CVE-2026-22078

creationtimestamp| type| source ---|---|--- 2026-06-29 09:00:28+00:00| seen| https://infosec.exchange/users/offseq/statuses/116832575628329249 2026-06-29 09:00:29+00:00| seen| https://bsky.app/profile/offseq.bsky.social/post/3mpg4sdsfah27 2026-06-29 11:36:08+00:00| seen|...

CVE-2026-13515

creationtimestamp| type| source ---|---|--- 2026-06-29 00:00:45+00:00| seen| https://bsky.app/profile/offseq.bsky.social/post/3mpf6mzfwn52e 2026-06-29 00:27:13+00:00| seen| https://bsky.app/profile/malwareobserver.bsky.social/post/3mpfa4kbvgq2c 2026-06-29 02:23:35+00:00| seen|...

CVE-2026-12415

creationtimestamp| type| source ---|---|--- 2026-06-27 06:00:26+00:00| seen| https://bsky.app/profile/offseq.bsky.social/post/3mparsjsyrw2u 2026-06-27 06:18:24+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mpassotsjd2s 2026-06-27 06:25:12+00:00| seen|...

EUVD-2026-38054

PhpWeasyPrint vulnerable to SSRF and local file disclosure via the attachment option...

CERTFR-2026-ACT-027

creationtimestamp| type| source ---|---|--- 2026-06-22 13:28:44+00:00| seen| https://bsky.app/profile/cert-fr.bsky.social/post/3mouyjlshrm2z 2026-06-22 13:29:08+00:00| seen| https://social.numerique.gouv.fr/users/certfr/statuses/116793994374387639 2026-06-22 13:36:55+00:00| seen|...

CVE-2026-53853

creationtimestamp| type| source ---|---|--- 2026-06-16 21:01:39+00:00| seen| https://bsky.app/profile/thehackerwire.bsky.social/post/3mogozvim4327 2026-06-16 21:21:53+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mogq63qo3o2j 2026-06-19 08:11:42+00:00| seen|...

CVE-2026-12217

creationtimestamp| type| source ---|---|--- 2026-06-15 04:30:26+00:00| seen| https://infosec.exchange/users/offseq/statuses/116752241414863988 2026-06-15 04:30:27+00:00| seen| https://bsky.app/profile/offseq.bsky.social/post/3moch6lbnsc2i 2026-06-15 05:00:05+00:00| seen|...

CERTFR-2026-ACT-025

creationtimestamp| type| source ---|---|--- 2026-06-08 13:27:10+00:00| seen| https://bsky.app/profile/cert-fr.bsky.social/post/3mnrrvuu4na2y 2026-06-08 13:27:12+00:00| seen| https://social.numerique.gouv.fr/users/certfr/statuses/116714715813037267 2026-06-08 14:11:50+00:00| seen|...

CVE-2026-8833

CVE-2026-8833 affects Checkmk versions <2.5.0p5, <2.4.0p31,

CVE-2026-21826

creationtimestamp| type| source ---|---|--- 2026-06-05 08:59:53+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mnjrl6q2s42m 2026-06-05 08:59:53+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mnjrl6q2s42m...

CVE-2026-10586

creationtimestamp| type| source ---|---|--- 2026-06-05 01:30:28+00:00| seen| https://bsky.app/profile/offseq.bsky.social/post/3mniyhk3bqm2d 2026-06-05 01:30:40+00:00| seen| https://infosec.exchange/users/offseq/statuses/116694910594929909 2026-06-05 06:00:15+00:00| seen|...

CVE-2026-49185

creationtimestamp| type| source ---|---|--- 2026-06-04 04:30:27+00:00| seen| https://infosec.exchange/users/offseq/statuses/116689956169057665 2026-06-04 04:30:29+00:00| seen| https://bsky.app/profile/offseq.bsky.social/post/3mngs2jmfpk2q 2026-06-04 06:54:06+00:00| seen|...

EUVD-2026-33547

An improper neutralization of user-controllable input in OTRS or OTRS Community Edition ticket handling allows authenticated attackers to perform reflected cross-site scripting XSS attacks via crafted request parameters associated with ticket actions. By injecting malicious JavaScript into...

CVE-2026-45697

creationtimestamp| type| source ---|---|--- 2026-05-29 21:00:47+00:00| seen| https://bsky.app/profile/thehackerwire.bsky.social/post/3mmzglquzru2m 2026-05-29 21:42:45+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mmziwu3w562q...

CVE-2026-46840

creationtimestamp| type| source ---|---|--- 2026-05-28 23:39:32+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mmx6yr7bd32w 2026-05-29 00:00:48+00:00| seen| https://bsky.app/profile/thehackerwire.bsky.social/post/3mmxa6qsrho27 2026-05-29 13:14:12+00:00| seen|...

CVE-2026-10044

creationtimestamp| type| source ---|---|--- 2026-05-28 23:02:27+00:00| seen| https://bsky.app/profile/thehackerwire.bsky.social/post/3mmx4vh355u2v 2026-05-29 00:18:50+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mmxb6pkfqp2k...

Symfony's HtmlSanitizer URL Attributes Pass Through BiDi Override Characters → Visual href Spoofing

Description Symfony\Component\HtmlSanitizer\TextSanitizer\UrlSanitizer::parse used by UrlSanitizer::sanitize and therefore by every HtmlSanitizer config that allows links or media accepts URLs that contain Unicode explicit-direction BiDi formatting characters: U+202A–U+202E LRE / RLE / PDF / LRO ...

CVE-2026-42834

creationtimestamp| type| source ---|---|--- 2026-05-20 13:46:12+00:00| seen| https://infosec.exchange/users/vuldb/statuses/116607206794194616 2026-05-20 14:10:14+00:00| seen| https://bsky.app/profile/o2cloud.bsky.social/post/3mmc3hfcycd2m 2026-05-20 14:57:01+00:00| seen|...

CVE-2026-47212

creationtimestamp| type| source ---|---|--- 2026-05-20 11:02:20+00:00| seen| https://bsky.app/profile/symfony.com/post/3mmbqxgdjg72y 2026-05-20 14:15:14+00:00| seen| https://bsky.app/profile/o2cloud.bsky.social/post/3mmc3qc4eg22q...

CVE-2026-39079

creationtimestamp| type| source ---|---|--- 2026-05-18 17:00:41+00:00| seen| https://bsky.app/profile/thehackerwire.bsky.social/post/3mm5e2dmzu32l 2026-05-18 17:06:45+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mm5ef6vruh2n 2026-05-18 17:37:07+00:00| seen|...