FediSecfeeds

CVE	CVSS	EPSS	Posts	Repos	Nuclei	Updated	Description
CVE-2026-4540	7.3	0.03%	2	0		2026-03-22T13:16:20.653000	A vulnerability was detected in projectworlds Online Notes Sharing System 1.0. T
CVE-2026-4543	6.3	0.18%	2	0		2026-03-22T10:16:07.200000	A vulnerability was found in Wavlink WL-WN578W2 221110. The impacted element is
CVE-2026-4535	8.8	0.05%	2	0		2026-03-22T05:16:19.640000	A vulnerability has been found in Tenda FH451 1.0.0.9. This vulnerability affect
CVE-2026-4534	8.8	0.05%	3	0		2026-03-22T05:16:19.273000	A flaw has been found in Tenda FH451 1.0.0.9. This affects the function formWrlE
CVE-2026-4533	6.3	0.03%	2	0		2026-03-22T03:16:01.587000	A vulnerability was detected in code-projects Simple Food Ordering System 1.0. A
CVE-2026-3629	8.1	0.04%	4	0		2026-03-22T00:30:33	The Import and export users and customers plugin for WordPress is vulnerable to
CVE-2026-4529	8.8	0.04%	4	0		2026-03-22T00:30:33	A vulnerability was identified in D-Link DHP-1320 1.00WWB04. This affects the fu
CVE-2026-4373	7.5	0.10%	3	0		2026-03-21T09:31:30	The JetFormBuilder plugin for WordPress is vulnerable to arbitrary file read via
CVE-2026-2468	7.5	0.07%	2	1		2026-03-21T06:30:38	The Quentn WP plugin for WordPress is vulnerable to SQL Injection via the 'qntn_
CVE-2026-3478	7.2	0.07%	1	0		2026-03-21T06:30:38	The Content Syndication Toolkit plugin for WordPress is vulnerable to Server-Sid
CVE-2026-3334	8.8	0.03%	2	0		2026-03-21T06:30:36	The CMS Commander plugin for WordPress is vulnerable to SQL Injection via the 'o
CVE-2026-1313	8.3	0.04%	4	0		2026-03-21T06:30:33	The MimeTypes Link Icons plugin for WordPress is vulnerable to Server-Side Reque
CVE-2026-2941	8.8	0.04%	2	0		2026-03-21T06:30:25	The Linksy Search and Replace plugin for WordPress is vulnerable to unauthorized
CVE-2026-4261	8.8	0.04%	3	0		2026-03-21T04:17:44.223000	The Expire Users plugin for WordPress is vulnerable to Privilege Escalation in a
CVE-2026-1800	7.5	0.07%	2	0		2026-03-21T04:16:54.520000	The Fonts Manager \| Custom Fonts plugin for WordPress is vulnerable to time-base
CVE-2026-1648	7.2	0.04%	1	0		2026-03-21T04:16:54.310000	The Performance Monitor plugin for WordPress is vulnerable to Server-Side Reques
CVE-2025-14037	8.1	0.04%	2	0		2026-03-21T04:16:51.263000	The Invelity Product Feeds plugin for WordPress is vulnerable to arbitrary file
CVE-2026-32056	7.5	0.15%	2	0		2026-03-21T03:32:18	OpenClaw versions prior to 2026.2.22 fail to sanitize shell startup environment
CVE-2026-32064	7.7	0.04%	2	0		2026-03-21T03:31:15	OpenClaw versions prior to 2026.2.21 sandbox browser entrypoint launches x11vnc
CVE-2026-32049	7.5	0.10%	2	0		2026-03-21T03:31:14	OpenClaw versions prior to 2026.2.22 fail to consistently enforce configured inb
CVE-2026-32048	7.5	0.04%	2	0		2026-03-21T03:31:14	OpenClaw versions prior to 2026.3.1 fail to enforce sandbox inheritance during c
CVE-2026-32055	7.6	0.06%	2	0		2026-03-21T01:17:08.903000	OpenClaw versions prior to 2026.2.26 contain a path traversal vulnerability in w
CVE-2026-32051	8.8	0.06%	2	0		2026-03-21T01:17:08.087000	OpenClaw versions prior to 2026.3.1 contain an authorization mismatch vulnerabil
CVE-2026-32042	8.8	0.10%	2	0		2026-03-21T01:17:06.547000	OpenClaw versions 2026.2.22 prior to 2026.2.25 contain a privilege escalation vu
CVE-2026-25192	9.4	0.13%	4	0		2026-03-21T00:32:47	WebSocket endpoints lack proper authentication mechanisms, enabling attackers to
CVE-2026-29796	9.4	0.10%	4	0		2026-03-21T00:31:52	WebSocket endpoints lack proper authentication mechanisms, enabling attackers to
CVE-2026-32666	7.5	0.04%	2	0		2026-03-21T00:31:52	WebCTRL systems that communicate over BACnet inherit the protocol's lack of net
CVE-2026-23536	7.5	0.07%	1	0		2026-03-21T00:31:45	A security issue was discovered in the Feast Feature Server's `/read-document` e
CVE-2026-33010	8.1	0.03%	1	0		2026-03-21T00:16:26.410000	mcp-memory-service is an open-source memory backend for multi-agent systems. Pri
CVE-2026-25086	7.7	0.01%	2	0		2026-03-21T00:16:25.683000	Under certain conditions, an attacker could bind to the same port used by WebCT
CVE-2026-24060	9.1	0.02%	4	0		2026-03-21T00:16:25.483000	Service information is not encrypted when transmitted as BACnet packets over th
CVE-2026-33226	8.7	0.01%	2	0		2026-03-20T23:16:46.333000	Budibase is a low code platform for creating internal tools, workflows, and admi
CVE-2026-33186	9.1	0.01%	2	0		2026-03-20T23:16:45.180000	gRPC-Go is the Go language implementation of gRPC. Versions prior to 1.79.3 have
CVE-2026-31904	7.5	0.08%	2	0		2026-03-20T23:16:44.060000	The WebSocket Application Programming Interface lacks restrictions on the number
CVE-2026-31903	7.5	0.07%	2	0		2026-03-20T23:16:43.813000	The WebSocket Application Programming Interface lacks restrictions on the number
CVE-2026-3584	9.8	0.22%	2	0		2026-03-20T22:16:29.267000	The Kali Forms plugin for WordPress is vulnerable to Remote Code Execution in al
CVE-2026-32013	8.8	0.08%	1	0		2026-03-20T21:36:50	## Impact The gateway `agents.files.get` and `agents.files.set` methods allowed
CVE-2026-32749	7.6	0.04%	1	0		2026-03-20T21:35:45	### Summary POST /api/import/importSY and POST /api/import/importZipMd write upl
CVE-2025-54068	9.8	48.85%	3	5	template	2026-03-20T21:28:57	### Impact In Livewire v3 (≤ 3.6.3), a vulnerability allows unauthenticated atta
CVE-2025-32432	10.0	89.44%	3	4	template	2026-03-20T21:28:38	### Impact This is an additional fix for https://github.com/craftcms/cms/securi
CVE-2026-33068	None	0.14%	2	0		2026-03-20T21:24:22	Claude Code resolved the permission mode from settings files, including the repo
CVE-2026-33057	9.8	0.12%	1	0		2026-03-20T21:23:52	#### Summary An explicit web endpoint inside the `ai/` testing module infrastruc
CVE-2026-33054	10.0	0.02%	1	0		2026-03-20T21:23:23	#### Summary A Path Traversal vulnerability allows any user (or attacker) supply
CVE-2026-33043	8.1	0.03%	2	0		2026-03-20T21:23:01	### Summary `/objects/phpsessionid.json.php` exposes the current PHP session ID
CVE-2026-33039	8.6	0.01%	1	0		2026-03-20T21:22:41	## Summary The `plugin/LiveLinks/proxy.php` endpoint validates user-supplied URL
CVE-2026-33038	8.1	0.04%	1	0		2026-03-20T21:22:32	## Summary The `install/checkConfiguration.php` endpoint performs full applicati
CVE-2026-33012	7.5	0.10%	1	0		2026-03-20T21:21:56	`DefaultHtmlErrorResponseBodyProvider` in `io.micronaut:micronaut-http-server` s
CVE-2026-32940	9.3	0.05%	1	0		2026-03-20T21:21:11	# SanitizeSVG bypass via data:text/xml in getDynamicIcon (incomplete fix for CVE
CVE-2026-32938	9.9	0.09%	1	0		2026-03-20T21:21:06	### Summary In SiYuan, `/api/lute/html2BlockDOM` on the desktop copies local fi
CVE-2026-32767	9.8	0.02%	1	0		2026-03-20T21:18:23	## Summary SiYuan Note v3.6.0 (and likely prior versions) contains an authoriza
CVE-2026-33154	7.5	0.04%	1	0		2026-03-20T21:17:15.740000	dynaconf is a configuration management tool for Python. Prior to version 3.2.13,
CVE-2026-33142	8.1	0.03%	1	0		2026-03-20T21:17:14.770000	OneUptime is a solution for monitoring and managing online services. Prior to ve
CVE-2026-32025	7.5	0.05%	1	0		2026-03-20T21:13:30	This issue is a browser-origin WebSocket auth chain on local loopback deployment
