post/3mo37c7hrvy2z...

CVE-2026-45170

creationtimestamp| type| source ---|---|--- 2026-06-12 06:07:42+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mo337ptytp2g...

CVE-2026-44892

creationtimestamp| type| source ---|---|--- 2026-06-12 06:00:45+00:00| seen| https://bsky.app/profile/thehackerwire.bsky.social/post/3mo32tbuo3h2n 2026-06-12 07:41:58+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mo3aic2bcn23...

CVE-2026-47365

creationtimestamp| type| source ---|---|--- 2026-06-12 05:12:33+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mo2y54jypy25 2026-06-12 07:19:28+00:00| seen| https://bsky.app/profile/postac001.bsky.social/post/3mo37a36mva2v 2026-06-12 08:01:49+00:00| seen|...

CVE-2026-48612

creationtimestamp| type| source ---|---|--- 2026-06-12 05:00:18+00:00| seen| https://bsky.app/profile/thehackerwire.bsky.social/post/3mo2xh6tipn24 2026-06-12 05:19:31+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mo2yjlei6u2g...