CVE-2026-33470 Frigate has cross-camera snapshot disclosure via unrestricted timeline IDs and missing authorization in /api/events/{event_id}/snapshot-clean.webp

Frigate is a network video recorder NVR with realtime local object detection for IP cameras. In version 0.17.0, a low-privilege authenticated user restricted to one camera can access snapshots from other cameras. This is possible through a chain of two authorization problems: /api/timeline return...

CVE-2025-32011

creationtimestamp| type| source ---|---|--- 2025-05-01 10:00:00+00:00| seen| https://www.cisa.gov/news-events/ics-advisories/icsa-25-121-01 2025-05-01 19:15:05+00:00| seen| https://t.me/DarkWebInformerCVEAlerts/14379 2025-05-01 20:36:00+00:00| seen|...

Oops! Google accidentally deletes some users’ Maps Timeline data

Google has admitted it accidentally deleted some users' Google Maps Timeline data after a "technical issue". As reported by Forbes on March 11, users started noticing that their Google Maps Timelines had completely disappeared. At the time, we didn't know anything about the cause of this issue...

CVE-2019-1322

creationtimestamp| type| source ---|---|--- 2019-11-14 15:02:06+00:00| seen| https://t.me/canyoupwnme/6135 2019-11-15 19:29:39+00:00| published-proof-of-concept| https://t.me/canyoupwnme/6143 2019-11-16 12:53:34+00:00| published-proof-of-concept| https://t.me/DC8044Info/473 2019-12-18...

CVE-2007-1036

creationtimestamp| type| source ---|---|--- 2010-10-19 00:00:00+00:00| confirmed| https://www.exploit-db.com/exploits/16318 2012-09-05 00:00:00+00:00| confirmed| https://www.exploit-db.com/exploits/21080 2018-05-29 15:50:33+00:00| seen|...