CVE-2026-32014	8.0	0.02%	1	0		2026-03-20T21:12:25	## Summary A paired node device could reconnect with spoofed `platform`/`device
CVE-2026-22172	10.0	0.01%	1	0		2026-03-20T21:04:19	### Summary A logic flaw in the OpenClaw gateway WebSocket connect path allowed
CVE-2026-33476	7.5	0.89%	2	0		2026-03-20T20:43:22	## Summary The Siyuan kernel exposes an unauthenticated file-serving endpoint
CVE-2026-22731	8.2	0.04%	1	0		2026-03-20T20:41:31	Spring Boot applications with Actuator can be vulnerable to an "Authentication B
CVE-2026-33128	7.5	0.02%	1	0		2026-03-20T20:00:21.330000	H3 is a minimal H(TTP) framework. In versions prior to 1.15.6 and between 2.0.0
CVE-2026-33134	9.3	0.03%	5	0		2026-03-20T19:26:28.717000	WeGIA is a web manager for charitable institutions. Versions 3.6.5 and below con
CVE-2026-33135	9.3	0.03%	2	0		2026-03-20T19:25:45.043000	WeGIA is a web manager for charitable institutions. Versions 3.6.6 and below hav
CVE-2026-32318	7.6	0.01%	1	0		2026-03-20T19:16:16.277000	Cryptomator for IOS offers multi-platform transparent client-side encryption for
CVE-2025-31277	8.8	0.39%	3	0		2026-03-20T18:53:35.083000	The issue was addressed with improved memory handling. This issue is fixed in Sa
CVE-2026-4452	8.8	0.07%	2	0		2026-03-20T18:32:23	Integer overflow in ANGLE in Google Chrome on Windows prior to 146.0.7680.153 al
CVE-2025-43520	5.5	0.41%	3	0		2026-03-20T18:32:19	A memory corruption issue was addressed with improved memory handling. This issu
CVE-2026-4491	8.8	0.05%	1	0		2026-03-20T18:31:30	A vulnerability has been found in Tenda A18 Pro 02.03.02.28. Impacted is the fun
CVE-2026-4493	8.8	0.05%	1	0		2026-03-20T18:31:30	A vulnerability was determined in Tenda A18 Pro 02.03.02.28. The impacted elemen
CVE-2026-32989	8.8	0.05%	1	0		2026-03-20T18:31:27	Precurio Intranet Portal 4.4 contains a cross-site request forgery vulnerability
CVE-2026-4489	8.8	0.05%	1	0		2026-03-20T18:31:27	A vulnerability was detected in Tenda A18 Pro 02.03.02.28. This vulnerability af
CVE-2026-4464	8.8	0.07%	2	0		2026-03-20T18:31:18	Integer overflow in ANGLE in Google Chrome prior to 146.0.7680.153 allowed a rem
CVE-2025-43510	7.8	0.40%	3	0		2026-03-20T18:31:15	A memory corruption issue was addressed with improved lock state checking. This
CVE-2026-4492	8.8	0.05%	1	0		2026-03-20T18:16:17.383000	A vulnerability was found in Tenda A18 Pro 02.03.02.28. The affected element is
CVE-2026-4458	8.8	0.03%	2	0		2026-03-20T17:58:37.903000	Use after free in Extensions in Google Chrome prior to 146.0.7680.153 allowed an
CVE-2026-4460	8.8	0.07%	2	0		2026-03-20T17:57:46.137000	Out of bounds read in Skia in Google Chrome prior to 146.0.7680.153 allowed a re
CVE-2026-4490	8.8	0.05%	1	0		2026-03-20T17:17:00.030000	A flaw has been found in Tenda A18 Pro 02.03.02.28. This issue affects the funct
CVE-2026-4488	8.8	0.04%	1	0		2026-03-20T16:16:19.093000	A vulnerability was identified in UTT HiPER 1250GW up to 3.2.7-210907-180535. Af
CVE-2026-32701	7.5	0.02%	1	0		2026-03-20T15:56:45	Summary Qwik City improperly inferred arrays from dotted form field names d
CVE-2026-4463	8.8	0.06%	2	0		2026-03-20T15:32:14	Heap buffer overflow in WebRTC in Google Chrome prior to 146.0.7680.153 allowed
CVE-2026-4462	8.8	0.07%	2	0		2026-03-20T15:32:14	Out of bounds read in Blink in Google Chrome prior to 146.0.7680.153 allowed a r
CVE-2026-21992	9.8	0.03%	9	1		2026-03-20T15:32:14	Vulnerability in the Oracle Identity Manager product of Oracle Fusion Middleware
CVE-2026-4447	8.8	0.09%	2	0		2026-03-20T15:32:13	Inappropriate implementation in V8 in Google Chrome prior to 146.0.7680.153 allo
CVE-2026-4446	8.8	0.09%	2	0		2026-03-20T15:32:13	Use after free in WebRTC in Google Chrome prior to 146.0.7680.153 allowed a remo
CVE-2026-4445	8.8	0.09%	2	0		2026-03-20T15:32:13	Use after free in WebRTC in Google Chrome prior to 146.0.7680.153 allowed a remo
CVE-2026-4444	8.8	0.06%	2	0		2026-03-20T15:32:13	Stack buffer overflow in WebRTC in Google Chrome prior to 146.0.7680.153 allowed
CVE-2026-4456	8.8	0.10%	2	0		2026-03-20T15:32:13	Use after free in Digital Credentials API in Google Chrome prior to 146.0.7680.1
CVE-2026-4455	8.8	0.07%	2	0		2026-03-20T15:32:13	Heap buffer overflow in PDFium in Google Chrome prior to 146.0.7680.153 allowed
CVE-2026-4451	8.8	0.10%	2	0		2026-03-20T15:32:13	Insufficient validation of untrusted input in Navigation in Google Chrome prior
CVE-2026-4486	8.8	0.08%	1	0		2026-03-20T15:31:20	A vulnerability was found in D-Link DIR-513 1.10. This affects the function form
CVE-2026-4457	8.8	0.07%	2	0		2026-03-20T15:31:12	Type Confusion in V8 in Google Chrome prior to 146.0.7680.153 allowed a remote a
CVE-2026-4454	8.8	0.10%	2	0		2026-03-20T15:31:12	Use after free in Network in Google Chrome prior to 146.0.7680.153 allowed a rem
CVE-2026-4461	8.8	0.07%	2	0		2026-03-20T15:31:12	Inappropriate implementation in V8 in Google Chrome prior to 146.0.7680.153 allo
CVE-2026-4459	8.8	0.07%	2	0		2026-03-20T15:31:12	Out of bounds read and write in WebAudio in Google Chrome prior to 146.0.7680.15
CVE-2026-4487	8.8	0.04%	1	0		2026-03-20T15:16:23.850000	A vulnerability was determined in UTT HiPER 1200GW up to 2.5.3-170306. This impa
CVE-2026-32891	9.0	0.03%	1	0		2026-03-20T15:16:17.593000	Anchorr is a Discord bot for requesting movies and TV shows and receiving notifi
CVE-2026-22732	9.1	0.01%	2	0		2026-03-20T15:16:15.670000	When applications specify HTTP response headers for servlet applications using S
CVE-2026-32011	7.5	0.04%	1	0		2026-03-20T13:39:46.493000	OpenClaw versions prior to 2026.3.2 contain a denial of service vulnerability in
CVE-2026-26139	8.6	0.08%	1	0		2026-03-20T13:39:46.493000	Server-side request forgery (ssrf) in Microsoft Purview allows an unauthorized a
CVE-2026-30836	10.0	0.01%	1	0		2026-03-20T13:39:46.493000	Step CA is an online certificate authority for secure, automated certificate man
CVE-2026-32169	10.0	0.09%	1	0		2026-03-20T13:39:46.493000	Server-side request forgery (ssrf) in Azure Cloud Shell allows an unauthorized a
CVE-2026-33056	0	0.02%	2	0		2026-03-20T13:37:50.737000	tar-rs is a tar archive reading/writing library for Rust. In versions 0.4.44 and
CVE-2026-32933	7.5	0.04%	2	0		2026-03-20T13:37:50.737000	AutoMapper is a convention-based object-object mapper in .NET. Versions prior to
CVE-2026-33037	8.1	0.23%	2	0		2026-03-20T13:37:50.737000	WWBN AVideo is an open source video platform. In versions 25.0 and below, the of
CVE-2026-4038	9.8	0.06%	2	0		2026-03-20T13:37:50.737000	The Aimogen Pro plugin for WordPress is vulnerable to Arbitrary Function Call th
CVE-2026-33036	7.5	0.04%	1	0		2026-03-20T13:37:50.737000	fast-xml-parser allows users to process XML from JS object without C/C++ based l
CVE-2026-4478	8.1	0.01%	2	0		2026-03-20T13:37:50.737000	A vulnerability was identified in Yi Technology YI Home Camera 2 2.1.1_201710241
CVE-2026-27625	8.1	0.06%	1	0		2026-03-20T13:37:50.737000	Stirling-PDF is a locally hosted web application that performs various operation
CVE-2026-32721	8.6	0.01%	1	0		2026-03-20T13:37:50.737000	LuCI is the OpenWrt Configuration Interface. Versions prior to both 24.10.5 and
CVE-2026-4342	8.8	0.03%	2	1		2026-03-20T13:37:50.737000	A security issue was discovered in ingress-nginx where a combination of Ingress
