110859 matches found
CVE-2026-28940
creationtimestamp| type| source ---|---|--- 2026-05-12 10:21:51+00:00| seen| https://www.thezdi.com/blog/2026/5/12/the-apple-macos-security-update-review 2026-05-12 18:00:00+00:00| seen| https://www.hkcert.org/security-bulletin/apple-products-multiple-vulnerabilities20260513 2026-05-26...
CVE-2026-28901
creationtimestamp| type| source ---|---|--- 2026-05-12 10:21:51+00:00| seen| https://www.thezdi.com/blog/2026/5/12/the-apple-macos-security-update-review 2026-05-12 18:00:00+00:00| seen| https://www.hkcert.org/security-bulletin/apple-products-multiple-vulnerabilities20260513 2026-05-26...
CVE-2026-28994
creationtimestamp| type| source ---|---|--- 2026-05-12 10:21:51+00:00| seen| https://www.thezdi.com/blog/2026/5/12/the-apple-macos-security-update-review 2026-05-12 18:00:00+00:00| seen| https://www.hkcert.org/security-bulletin/apple-products-multiple-vulnerabilities20260513 2026-05-26...
CVE-2026-28953
creationtimestamp| type| source ---|---|--- 2026-05-12 10:21:51+00:00| seen| https://www.thezdi.com/blog/2026/5/12/the-apple-macos-security-update-review 2026-05-12 18:00:00+00:00| seen| https://www.hkcert.org/security-bulletin/apple-products-multiple-vulnerabilities20260513 2026-05-26...
CVE-2026-35504
creationtimestamp| type| source ---|---|--- 2026-05-12 10:00:00+00:00| seen| https://www.cisa.gov/news-events/ics-advisories/icsa-26-132-02...
CVE-2026-7561
creationtimestamp| type| source ---|---|--- 2026-05-12 09:33:06+00:00| seen| https://bsky.app/profile/atomicedge.bsky.social/post/3mlniahwve42x...
CVE-2026-38568
creationtimestamp| type| source ---|---|--- 2026-05-12 09:25:01+00:00| seen| https://bsky.app/profile/thehackerwire.bsky.social/post/3mlnhrjjywa2e...
CVE-2026-2993
creationtimestamp| type| source ---|---|--- 2026-05-12 09:22:49+00:00| seen| https://bsky.app/profile/thehackerwire.bsky.social/post/3mlnho3aw7b2g...
Exposed Dangerous Method or Function
Overview org.webjars.npm:webpack-dev-server is an Uses webpack with a development server that provides live reloading. It should be used for development only. Affected versions of this package are vulnerable to Exposed Dangerous Method or Function in Server.js, when handling non-HTTPS responses. ...
Exposed Dangerous Method or Function
Overview webpack-dev-server is an Uses webpack with a development server that provides live reloading. It should be used for development only. Affected versions of this package are vulnerable to Exposed Dangerous Method or Function in Server.js, when handling non-HTTPS responses. An attacker can...
CVE-2026-2300
The BJ Lazy Load plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the filterimages function in all versions up to, and including, 1.0.9. This is due to the use of regex-based HTML processing pregreplace that does not properly handle HTML attribute boundaries when replacing sr...
CVE-2026-0804
creationtimestamp| type| source ---|---|--- 2026-05-12 09:14:41+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mlnh7jt6s22e 2026-05-12 14:16:20+00:00| seen| https://bsky.app/profile/o2cloud.bsky.social/post/3mlnxzftvs62e...
CVE-2026-1681
creationtimestamp| type| source ---|---|--- 2026-05-12 09:09:40+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mlngwl2gxq2o...
CVE-2026-1185
creationtimestamp| type| source ---|---|--- 2026-05-12 09:04:39+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mlngnmd4mh2o 2026-05-12 14:16:20+00:00| seen| https://bsky.app/profile/o2cloud.bsky.social/post/3mlnxzftvs62e...
CVE-2026-0802
creationtimestamp| type| source ---|---|--- 2026-05-12 08:55:21+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mlng4y57hj2e 2026-05-12 14:16:20+00:00| seen| https://bsky.app/profile/o2cloud.bsky.social/post/3mlnxzftvs62e...
CVE-2026-7050
creationtimestamp| type| source ---|---|--- 2026-05-12 08:33:15+00:00| seen| https://bsky.app/profile/atomicedge.bsky.social/post/3mlnevhmsnt2c 2026-05-13 01:32:24+00:00| seen| https://bsky.app/profile/donwebmedia.bsky.social/post/3mlp5ttfegh2s...
CVE-2026-6402
creationtimestamp| type| source ---|---|--- 2026-05-12 07:53:37+00:00| seen| https://bsky.app/profile/ulisesgascon.com/post/3mlncojczic27 2026-05-18 14:40:50+00:00| seen| https://gist.github.com/alon710/6c307c7259353f2c5a97793055cbda6e...
CVE-2026-2300 BJ Lazy Load <= 1.0.9 - Authenticated (Contributor+) Stored Cross-Site Scripting via Custom HTML Block
The BJ Lazy Load plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the filterimages function in all versions up to, and including, 1.0.9. This is due to the use of regex-based HTML processing pregreplace that does not properly handle HTML attribute boundaries when replacing sr...
CVE-2026-2300 BJ Lazy Load <= 1.0.9 - Authenticated (Contributor+) Stored Cross-Site Scripting via Custom HTML Block
The BJ Lazy Load plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the filterimages function in all versions up to, and including, 1.0.9. This is due to the use of regex-based HTML processing pregreplace that does not properly handle HTML attribute boundaries when replacing sr...
GHSA-389R-GV7P-R3RP vulnerabilities
Vulnerabilities for packages: grype, zarf, kubescape, grafana, kyverno, src-fingerprint, trivy, goreleaser, pulumi-kubernetes-operator, nfpm, flux-source-controller, cerbos, teleport, pulumi-language-yaml, wolfictl, pulumi, argo-cd, flux-image-automation-controller, snyk-cli, flux, xeol,...