CVE-2026-2892

creationtimestamp| type| source ---|---|--- 2026-04-30 15:18:26+00:00| seen| https://bsky.app/profile/thehackerwire.bsky.social/post/3mkpvww7iqe2c 2026-04-30 16:23:40+00:00| seen| https://bsky.app/profile/postac001.bsky.social/post/3mkpzllnuqo2w 2026-04-30 16:41:49+00:00| seen|...

EUVD-2026-4474

WatchYourLAN Configuration Page Argument Injection Remote Code Execution Vulnerability. This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of WatchYourLAN. Authentication is not required to exploit this vulnerability. The specific flaw exists...

CVE-2021-31523

The Debian xscreensaver 5.42+dfsg1-1 package for XScreenSaver has capnetraw enabled for the /usr/libexec/xscreensaver/sonar file, which allows local users to gain privileges because this is arguably incompatible with the design of the Mesa 3D Graphics library dependency...

CVE-2022-31962

Rescue Dispatch Management System v1.0 is vulnerable to SQL Injection via /rdms/admin/incidents/viewincident.php?id=...

EUVD-2015-0443

Malware in sbrugna...

EUVD-2018-13190

Malware in sbrugna...

EUVD-2007-3288

Malware in sbrugna...

EUVD-2017-10274

Malware in sbrugna...

EUVD-2018-1983

Malware in sbrugna...

EUVD-2008-2897

Malware in sbrugna...

EUVD-2020-7251

Malware in sbrugna...

EUVD-2022-46071

Malicious code in bioql PyPI...

EUVD-2023-31152

Malicious code in bioql PyPI...

Linux Distros Unpatched Vulnerability : CVE-2015-2639

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Unspecified vulnerability in Oracle MySQL Server 5.6.24 and earlier allows remote authenticated users to affect integrity via unknown vectors related to Server ...

CVE-2025-53892 Intlify Vue I18n's escapeParameterHtml does not prevent DOM-based XSS via tag attributes like onerror

Vue I18n is the internationalization plugin for Vue.js. The escapeParameterHtml: true option in Vue I18n is designed to protect against HTML/script injection by escaping interpolated parameters. However, starting in version 9.0.0 and prior to versions 9.14.5, 10.0.8, and 11.1.0, this setting fail...

CVE-2025-38213

Rejected reason: This CVE ID has been rejected or withdrawn by its CVE Numbering Authority...

CVE-2025-38126

CVE-2025-38126 affects the Linux kernel’s stmmac driver in timestamp configuration. The root cause is that clk_ptp_rate can become 0 (if clk_get_rate returns 0 and the driver does not override it), leading to a division by zero during PTP initialization. The issue is fixed by adding an explicit c...

CVE-2025-5304

creationtimestamp| type| source ---|---|--- 2025-06-28 05:51:14+00:00| seen| https://t.me/DarkWebInformerCVEAlerts/19805 2025-06-28 07:29:39+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3lsnn2xopw72i 2025-09-27 09:00:04+00:00| published-proof-of-concept|...

CVE-2025-44952

A missing length check in ogspfcpsubnetadd function from PFCP library, used by both smf and upf in open5gs 2.7.2 and earlier, allows a local attacker to cause a Buffer Overflow by changing the session.dnn field with a value with length greater than 101...

Adobe Substance3D Sampler Out-of-Bounds Write Vulnerability (CNVD-2025-13323)

Adobe Substance 3D Sampler is a professional software from Adobe designed to help users easily create and iterate on realistic material maps. Adobe Substance3D Sampler suffers from an out-of-bounds write vulnerability that can be exploited by attackers to execute code on the system or cause the...