CVE-2026-22324	8.1	0.11%	1	0		2026-03-20T12:31:12	Improper Control of Filename for Include/Require Statement in PHP Program ('PHP
CVE-2026-4475	8.8	0.02%	3	0		2026-03-20T09:32:16	A vulnerability has been found in Yi Technology YI Home Camera 2 2.1.1_201710241
CVE-2026-32985	9.8	0.64%	2	0		2026-03-20T00:31:34	Xerte Online Toolkits versions 3.14 and earlier contain an unauthenticated arbit
CVE-2026-32194	9.8	0.10%	2	1		2026-03-20T00:31:34	Improper neutralization of special elements used in a command ('command injectio
CVE-2026-33001	8.8	0.11%	1	0		2026-03-19T23:22:21	Jenkins 2.554 and earlier, LTS 2.541.2 and earlier does not safely handle symbol
CVE-2026-32038	None	0.04%	1	0		2026-03-19T22:29:35	### Summary In `openclaw@2026.2.23`, sandbox network hardening blocks `network=h
CVE-2026-23658	8.6	0.08%	1	0		2026-03-19T21:30:31	Insufficiently protected credentials in Azure DevOps allows an unauthorized atta
CVE-2026-23659	8.6	0.11%	1	0		2026-03-19T21:30:31	Exposure of sensitive information to an unauthorized actor in Azure Data Factory
CVE-2026-26138	8.6	0.08%	1	0		2026-03-19T21:30:31	Server-side request forgery (ssrf) in Microsoft Purview allows an unauthorized a
CVE-2026-26137	8.9	0.07%	1	0		2026-03-19T21:30:31	Server-side request forgery (ssrf) in Microsoft 365 Copilot's Business Chat allo
CVE-2026-32191	9.8	0.10%	1	0		2026-03-19T21:30:31	Improper neutralization of special elements used in an os command ('os command i
CVE-2026-3547	7.5	0.04%	1	0		2026-03-19T21:30:31	Out-of-bounds read in ALPN parsing due to incomplete validation. wolfSSL 5.8.4 a
CVE-2026-31973	7.5	0.01%	1	0		2026-03-19T18:48:10.830000	SAMtools is a program for reading, manipulating and writing bioinformatics file
CVE-2026-28500	8.6	0.01%	2	0		2026-03-19T18:36:41	### Summary A security control bypass exists in onnx.hub.load() due to improper
CVE-2026-20131	10.0	0.88%	7	3		2026-03-19T18:32:21	A vulnerability in the web-based management interface of Cisco Secure Firewall M
CVE-2026-24291	7.8	0.06%	2	2		2026-03-19T18:31:15	Incorrect permission assignment for critical resource in Windows Accessibility I
CVE-2026-31962	8.8	0.05%	1	0		2026-03-19T17:30:45.370000	HTSlib is a library for reading and writing bioinformatics file formats. CRAM is
CVE-2025-58112	8.8	0.07%	2	0		2026-03-19T15:32:24	Microsoft Dynamics 365 Customer Engagement (on-premises) 1612 (9.0.2.3034) allow
CVE-2026-29856	7.5	0.04%	2	0		2026-03-19T15:32:23	An issue in the VirtualHost configuration handling/parser component of aaPanel v
CVE-2026-29859	9.8	0.07%	1	0		2026-03-19T15:32:23	An arbitrary file upload vulnerability in aaPanel v7.57.0 allows attackers to ex
CVE-2026-29858	7.5	0.03%	1	0		2026-03-19T15:32:23	A lack of path validation in aaPanel v7.57.0 allows attackers to execute a local
CVE-2026-22557	10.0	0.03%	3	0		2026-03-19T15:31:22	A malicious actor with access to the network could exploit a Path Traversal vuln
CVE-2026-30704	9.1	0.04%	2	0		2026-03-19T15:16:26.580000	The WiFi Extender WDR201A (HW V2.1, FW LFMZX28040922V1.02) exposes an unprotecte
CVE-2026-31964	7.5	0.04%	1	0		2026-03-19T14:50:24.563000	HTSlib is a library for reading and writing bioinformatics file formats. CRAM is
CVE-2026-31967	9.1	0.02%	1	0		2026-03-19T14:36:34.813000	HTSlib is a library for reading and writing bioinformatics file formats. CRAM is
CVE-2026-32746	9.8	0.03%	2	4		2026-03-19T14:16:15.103000	telnetd in GNU inetutils through 2.7 allows an out-of-bounds write in the LINEMO
CVE-2026-31970	8.1	0.04%	1	0		2026-03-19T13:59:29.387000	HTSlib is a library for reading and writing bioinformatics file formats. GZI fil
CVE-2026-20963	8.8	9.14%	3	0		2026-03-19T13:09:24.293000	Deserialization of untrusted data in Microsoft Office SharePoint allows an autho
CVE-2026-33236	8.1	0.04%	2	0		2026-03-19T12:42:43	## Vulnerability Description The NLTK downloader does not validate the `subdir`
CVE-2026-33231	7.5	0.04%	2	0		2026-03-19T12:42:23	### Summary `nltk.app.wordnet_app` allows unauthenticated remote shutdown of the
CVE-2026-33204	7.5	0.04%	2	0		2026-03-18T20:16:59	## Summary An unauthenticated attacker can perform a Denial of Service via JWE
CVE-2026-33203	7.5	0.10%	2	0		2026-03-18T20:11:01	## Summary The SiYuan kernel WebSocket server accepts unauthenticated connection
CVE-2026-33180	9.8	0.03%	2	0		2026-03-18T20:07:50	### Impact When setting headers in HTTP requests, the internal HTTP client sends
CVE-2026-33172	8.7	0.01%	2	0		2026-03-18T19:54:32	### Impact Stored XSS vulnerability in SVG asset reuploads allows authenticated
CVE-2026-33166	8.6	0.01%	2	0		2026-03-18T19:53:59	### Summary The Allure report generator is vulnerable to an arbitrary file read
CVE-2026-33053	None	0.02%	2	0		2026-03-18T12:58:35	Detection Method: Kolega.dev Deep Code Scan \| Attribute \| Value \| \|---\|---\|
CVE-2026-3888	7.8	0.01%	3	3		2026-03-18T04:17:30.720000	Local privilege escalation in snapd on Linux allows local attackers to get root
CVE-2026-32306	9.9	0.40%	1	0		2026-03-17T20:08:56.733000	OneUptime is a solution for monitoring and managing online services. Prior to 10
CVE-2026-33017	None	0.46%	6	3		2026-03-17T20:05:06	## Summary The `POST /api/v1/build_public_tmp/{flow_id}/flow` endpoint allows b
CVE-2026-3564	9.1	0.06%	1	0		2026-03-17T15:36:34	A condition in ScreenConnect may allow an actor with access to server-level cryp
CVE-2026-31979	8.8	0.02%	2	0		2026-03-16T18:18:34.750000	Himmelblau is an interoperability suite for Microsoft Azure Entra ID and Intune.
CVE-2026-25896	9.3	0.01%	1	0		2026-02-27T16:51:59	# Entity encoding bypass via regex injection in DOCTYPE entity names ## Summary
CVE-2025-32711	9.3	3.89%	1	1		2026-02-20T18:31:25	Ai command injection in M365 Copilot allows an unauthorized attacker to disclose
CVE-2026-1581	7.5	11.33%	2	1	template	2026-02-19T18:32:09	The wpForo Forum plugin for WordPress is vulnerable to time-based SQL Injection
CVE-2026-20817	7.8	0.02%	2	1		2026-01-14T20:31:32.760000	Improper handling of insufficient permissions or privileges in Windows Error Rep
CVE-2025-32975	10.0	0.13%	3	0		2025-11-03T21:35:11	Quest KACE Systems Management Appliance (SMA) 13.0.x before 13.0.385, 13.1.x bef
CVE-2025-20720	8.8	0.03%	2	0		2025-10-15T18:45:23.107000	In wlan AP driver, there is a possible out of bounds write due to an incorrect b
CVE-2026-32888	0	0.03%	2	0			N/A
CVE-2026-33243	0	0.01%	2	0			N/A
CVE-2023-4567	0	0.00%	1	0			N/A
CVE-2026-33250	0	0.00%	1	0			N/A
CVE-2026-32890	0	0.05%	1	0			N/A
CVE-2026-33072	0	0.01%	1	0			N/A
CVE-2026-33136	0	0.03%	1	0			N/A
CVE-2026-33150	0	0.01%	1	0			N/A
CVE-2026-33156	0	0.01%	1	0			N/A
CVE-2026-31836	0	0.03%	1	0			N/A
CVE-2026-32303	0	0.02%	1	0			N/A
CVE-2026-32710	0	0.26%	1	0			N/A
CVE-2026-32317	0	0.01%	1	0			N/A
CVE-2026-33307	0	0.00%	1	0			N/A
CVE-2026-33308	0	0.00%	1	0			N/A
CVE-2026-33075	0	0.03%	1	0			N/A
CVE-2026-33024	0	0.08%	1	0			N/A
CVE-2026-4428	0	0.02%	1	0			N/A
CVE-2026-29103	0	0.20%	1	0			N/A
CVE-2026-32754	0	0.07%	1	0			N/A
CVE-2026-31965	0	0.04%	1	0			N/A
CVE-2026-31963	0	0.04%	1	0			N/A
CVE-2026-31969	0	0.04%	1	0			N/A
CVE-2026-33346	0	0.04%	1	0			N/A
CVE-2026-31968	0	0.01%	1	0			N/A
CVE-2026-31966	0	0.01%	1	0			N/A
CVE-2026-31971	0	0.09%	1	0			N/A
CVE-2026-31972	0	0.01%	1	0			N/A

