224 matches found
CVE-2026-40822
creationtimestamp| type| source ---|---|--- 2026-05-27 08:11:20+00:00| seen| https://infosec.exchange/users/certvde/statuses/116645525736344350 2026-05-27 08:12:10+00:00| seen| https://infosec.exchange/users/certvde/statuses/116645529147227087 2026-05-27 09:05:44+00:00| seen|...
CVE-2026-40829
creationtimestamp| type| source ---|---|--- 2026-05-27 08:11:19+00:00| seen| https://infosec.exchange/users/certvde/statuses/116645525736344350 2026-05-27 08:12:09+00:00| seen| https://infosec.exchange/users/certvde/statuses/116645529147227087...
CVE-2026-40833
creationtimestamp| type| source ---|---|--- 2026-05-27 08:11:16+00:00| seen| https://infosec.exchange/users/certvde/statuses/116645525736344350 2026-05-27 08:12:06+00:00| seen| https://infosec.exchange/users/certvde/statuses/116645529147227087...
CVE-2026-40849
creationtimestamp| type| source ---|---|--- 2026-05-27 08:11:16+00:00| seen| https://infosec.exchange/users/certvde/statuses/116645525736344350 2026-05-27 08:12:07+00:00| seen| https://infosec.exchange/users/certvde/statuses/116645529147227087...
CVE-2026-33278
creationtimestamp| type| source ---|---|--- 2026-05-20 10:30:25+00:00| seen| https://infosec.exchange/users/offseq/statuses/116606436980367840 2026-05-20 10:30:27+00:00| seen| https://bsky.app/profile/offseq.bsky.social/post/3mmbp6fht2k22 2026-05-20 10:36:24+00:00| seen|...
CVE-2026-5613
creationtimestamp| type| source ---|---|--- 2026-04-06 04:01:18+00:00| seen| https://bsky.app/profile/thehackerwire.bsky.social/post/3misevyk2yb2d 2026-04-06 04:01:38+00:00| seen| https://bsky.app/profile/thehackerwire.bsky.social/post/3misewmkiiw2r 2026-04-06 05:16:26+00:00|...
CVE-2026-5610
creationtimestamp| type| source ---|---|--- 2026-04-06 02:18:11+00:00| seen| https://bsky.app/profile/thehackerwire.bsky.social/post/3mis75n53qe2t 2026-04-06 02:18:22+00:00| seen| https://bsky.app/profile/thehackerwire.bsky.social/post/3mis75wzgi22p 2026-04-06 03:00:27+00:00| seen|...
CVE-2026-4163
creationtimestamp| type| source ---|---|--- 2026-03-15 00:00:57+00:00| seen| https://infosec.exchange/users/offseq/statuses/116230248058481531 2026-03-15 00:30:30+00:00| seen| https://infosec.exchange/users/offseq/statuses/116230365437082281 2026-03-15 12:00:35+00:00| seen|...
CVE-2025-12356 Tickera – WordPress Event Ticketing <= 3.5.6.4 - Missing Authorization to Authenticated (Subscriber+) Event/Post Status Update
The Tickera – Sell Tickets & Manage Events plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the 'wpajaxchangeticketstatus' AJAX endpoint in all versions up to, and including, 3.5.6.4. This makes it possible for authenticated attackers,...
CVE-2025-12356
CVE-2025-12356 concerns Tickera – Sell Tickets & Manage Events for WordPress. The issue is an unauthorized data modification vulnerability caused by a missing capability check on the wp_ajax_change_ticket_status endpoint. It affects all versions up to and including 3.5.6.4, enabling authenticated...
CVE-2025-59092
An RPC service, which is part of exos 9300, is reachable on port 4000, run by the process FSMobilePhoneInterface.exe. This service is used for interprocess communication between services and the Kaba exos 9300 GUI, containing status information about the Access Managers. Interacting with the...
CVE-2026-0793
creationtimestamp| type| source ---|---|--- 2026-01-09 05:00:00+00:00| seen| http://www.zerodayinitiative.com/advisories/ZDI-26-015/ 2026-01-09 17:15:35+00:00| seen| https://infosec.exchange/users/vuldb/statuses/115866267395234635 2026-01-23 03:54:23+00:00| seen|...
CVE-2025-13597
creationtimestamp| type| source ---|---|--- 2025-11-25 21:00:05+00:00| published-proof-of-concept| Telegram/JmOfzmPuwFaGVUe1ryxZaualiroKxV8Ljh6xRZNwM5xTm4 2025-11-26 00:02:46+00:00| seen| https://infosec.exchange/users/offseq/statuses/115613064530964196 2025-11-26 00:02:47+00:00| seen|...
CVE-2023-41345
creationtimestamp| type| source ---|---|--- 2025-11-19 21:59:29+00:00| seen| https://infosec.exchange/users/cR0w/statuses/115578606002979278 2025-11-19 22:00:06+00:00| seen| https://infosec.exchange/users/cR0w/statuses/115578608301178805 2025-11-20 08:08:05+00:00| seen|...
Incorrect Authorization
Overview Affected versions of this package are vulnerable to Incorrect Authorization. An attacker can disrupt control over a running virtual machine instance by creating a pod with identical labels to the legitimate virt-launcher pod, misleading the controller into associating the fake pod with t...
Incorrect Authorization
Overview Affected versions of this package are vulnerable to Incorrect Authorization. An attacker can disrupt control over a running virtual machine instance by creating a pod with identical labels to the legitimate virt-launcher pod, misleading the controller into associating the fake pod with t...
EUVD-2022-51063
Malicious code in bioql PyPI...
CVE-2024-8860
The Tourfic plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the tforderstatusemailresendfunction, tfvisitordetailseditfunction, tfcheckinoutdetailseditfunction, tforderstatuseditfunction, tforderbulkactioneditfunction,...
CVE-2024-8860
The CVE-2024-8860 case concerns the WordPress Tourfic plugin (versions up to and including 2.14.5). The vulnerability arises from missing capability checks in multiple functions (tf_order_status_email_resend_function, tf_visitor_details_edit_function, tf_checkinout_details_edit_function, tf_order...
CVE-2025-41674
creationtimestamp| type| source ---|---|--- 2025-07-21 10:42:09+00:00| seen| https://infosec.exchange/users/certvde/statuses/114890803062994673 2025-07-21 10:42:30+00:00| seen| https://infosec.exchange/users/certvde/statuses/114890804388115598 2025-07-21 10:46:28+00:00| seen|...