CVE-2026-5548

creationtimestamp| type| source ---|---|--- 2026-04-05 09:01:39+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3miqfa6kvi42g 2026-04-05 09:15:46+00:00| published-proof-of-concept| Telegram/DODGRJWtrApuUPCkLVkjLM9fRARhGaclk9hZ8B80y7duydc 2026-04-05 09:33:07+00:00| seen|...

curl: Use-After-Free in SMB connection reuse (req->path dangling pointer after needle destruction)

Summary A heap-use-after-free occurs in smbsendopen at lib/smb.c when curl processes two SMB URLs targeting the same host. The function smbparseurlpath sets req-path as a non-owning pointer into smbc-share connection-owned memory. During connection reuse, the needle connection is freed via...

CVE-2019-25235

creationtimestamp| type| source ---|---|--- 2025-12-24 20:55:00+00:00| seen| https://bsky.app/profile/thehackerwire.bsky.social/post/3mar5jss25h22 2025-12-24 21:07:36+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mar6ae7uot2y...

CVE-2017-5990

An issue was discovered in PhreeBooksERP before 2017-02-13. The vulnerability exists due to insufficient filtration of user-supplied data in the "form" HTTP GET parameter passed to the "PhreeBooksERP-master/extensions/ShippingMethods/ups/labelmgr/jsinclude.php" and...