CVE-2026-4540
(7.3 HIGH)

EPSS: 0.03%

updated 2026-03-22T13:16:20.653000

2 posts

A vulnerability was detected in projectworlds Online Notes Sharing System 1.0. This issue affects some unknown processing of the file /login.php of the component Parameters Handler. The manipulation of the argument User results in sql injection. The attack can be executed remotely. The exploit is now public and may be used.

offseq at 2026-03-22T09:00:27.529Z ##

🛡️ CVE-2026-4540: MEDIUM-severity SQL Injection in projectworlds Online Notes Sharing System v1.0. Exploit code is public, no active attacks yet. Patch or mitigate — focus on the 'Benutzer' param in /login.php. More info: https://radar.offseq.com/threat/cve-2026-4540-sql-injection-in-projectworlds-onlin-4351ab2e #OffSeq #SQLInjection #Vuln

##

offseq@infosec.exchange at 2026-03-22T09:00:27.000Z ##

🛡️ CVE-2026-4540: MEDIUM-severity SQL Injection in projectworlds Online Notes Sharing System v1.0. Exploit code is public, no active attacks yet. Patch or mitigate — focus on the 'Benutzer' param in /login.php. More info: https://radar.offseq.com/threat/cve-2026-4540-sql-injection-in-projectworlds-onlin-4351ab2e #OffSeq #SQLInjection #Vuln

##

CVE-2026-4543
(6.3 MEDIUM)

EPSS: 0.18%

updated 2026-03-22T10:16:07.200000

2 posts

A vulnerability was found in Wavlink WL-WN578W2 221110. The impacted element is an unknown function of the file /cgi-bin/firewall.cgi of the component POST Request Handler. Performing a manipulation of the argument dmz_flag/del_flag results in command injection. It is possible to initiate the attack remotely. The exploit has been made public and could be used. The vendor was contacted early about

offseq at 2026-03-22T10:30:28.190Z ##

⚠️ CVE-2026-4543: Wavlink WL-WN578W2 (v221110) has a MEDIUM severity command injection flaw in /cgi-bin/firewall.cgi. No patch; public exploit exists. Isolate, restrict access, and monitor traffic urgently. https://radar.offseq.com/threat/cve-2026-4543-command-injection-in-wavlink-wl-wn57-50f96d33 #OffSeq #Infosec #Vulnerability #Router

##

offseq@infosec.exchange at 2026-03-22T10:30:28.000Z ##

⚠️ CVE-2026-4543: Wavlink WL-WN578W2 (v221110) has a MEDIUM severity command injection flaw in /cgi-bin/firewall.cgi. No patch; public exploit exists. Isolate, restrict access, and monitor traffic urgently. https://radar.offseq.com/threat/cve-2026-4543-command-injection-in-wavlink-wl-wn57-50f96d33 #OffSeq #Infosec #Vulnerability #Router

##

CVE-2026-4535
(8.8 HIGH)

EPSS: 0.05%

updated 2026-03-22T05:16:19.640000

2 posts

A vulnerability has been found in Tenda FH451 1.0.0.9. This vulnerability affects the function WrlclientSet of the file /goform/WrlclientSet. Such manipulation of the argument GO leads to stack-based buffer overflow. The attack can be launched remotely. The exploit has been disclosed to the public and may be used.

offseq at 2026-03-22T06:00:29.544Z ##

⚠️ HIGH severity: CVE-2026-4535 in Tenda FH451 (v1.0.0.9) — stack-based buffer overflow in /goform/WrlclientSet. Remote, unauthenticated code execution possible. Patch or mitigate now! https://radar.offseq.com/threat/cve-2026-4535-stack-based-buffer-overflow-in-tenda-8f2fc263 #OffSeq #vulnerability #IoT #bufferOverflow

##

offseq@infosec.exchange at 2026-03-22T06:00:29.000Z ##

⚠️ HIGH severity: CVE-2026-4535 in Tenda FH451 (v1.0.0.9) — stack-based buffer overflow in /goform/WrlclientSet. Remote, unauthenticated code execution possible. Patch or mitigate now! https://radar.offseq.com/threat/cve-2026-4535-stack-based-buffer-overflow-in-tenda-8f2fc263 #OffSeq #vulnerability #IoT #bufferOverflow

##

CVE-2026-4534
(8.8 HIGH)

EPSS: 0.05%

updated 2026-03-22T05:16:19.273000

3 posts

A flaw has been found in Tenda FH451 1.0.0.9. This affects the function formWrlExtraSet of the file /goform/WrlExtraSet. This manipulation of the argument GO causes stack-based buffer overflow. The attack can be initiated remotely. The exploit has been published and may be used.

Matchbook3469@mastodon.social at 2026-03-22T15:18:07.000Z ##

⚠️ New security advisory:

CVE-2026-4534 affects multiple systems.

• Impact: Significant security breach potential
• Risk: Unauthorized access or data exposure
• Mitigation: Apply patches within 24-48 hours

Full breakdown:
https://www.yazoul.net/advisory/cve/cve-2026-4534-tenda-fh451-buffer-overflow-update-firmware

#Cybersecurity #PatchNow #InfoSecCommunity

##

offseq at 2026-03-22T07:30:26.921Z ##

🔎 CVE-2026-4534 (HIGH, CVSS 8.7): Stack-based buffer overflow in Tenda FH451 (v1.0.0.9) lets remote attackers execute code. PoC exploit published. Patch/mitigate now — restrict access & monitor for attacks. Info: https://radar.offseq.com/threat/cve-2026-4534-stack-based-buffer-overflow-in-tenda-65a33e73 #OffSeq #Vulnerability #Tenda #InfoSec

##

offseq@infosec.exchange at 2026-03-22T07:30:26.000Z ##

🔎 CVE-2026-4534 (HIGH, CVSS 8.7): Stack-based buffer overflow in Tenda FH451 (v1.0.0.9) lets remote attackers execute code. PoC exploit published. Patch/mitigate now — restrict access & monitor for attacks. Info: https://radar.offseq.com/threat/cve-2026-4534-stack-based-buffer-overflow-in-tenda-65a33e73 #OffSeq #Vulnerability #Tenda #InfoSec

##

CVE-2026-4533
(6.3 MEDIUM)

EPSS: 0.03%

updated 2026-03-22T03:16:01.587000

2 posts

A vulnerability was detected in code-projects Simple Food Ordering System 1.0. Affected by this issue is some unknown functionality of the file all-tickets.php. The manipulation of the argument Status results in sql injection. It is possible to launch the attack remotely. The exploit is now public and may be used.

offseq at 2026-03-22T04:30:27.651Z ##

⚠️ MEDIUM: CVE-2026-4533 in code-projects Simple Food Ordering System v1.0 allows unauthenticated SQL injection via 'Status' in all-tickets.php. Public exploit code exists — patch or mitigate now! https://radar.offseq.com/threat/cve-2026-4533-sql-injection-in-code-projects-simpl-c9dcca98 #OffSeq #Infosec #SQLInjection #CVE2026_4533

##

offseq@infosec.exchange at 2026-03-22T04:30:27.000Z ##

⚠️ MEDIUM: CVE-2026-4533 in code-projects Simple Food Ordering System v1.0 allows unauthenticated SQL injection via 'Status' in all-tickets.php. Public exploit code exists — patch or mitigate now! https://radar.offseq.com/threat/cve-2026-4533-sql-injection-in-code-projects-simpl-c9dcca98 #OffSeq #Infosec #SQLInjection #CVE2026_4533

##

CVE-2026-3629
(8.1 HIGH)

EPSS: 0.04%

updated 2026-03-22T00:30:33

4 posts

The Import and export users and customers plugin for WordPress is vulnerable to privilege escalation in all versions up to, and including, 1.29.7. This is due to the 'save_extra_user_profile_fields' function not properly restricting which user meta keys can be updated via profile fields. The 'get_restricted_fields' method does not include sensitive meta keys such as 'wp_capabilities'. This makes i

offseq at 2026-03-22T03:00:27.555Z ##

⚠️ CVE-2026-3629: HIGH severity in carazo's 'Import and export users and customers' WP plugin (≤1.29.7). Privilege escalation to admin possible if 'Show fields in profile' is on and CSV with 'wp_capabilities' imported. Mitigate now! https://radar.offseq.com/threat/cve-2026-3629-cwe-269-improper-privilege-managemen-61196a39 #OffSeq #WordPress #Infosec

##

thehackerwire@mastodon.social at 2026-03-21T23:17:43.000Z ##

🟠 CVE-2026-3629 - High (8.1)

The Import and export users and customers plugin for WordPress is vulnerable to privilege escalation in all versions up to, and including, 1.29.7. This is due to the 'save_extra_user_profile_fields' function not properly restricting which user met...

🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-3629/

#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack

##

offseq@infosec.exchange at 2026-03-22T03:00:27.000Z ##

⚠️ CVE-2026-3629: HIGH severity in carazo's 'Import and export users and customers' WP plugin (≤1.29.7). Privilege escalation to admin possible if 'Show fields in profile' is on and CSV with 'wp_capabilities' imported. Mitigate now! https://radar.offseq.com/threat/cve-2026-3629-cwe-269-improper-privilege-managemen-61196a39 #OffSeq #WordPress #Infosec

##

thehackerwire@mastodon.social at 2026-03-21T23:17:43.000Z ##

🟠 CVE-2026-3629 - High (8.1)

The Import and export users and customers plugin for WordPress is vulnerable to privilege escalation in all versions up to, and including, 1.29.7. This is due to the 'save_extra_user_profile_fields' function not properly restricting which user met...

🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-3629/

#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack

##

CVE-2026-4529
(8.8 HIGH)

EPSS: 0.04%

updated 2026-03-22T00:30:33

4 posts

A vulnerability was identified in D-Link DHP-1320 1.00WWB04. This affects the function redirect_count_down_page of the component SOAP Handler. Such manipulation leads to stack-based buffer overflow. The attack can be executed remotely. The exploit is publicly available and might be used. This vulnerability only affects products that are no longer supported by the maintainer.

offseq at 2026-03-22T01:30:27.982Z ##

🚨 CVE-2026-4529: HIGH severity stack-based buffer overflow in D-Link DHP-1320 (1.00WWB04) via SOAP Handler. Public exploit out. Device is EOL, no patch — isolate or replace now! https://radar.offseq.com/threat/cve-2026-4529-stack-based-buffer-overflow-in-d-lin-7f100378 #OffSeq #Vulnerability #DLink #BufferOverflow #InfoSec

##

thehackerwire@mastodon.social at 2026-03-21T23:17:53.000Z ##

🟠 CVE-2026-4529 - High (8.8)

A vulnerability was identified in D-Link DHP-1320 1.00WWB04. This affects the function redirect_count_down_page of the component SOAP Handler. Such manipulation leads to stack-based buffer overflow. The attack can be executed remotely. The exploit...

🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-4529/

#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack

##

offseq@infosec.exchange at 2026-03-22T01:30:27.000Z ##

🚨 CVE-2026-4529: HIGH severity stack-based buffer overflow in D-Link DHP-1320 (1.00WWB04) via SOAP Handler. Public exploit out. Device is EOL, no patch — isolate or replace now! https://radar.offseq.com/threat/cve-2026-4529-stack-based-buffer-overflow-in-d-lin-7f100378 #OffSeq #Vulnerability #DLink #BufferOverflow #InfoSec

##

thehackerwire@mastodon.social at 2026-03-21T23:17:53.000Z ##

🟠 CVE-2026-4529 - High (8.8)

A vulnerability was identified in D-Link DHP-1320 1.00WWB04. This affects the function redirect_count_down_page of the component SOAP Handler. Such manipulation leads to stack-based buffer overflow. The attack can be executed remotely. The exploit...

🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-4529/

#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack

##

CVE-2026-4373
(7.5 HIGH)

EPSS: 0.10%

updated 2026-03-21T09:31:30

3 posts

The JetFormBuilder plugin for WordPress is vulnerable to arbitrary file read via path traversal in all versions up to, and including, 3.5.6.2. This is due to the 'Uploaded_File::set_from_array' method accepting user-supplied file paths from the Media Field preset JSON payload without validating that the path belongs to the WordPress uploads directory. Combined with an insufficient same-file check

thehackerwire@mastodon.social at 2026-03-21T20:00:35.000Z ##

🟠 CVE-2026-4373 - High (7.5)

The JetFormBuilder plugin for WordPress is vulnerable to arbitrary file read via path traversal in all versions up to, and including, 3.5.6.2. This is due to the 'Uploaded_File::set_from_array' method accepting user-supplied file paths from the Me...

🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-4373/

#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack

##

thehackerwire@mastodon.social at 2026-03-21T20:00:35.000Z ##

🟠 CVE-2026-4373 - High (7.5)

The JetFormBuilder plugin for WordPress is vulnerable to arbitrary file read via path traversal in all versions up to, and including, 3.5.6.2. This is due to the 'Uploaded_File::set_from_array' method accepting user-supplied file paths from the Me...

🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-4373/

#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack

##

offseq@infosec.exchange at 2026-03-21T07:30:25.000Z ##

🚨 JetFormBuilder for WordPress is HIGH risk (CVE-2026-4373): Absolute path traversal in all versions allows unauth attackers to exfiltrate files via crafted Media Field form. Review & secure deployments! https://radar.offseq.com/threat/cve-2026-4373-cwe-36-absolute-path-traversal-in-je-12b1586f #OffSeq #WordPress #infosec

##

CVE-2026-2468
(7.5 HIGH)

EPSS: 0.07%

updated 2026-03-21T06:30:38

2 posts

The Quentn WP plugin for WordPress is vulnerable to SQL Injection via the 'qntn_wp_access' cookie in all versions up to, and including, 1.2.12. This is due to insufficient escaping on the user supplied parameter and lack of sufficient preparation on the existing SQL query in the `get_user_access()` method. This makes it possible for unauthenticated attackers to append additional SQL queries into a

1 repos

https://github.com/JoakimBulow/CVE-2026-24688

thehackerwire@mastodon.social at 2026-03-21T20:18:23.000Z ##

🟠 CVE-2026-2468 - High (7.5)

The Quentn WP plugin for WordPress is vulnerable to SQL Injection via the 'qntn_wp_access' cookie in all versions up to, and including, 1.2.12. This is due to insufficient escaping on the user supplied parameter and lack of sufficient preparation ...

🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-2468/

#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack

##

thehackerwire@mastodon.social at 2026-03-21T20:18:23.000Z ##

🟠 CVE-2026-2468 - High (7.5)

The Quentn WP plugin for WordPress is vulnerable to SQL Injection via the 'qntn_wp_access' cookie in all versions up to, and including, 1.2.12. This is due to insufficient escaping on the user supplied parameter and lack of sufficient preparation ...

🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-2468/

#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack

##

CVE-2026-3478
(7.2 HIGH)

EPSS: 0.07%

updated 2026-03-21T06:30:38

1 posts

The Content Syndication Toolkit plugin for WordPress is vulnerable to Server-Side Request Forgery in all versions up to, and including, 1.3 via the redux_p AJAX action in the bundled ReduxFramework library. The plugin registers a proxy endpoint (wp_ajax_nopriv_redux_p) that is accessible to unauthenticated users. The proxy() method in the Redux_P class takes a URL directly from $_GET['url'] withou

offseq@infosec.exchange at 2026-03-21T04:30:27.000Z ##

🔎 CVE-2026-3478: HIGH severity SSRF in benmoody Content Syndication Toolkit (WordPress, all versions). Unauthenticated AJAX endpoint lets attackers proxy requests, risking internal data exposure. Disable plugin or block endpoint! https://radar.offseq.com/threat/cve-2026-3478-cwe-918-server-side-request-forgery--aeeaf0a3 #OffSeq #WordPress #SSRF

##

CVE-2026-3334
(8.8 HIGH)

EPSS: 0.03%

updated 2026-03-21T06:30:36

2 posts

The CMS Commander plugin for WordPress is vulnerable to SQL Injection via the 'or_blogname', 'or_blogdescription', and 'or_admin_email' parameters in all versions up to, and including, 2.288. This is due to insufficient escaping on the user supplied parameters and lack of sufficient preparation on the existing SQL queries in the restore workflow. This makes it possible for authenticated attackers,

thehackerwire@mastodon.social at 2026-03-21T20:00:56.000Z ##

🟠 CVE-2026-3334 - High (8.8)

The CMS Commander plugin for WordPress is vulnerable to SQL Injection via the 'or_blogname', 'or_blogdescription', and 'or_admin_email' parameters in all versions up to, and including, 2.288. This is due to insufficient escaping on the user suppli...

🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-3334/

#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack

##

thehackerwire@mastodon.social at 2026-03-21T20:00:56.000Z ##

🟠 CVE-2026-3334 - High (8.8)

The CMS Commander plugin for WordPress is vulnerable to SQL Injection via the 'or_blogname', 'or_blogdescription', and 'or_admin_email' parameters in all versions up to, and including, 2.288. This is due to insufficient escaping on the user suppli...

🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-3334/

#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack

##

CVE-2026-1313
(8.3 HIGH)

EPSS: 0.04%

updated 2026-03-21T06:30:33

4 posts

The MimeTypes Link Icons plugin for WordPress is vulnerable to Server-Side Request Forgery in all versions up to, and including, 3.2.20. This is due to the plugin making outbound HTTP requests to user-controlled URLs without proper validation when the "Show file size" option is enabled. This makes it possible for authenticated attackers, with Contributor-level access and above, to make web request

thehackerwire@mastodon.social at 2026-03-21T21:00:13.000Z ##

🟠 CVE-2026-1313 - High (8.3)

The MimeTypes Link Icons plugin for WordPress is vulnerable to Server-Side Request Forgery in all versions up to, and including, 3.2.20. This is due to the plugin making outbound HTTP requests to user-controlled URLs without proper validation when...

🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-1313/

#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack

##

offseq at 2026-03-21T10:30:28.023Z ##

MimeTypes Link Icons plugin (≤3.2.20) hit by HIGH severity SSRF (CVE-2026-1313, CVSS 8.3). Contributor+ users can abuse "Show file size" to access internal resources. Disable the feature & check user roles. https://radar.offseq.com/threat/cve-2026-1313-cwe-918-server-side-request-forgery--530406e8 #OffSeq #WordPress #SSRF #CVE20261313

##

thehackerwire@mastodon.social at 2026-03-21T21:00:13.000Z ##

🟠 CVE-2026-1313 - High (8.3)

The MimeTypes Link Icons plugin for WordPress is vulnerable to Server-Side Request Forgery in all versions up to, and including, 3.2.20. This is due to the plugin making outbound HTTP requests to user-controlled URLs without proper validation when...

🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-1313/

#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack

##

offseq@infosec.exchange at 2026-03-21T10:30:28.000Z ##

MimeTypes Link Icons plugin (≤3.2.20) hit by HIGH severity SSRF (CVE-2026-1313, CVSS 8.3). Contributor+ users can abuse "Show file size" to access internal resources. Disable the feature & check user roles. https://radar.offseq.com/threat/cve-2026-1313-cwe-918-server-side-request-forgery--530406e8 #OffSeq #WordPress #SSRF #CVE20261313

##

CVE-2026-2941
(8.8 HIGH)

EPSS: 0.04%

updated 2026-03-21T06:30:25

2 posts

The Linksy Search and Replace plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the 'linksy_search_and_replace_item_details' function in all versions up to, and including, 1.0.4. This makes it possible for authenticated attackers, with subscriber-level access and above, to update any database table, any value, including the wp_capabilities

thehackerwire@mastodon.social at 2026-03-21T20:18:13.000Z ##

🟠 CVE-2026-2941 - High (8.8)

The Linksy Search and Replace plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the 'linksy_search_and_replace_item_details' function in all versions up to, and including, 1.0.4. This make...

🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-2941/

#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack

##

thehackerwire@mastodon.social at 2026-03-21T20:18:13.000Z ##

🟠 CVE-2026-2941 - High (8.8)

The Linksy Search and Replace plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the 'linksy_search_and_replace_item_details' function in all versions up to, and including, 1.0.4. This make...

🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-2941/

#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack

##

CVE-2026-4261
(8.8 HIGH)

EPSS: 0.04%

updated 2026-03-21T04:17:44.223000

3 posts

The Expire Users plugin for WordPress is vulnerable to Privilege Escalation in all versions up to, and including, 1.2.2. This is due to the plugin allowing a user to update the 'on_expire_default_to_role' meta through the 'save_extra_user_profile_fields' function. This makes it possible for authenticated attackers, with Subscriber-level access and above, to elevate their privileges to that of an a

thehackerwire@mastodon.social at 2026-03-21T20:00:45.000Z ##

🟠 CVE-2026-4261 - High (8.8)

The Expire Users plugin for WordPress is vulnerable to Privilege Escalation in all versions up to, and including, 1.2.2. This is due to the plugin allowing a user to update the 'on_expire_default_to_role' meta through the 'save_extra_user_profile_...

🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-4261/

#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack

##

thehackerwire@mastodon.social at 2026-03-21T20:00:45.000Z ##

🟠 CVE-2026-4261 - High (8.8)

The Expire Users plugin for WordPress is vulnerable to Privilege Escalation in all versions up to, and including, 1.2.2. This is due to the plugin allowing a user to update the 'on_expire_default_to_role' meta through the 'save_extra_user_profile_...

🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-4261/

#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack

##

offseq@infosec.exchange at 2026-03-21T06:00:30.000Z ##

🔥 HIGH severity: CVE-2026-4261 in Expire Users (WordPress, all versions) lets Subscribers escalate to Admin via missing authorization in 'save_extra_user_profile_fields'. Patch urgently or mitigate! https://radar.offseq.com/threat/cve-2026-4261-cwe-862-missing-authorization-in-hus-fa4ebb4d #OffSeq #WordPress #Vuln #Security

##

CVE-2026-1800
(7.5 HIGH)

EPSS: 0.07%

updated 2026-03-21T04:16:54.520000

2 posts

The Fonts Manager | Custom Fonts plugin for WordPress is vulnerable to time-based SQL Injection via the ‘fmcfIdSelectedFnt’ parameter in all versions up to, and including, 1.2 due to insufficient escaping on the user supplied parameter and lack of sufficient preparation on the existing SQL query. This makes it possible for unauthenticated attackers to append additional SQL queries into already ex

thehackerwire@mastodon.social at 2026-03-21T20:18:33.000Z ##

🟠 CVE-2026-1800 - High (7.5)

The Fonts Manager | Custom Fonts plugin for WordPress is vulnerable to time-based SQL Injection via the ‘fmcfIdSelectedFnt’ parameter in all versions up to, and including, 1.2 due to insufficient escaping on the user supplied parameter and lac...

🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-1800/

#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack

##

thehackerwire@mastodon.social at 2026-03-21T20:18:33.000Z ##

🟠 CVE-2026-1800 - High (7.5)

The Fonts Manager | Custom Fonts plugin for WordPress is vulnerable to time-based SQL Injection via the ‘fmcfIdSelectedFnt’ parameter in all versions up to, and including, 1.2 due to insufficient escaping on the user supplied parameter and lac...

🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-1800/

#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack

##

CVE-2026-1648
(7.2 HIGH)

EPSS: 0.04%

updated 2026-03-21T04:16:54.310000

1 posts

The Performance Monitor plugin for WordPress is vulnerable to Server-Side Request Forgery in all versions up to, and including, 1.0.6. This is due to insufficient validation of the 'url' parameter in the '/wp-json/performance-monitor/v1/curl_data' REST API endpoint. This makes it possible for unauthenticated attackers to make web requests to arbitrary locations, including internal services, via th

offseq@infosec.exchange at 2026-03-21T09:00:28.000Z ##

🔎 HIGH severity SSRF in qrolic Performance Monitor (WordPress, all versions). Unauthenticated attackers can craft internal requests via REST API — RCE possible if chained with Redis. Urgent patch/mitigation needed! CVE-2026-1648. https://radar.offseq.com/threat/cve-2026-1648-cwe-918-server-side-request-forgery--062101f6 #OffSeq #WordPress #SSRF

##

CVE-2025-14037
(8.1 HIGH)

EPSS: 0.04%

updated 2026-03-21T04:16:51.263000

2 posts

The Invelity Product Feeds plugin for WordPress is vulnerable to arbitrary file deletion via path traversal in all versions up to, and including, 1.2.6. This is due to missing validation and sanitization in the 'createManageFeedPage' function. This makes it possible for authenticated administrator-level attackers to delete arbitrary files on the server via specially crafted requests that include p

thehackerwire@mastodon.social at 2026-03-21T21:00:22.000Z ##

🟠 CVE-2025-14037 - High (8.1)

The Invelity Product Feeds plugin for WordPress is vulnerable to arbitrary file deletion via path traversal in all versions up to, and including, 1.2.6. This is due to missing validation and sanitization in the 'createManageFeedPage' function. Thi...

🔗 https://www.thehackerwire.com/vulnerability/CVE-2025-14037/

#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack

##

thehackerwire@mastodon.social at 2026-03-21T21:00:22.000Z ##

🟠 CVE-2025-14037 - High (8.1)

The Invelity Product Feeds plugin for WordPress is vulnerable to arbitrary file deletion via path traversal in all versions up to, and including, 1.2.6. This is due to missing validation and sanitization in the 'createManageFeedPage' function. Thi...

🔗 https://www.thehackerwire.com/vulnerability/CVE-2025-14037/

#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack

##

CVE-2026-32056
(7.5 HIGH)

EPSS: 0.15%

updated 2026-03-21T03:32:18

2 posts

OpenClaw versions prior to 2026.2.22 fail to sanitize shell startup environment variables HOME and ZDOTDIR in the system.run function, allowing attackers to bypass command allowlist protections. Remote attackers can inject malicious startup files such as .bash_profile or .zshenv to achieve arbitrary code execution before allowlist-evaluated commands are executed.

thehackerwire@mastodon.social at 2026-03-21T21:00:31.000Z ##

🟠 CVE-2026-32056 - High (7.5)

OpenClaw versions prior to 2026.2.22 fail to sanitize shell startup environment variables HOME and ZDOTDIR in the system.run function, allowing attackers to bypass command allowlist protections. Remote attackers can inject malicious startup files ...

🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-32056/

#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack

##

thehackerwire@mastodon.social at 2026-03-21T21:00:31.000Z ##

🟠 CVE-2026-32056 - High (7.5)

OpenClaw versions prior to 2026.2.22 fail to sanitize shell startup environment variables HOME and ZDOTDIR in the system.run function, allowing attackers to bypass command allowlist protections. Remote attackers can inject malicious startup files ...

🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-32056/

#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack

##

CVE-2026-32064
(7.7 HIGH)

EPSS: 0.04%

updated 2026-03-21T03:31:15

2 posts

OpenClaw versions prior to 2026.2.21 sandbox browser entrypoint launches x11vnc without authentication for noVNC observer sessions, allowing unauthenticated access to the VNC interface. Remote attackers on the host loopback interface can connect to the exposed noVNC port to observe or interact with the sandbox browser without credentials.

thehackerwire@mastodon.social at 2026-03-21T22:00:22.000Z ##

🟠 CVE-2026-32064 - High (7.7)

OpenClaw versions prior to 2026.2.21 sandbox browser entrypoint launches x11vnc without authentication for noVNC observer sessions, allowing unauthenticated access to the VNC interface. Remote attackers on the host loopback interface can connect t...

🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-32064/

#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack

##

thehackerwire@mastodon.social at 2026-03-21T22:00:22.000Z ##

🟠 CVE-2026-32064 - High (7.7)

OpenClaw versions prior to 2026.2.21 sandbox browser entrypoint launches x11vnc without authentication for noVNC observer sessions, allowing unauthenticated access to the VNC interface. Remote attackers on the host loopback interface can connect t...

🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-32064/

#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack

##

CVE-2026-32049
(7.5 HIGH)

EPSS: 0.10%

updated 2026-03-21T03:31:14

2 posts

OpenClaw versions prior to 2026.2.22 fail to consistently enforce configured inbound media byte limits before buffering remote media across multiple channel ingestion paths. Remote attackers can send oversized media payloads to trigger elevated memory usage and potential process instability.

thehackerwire@mastodon.social at 2026-03-21T22:15:38.000Z ##

🟠 CVE-2026-32049 - High (7.5)

OpenClaw versions prior to 2026.2.22 fail to consistently enforce configured inbound media byte limits before buffering remote media across multiple channel ingestion paths. Remote attackers can send oversized media payloads to trigger elevated me...

🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-32049/

#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack

##

thehackerwire@mastodon.social at 2026-03-21T22:15:38.000Z ##

🟠 CVE-2026-32049 - High (7.5)

OpenClaw versions prior to 2026.2.22 fail to consistently enforce configured inbound media byte limits before buffering remote media across multiple channel ingestion paths. Remote attackers can send oversized media payloads to trigger elevated me...

🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-32049/

#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack

##

CVE-2026-32048
(7.5 HIGH)

EPSS: 0.04%

updated 2026-03-21T03:31:14

2 posts

OpenClaw versions prior to 2026.3.1 fail to enforce sandbox inheritance during cross-agent sessions_spawn operations, allowing sandboxed sessions to create child processes under unsandboxed agents. An attacker with a sandboxed session can exploit this to spawn child runtimes with sandbox.mode set to off, bypassing runtime confinement restrictions.

thehackerwire@mastodon.social at 2026-03-21T22:15:28.000Z ##

🟠 CVE-2026-32048 - High (7.5)

OpenClaw versions prior to 2026.3.1 fail to enforce sandbox inheritance during cross-agent sessions_spawn operations, allowing sandboxed sessions to create child processes under unsandboxed agents. An attacker with a sandboxed session can exploit ...

🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-32048/

#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack

##

thehackerwire@mastodon.social at 2026-03-21T22:15:28.000Z ##

🟠 CVE-2026-32048 - High (7.5)

OpenClaw versions prior to 2026.3.1 fail to enforce sandbox inheritance during cross-agent sessions_spawn operations, allowing sandboxed sessions to create child processes under unsandboxed agents. An attacker with a sandboxed session can exploit ...

🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-32048/

#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack

##

CVE-2026-32055
(7.6 HIGH)

EPSS: 0.06%

updated 2026-03-21T01:17:08.903000

2 posts

OpenClaw versions prior to 2026.2.26 contain a path traversal vulnerability in workspace boundary validation that allows attackers to write files outside the workspace through in-workspace symlinks pointing to non-existent out-of-root targets. The vulnerability exists because the boundary check improperly resolves aliases, permitting the first write operation to escape the workspace boundary and c

thehackerwire@mastodon.social at 2026-03-21T22:00:46.000Z ##

🟠 CVE-2026-32055 - High (7.6)

OpenClaw versions prior to 2026.2.26 contain a path traversal vulnerability in workspace boundary validation that allows attackers to write files outside the workspace through in-workspace symlinks pointing to non-existent out-of-root targets. The...

🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-32055/

#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack

##

thehackerwire@mastodon.social at 2026-03-21T22:00:46.000Z ##

🟠 CVE-2026-32055 - High (7.6)

OpenClaw versions prior to 2026.2.26 contain a path traversal vulnerability in workspace boundary validation that allows attackers to write files outside the workspace through in-workspace symlinks pointing to non-existent out-of-root targets. The...

🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-32055/

#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack

##

CVE-2026-32051
(8.8 HIGH)

EPSS: 0.06%

updated 2026-03-21T01:17:08.087000

2 posts

OpenClaw versions prior to 2026.3.1 contain an authorization mismatch vulnerability that allows authenticated callers with operator.write scope to invoke owner-only tool surfaces including gateway and cron through agent runs in scoped-token deployments. Attackers with write-scope access can perform control-plane actions beyond their intended authorization level by exploiting inconsistent owner-onl

thehackerwire@mastodon.social at 2026-03-21T22:00:35.000Z ##

🟠 CVE-2026-32051 - High (8.8)

OpenClaw versions prior to 2026.3.1 contain an authorization mismatch vulnerability that allows authenticated callers with operator.write scope to invoke owner-only tool surfaces including gateway and cron through agent runs in scoped-token deploy...

🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-32051/

#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack

##

thehackerwire@mastodon.social at 2026-03-21T22:00:35.000Z ##

🟠 CVE-2026-32051 - High (8.8)

OpenClaw versions prior to 2026.3.1 contain an authorization mismatch vulnerability that allows authenticated callers with operator.write scope to invoke owner-only tool surfaces including gateway and cron through agent runs in scoped-token deploy...

🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-32051/

#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack

##

CVE-2026-32042
(8.8 HIGH)

EPSS: 0.10%

updated 2026-03-21T01:17:06.547000

2 posts

OpenClaw versions 2026.2.22 prior to 2026.2.25 contain a privilege escalation vulnerability allowing unpaired device identities to bypass operator pairing requirements and self-assign elevated operator scopes including operator.admin. Attackers with valid shared gateway authentication can present a self-signed unpaired device identity to request and obtain higher operator scopes before pairing app

thehackerwire@mastodon.social at 2026-03-21T22:15:48.000Z ##

🟠 CVE-2026-32042 - High (8.8)

OpenClaw versions 2026.2.22 prior to 2026.2.25 contain a privilege escalation vulnerability allowing unpaired device identities to bypass operator pairing requirements and self-assign elevated operator scopes including operator.admin. Attackers wi...

🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-32042/

#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack

##

thehackerwire@mastodon.social at 2026-03-21T22:15:48.000Z ##

🟠 CVE-2026-32042 - High (8.8)

OpenClaw versions 2026.2.22 prior to 2026.2.25 contain a privilege escalation vulnerability allowing unpaired device identities to bypass operator pairing requirements and self-assign elevated operator scopes including operator.admin. Attackers wi...

🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-32042/

#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack

##

CVE-2026-25192
(9.4 CRITICAL)

EPSS: 0.13%

updated 2026-03-21T00:32:47

4 posts

WebSocket endpoints lack proper authentication mechanisms, enabling attackers to perform unauthorized station impersonation and manipulate data sent to the backend. An unauthenticated attacker can connect to the OCPP WebSocket endpoint using a known or discovered charging station identifier, then issue or receive OCPP commands as a legitimate charger. Given that no authentication is required, this

thehackerwire@mastodon.social at 2026-03-22T01:00:50.000Z ##

🔴 CVE-2026-25192 - Critical (9.4)

WebSocket endpoints lack proper authentication mechanisms, enabling attackers to perform unauthorized station impersonation and manipulate data sent to the backend. An unauthenticated attacker can connect to the OCPP WebSocket endpoint using a kno...

🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-25192/

#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack

##

thehackerwire@mastodon.social at 2026-03-22T01:00:50.000Z ##

🔴 CVE-2026-25192 - Critical (9.4)

WebSocket endpoints lack proper authentication mechanisms, enabling attackers to perform unauthorized station impersonation and manipulate data sent to the backend. An unauthenticated attacker can connect to the OCPP WebSocket endpoint using a kno...

🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-25192/

#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack

##

offseq@infosec.exchange at 2026-03-21T03:00:28.000Z ##

⚠️ CVE-2026-25192 (CRITICAL, CVSS 9.4): All CTEK Chargeportal versions lack authentication on OCPP WebSocket endpoints. Enables remote station impersonation & command injection. Restrict network access and monitor closely! https://radar.offseq.com/threat/cve-2026-25192-cwe-306-in-ctek-chargeportal-a1a8a9ed #OffSeq #EVSecurity #CVE202625192

##

beyondmachines1@infosec.exchange at 2026-03-20T09:01:48.000Z ##

CTEK Chargeportal Vulnerabilities Enable Unauthorized Control of EV Infrastructure

CISA reports four vulnerabilities in the Chargeportal platform by CTEK, including a critical authentication bypass (CVE-2026-25192), that allow attackers to impersonate charging stations and gain unauthorized control. The product is scheduled for sunset in April 2026, leaving network isolation as the primary defense for current users.

**Since CTEK is sunsetting Chargeportal without a patch, make sure you isolate the systems as much as possible from public access and the public internet. Then planning a migration to a supported charging management platform.**
#cybersecurity #infosec #advisory #vulnerability
https://beyondmachines.net/event_details/ctek-chargeportal-vulnerabilities-enable-unauthorized-control-of-ev-infrastructure-q-m-c-l-x/gD2P6Ple2L

##

CVE-2026-29796
(9.4 CRITICAL)

EPSS: 0.10%

updated 2026-03-21T00:31:52

4 posts

WebSocket endpoints lack proper authentication mechanisms, enabling attackers to perform unauthorized station impersonation and manipulate data sent to the backend. An unauthenticated attacker can connect to the OCPP WebSocket endpoint using a known or discovered charging station identifier, then issue or receive OCPP commands as a legitimate charger. Given that no authentication is required, this

thehackerwire@mastodon.social at 2026-03-22T01:00:31.000Z ##

🔴 CVE-2026-29796 - Critical (9.4)

WebSocket endpoints lack proper authentication mechanisms, enabling attackers to perform unauthorized station impersonation and manipulate data sent to the backend. An unauthenticated attacker can connect to the OCPP WebSocket endpoint using a kno...

🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-29796/

#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack

##

thehackerwire@mastodon.social at 2026-03-22T01:00:31.000Z ##

🔴 CVE-2026-29796 - Critical (9.4)

WebSocket endpoints lack proper authentication mechanisms, enabling attackers to perform unauthorized station impersonation and manipulate data sent to the backend. An unauthenticated attacker can connect to the OCPP WebSocket endpoint using a kno...

🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-29796/

#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack

##

offseq@infosec.exchange at 2026-03-21T01:30:28.000Z ##

⚠️ CRITICAL: CVE-2026-29796 affects all IGL-Technologies eParking.fi versions. Missing WebSocket auth allows attackers to impersonate charging stations, disrupt operations, and corrupt data. Restrict access, monitor traffic, and secure now! https://radar.offseq.com/threat/cve-2026-29796-cwe-306-in-igl-technologies-eparkin-fcf429f8 #OffSeq #EVCharging #Infosec

##

beyondmachines1@infosec.exchange at 2026-03-20T16:01:48.000Z ##

IGL-Technologies Patches Critical Authentication Bypass in eParking.fi Platform

IGL-Technologies patched four vulnerabilities in its eParking.fi platform, including a critical authentication bypass (CVE-2026-29796) that allows attackers to impersonate EV charging stations and gain administrative control.

**Isolate your EV charging infrastructure as much as possible from the public internet and public network access. Verify that your hardware supports the vendor's new security profiles. Since station identifiers were leaked on public maps, you should treat existing IDs as compromised and implement device whitelisting.**
#cybersecurity #infosec #advisory #vulnerability
https://beyondmachines.net/event_details/igl-technologies-patches-critical-authentication-bypass-in-eparking-fi-platform-a-5-9-c-q/gD2P6Ple2L

##

CVE-2026-32666
(7.5 HIGH)

EPSS: 0.04%

updated 2026-03-21T00:31:52

2 posts

WebCTRL systems that communicate over BACnet inherit the protocol's lack of network layer authentication. WebCTRL does not implement additional validation of BACnet traffic so an attacker with network access could spoof BACnet packets directed at either the WebCTRL server or associated AutomatedLogic controllers. Spoofed packets may be processed as legitimate.

thehackerwire@mastodon.social at 2026-03-21T23:00:11.000Z ##

🟠 CVE-2026-32666 - High (7.5)

WebCTRL systems that communicate over BACnet inherit the protocol's lack
of network layer authentication. WebCTRL does not implement additional
validation of BACnet traffic so an attacker with network access could
spoof BACnet packets directed ...

updated 2026-03-21T00:16:25.683000

2 posts

Under certain conditions, an attacker could bind to the same port used by WebCTRL. This could allow the attacker to craft and send malicious packets and impersonate the WebCTRL service without requiring code injection into the WebCTRL software.

thehackerwire@mastodon.social at 2026-03-21T23:00:32.000Z ##

🟠 CVE-2026-25086 - High (7.7)

Under certain conditions, an attacker could bind to the same port used
by WebCTRL. This could allow the attacker to craft and send malicious
packets and impersonate the WebCTRL service without requiring code
injection into the WebCTRL software.

🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-25086/

#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack

##

thehackerwire@mastodon.social at 2026-03-21T23:00:32.000Z ##

🟠 CVE-2026-25086 - High (7.7)

Under certain conditions, an attacker could bind to the same port used
by WebCTRL. This could allow the attacker to craft and send malicious
packets and impersonate the WebCTRL service without requiring code
injection into the WebCTRL software.

🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-25086/

#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack

##

CVE-2026-24060
(9.1 CRITICAL)

EPSS: 0.02%

updated 2026-03-21T00:16:25.483000

4 posts

Service information is not encrypted when transmitted as BACnet packets over the wire, and can be sniffed, intercepted, and modified by an attacker. Valuable information such as the File Start Position and File Data can be sniffed from network traffic using Wireshark's BACnet dissector filter. The proprietary format used by WebCTRL to receive updates from the PLC can also be sniffed and rever

thehackerwire@mastodon.social at 2026-03-21T23:00:22.000Z ##

🔴 CVE-2026-24060 - Critical (9.1)

Service information is not encrypted when transmitted as BACnet packets
over the wire, and can be sniffed, intercepted, and modified by an
attacker. Valuable information such as the File Start Position and File
Data can be sniffed from network ...

🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-24060/

#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack

##

thehackerwire@mastodon.social at 2026-03-21T23:00:22.000Z ##

🔴 CVE-2026-24060 - Critical (9.1)

Service information is not encrypted when transmitted as BACnet packets
over the wire, and can be sniffed, intercepted, and modified by an
attacker. Valuable information such as the File Start Position and File
Data can be sniffed from network ...

🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-24060/

#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack

##

offseq@infosec.exchange at 2026-03-21T00:00:38.000Z ##

CVE-2026-24060 (CRITICAL): WebCTRL Premium Server sends BACnet data in cleartext, risking interception & modification. No patch yet — segment OT networks & use VPNs for BACnet traffic. Monitor for sniffing, restrict access. Details: https://radar.offseq.com/threat/cve-2026-24060-cwe-319-in-automated-logic-webctrl--ad487a9d #OffSeq #ICS #Vuln #BACnet

##

beyondmachines1@infosec.exchange at 2026-03-20T10:01:49.000Z ##

Multiple Flaws Reported in Automated Logic WebCTRL Premium Server

Automated Logic patched three vulnerabilities in its WebCTRL Premium Server, including a critical cleartext flaw (CVE-2026-24060), that allow attackers to intercept sensitive data and spoof commands in building automation systems.

**If you are using Automated Logic WebCTRL, make sure it's isolated from the internet and your office network. Then plan a patch. Legacy versions 7.x will not be updated so plan an upgrade.**
#cybersecurity #infosec #advisory #vulnerability
https://beyondmachines.net/event_details/multiple-flaws-reported-in-automated-logic-webctrl-premium-server-m-r-3-3-r/gD2P6Ple2L

##

CVE-2026-33226
(8.7 HIGH)

EPSS: 0.01%

updated 2026-03-20T23:16:46.333000

2 posts

Budibase is a low code platform for creating internal tools, workflows, and admin panels. In versions from 3.30.6 and prior, the REST datasource query preview endpoint (POST /api/queries/preview) makes server-side HTTP requests to any URL supplied by the user in fields.path with no validation. An authenticated admin can reach internal services that are not exposed to the internet — including cloud

thehackerwire@mastodon.social at 2026-03-21T23:18:03.000Z ##

🟠 CVE-2026-33226 - High (8.7)

Budibase is a low code platform for creating internal tools, workflows, and admin panels. In versions from 3.30.6 and prior, the REST datasource query preview endpoint (POST /api/queries/preview) makes server-side HTTP requests to any URL supplied...

🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-33226/

#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack

##

thehackerwire@mastodon.social at 2026-03-21T23:18:03.000Z ##

🟠 CVE-2026-33226 - High (8.7)

Budibase is a low code platform for creating internal tools, workflows, and admin panels. In versions from 3.30.6 and prior, the REST datasource query preview endpoint (POST /api/queries/preview) makes server-side HTTP requests to any URL supplied...

🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-33226/

#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack

##

CVE-2026-33186
(9.1 CRITICAL)

EPSS: 0.01%

updated 2026-03-20T23:16:45.180000

2 posts

gRPC-Go is the Go language implementation of gRPC. Versions prior to 1.79.3 have an authorization bypass resulting from improper input validation of the HTTP/2 `:path` pseudo-header. The gRPC-Go server was too lenient in its routing logic, accepting requests where the `:path` omitted the mandatory leading slash (e.g., `Service/Method` instead of `/Service/Method`). While the server successfully ro

thehackerwire@mastodon.social at 2026-03-22T00:00:38.000Z ##

🔴 CVE-2026-33186 - Critical (9.1)

gRPC-Go is the Go language implementation of gRPC. Versions prior to 1.79.3 have an authorization bypass resulting from improper input validation of the HTTP/2 `:path` pseudo-header. The gRPC-Go server was too lenient in its routing logic, accepti...

🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-33186/

#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack

##

thehackerwire@mastodon.social at 2026-03-22T00:00:38.000Z ##

🔴 CVE-2026-33186 - Critical (9.1)

gRPC-Go is the Go language implementation of gRPC. Versions prior to 1.79.3 have an authorization bypass resulting from improper input validation of the HTTP/2 `:path` pseudo-header. The gRPC-Go server was too lenient in its routing logic, accepti...

🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-33186/

#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack

##

CVE-2026-31904
(7.5 HIGH)

EPSS: 0.08%

updated 2026-03-20T23:16:44.060000

2 posts

The WebSocket Application Programming Interface lacks restrictions on the number of authentication requests. This absence of rate limiting may allow an attacker to conduct denial-of-service attacks by suppressing or mis-routing legitimate charger telemetry, or conduct brute-force attacks to gain unauthorized access.

thehackerwire@mastodon.social at 2026-03-22T00:01:41.000Z ##

🟠 CVE-2026-31904 - High (7.5)

The WebSocket Application Programming Interface lacks restrictions on the number of authentication requests. This absence of rate limiting may allow an attacker to conduct denial-of-service attacks by suppressing or mis-routing legitimate charge...

🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-31904/

#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack

##

thehackerwire@mastodon.social at 2026-03-22T00:01:41.000Z ##

🟠 CVE-2026-31904 - High (7.5)

The WebSocket Application Programming Interface lacks restrictions on the number of authentication requests. This absence of rate limiting may allow an attacker to conduct denial-of-service attacks by suppressing or mis-routing legitimate charge...

🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-31904/

#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack

##

CVE-2026-31903
(7.5 HIGH)

EPSS: 0.07%

updated 2026-03-20T23:16:43.813000

2 posts

The WebSocket Application Programming Interface lacks restrictions on the number of authentication requests. This absence of rate limiting may allow an attacker to conduct denial-of-service attacks by suppressing or mis-routing legitimate charger telemetry, or conduct brute-force attacks to gain unauthorized access.

thehackerwire@mastodon.social at 2026-03-22T01:00:41.000Z ##

🟠 CVE-2026-31903 - High (7.5)

The WebSocket Application Programming Interface lacks restrictions on the number of authentication requests. This absence of rate limiting may allow an attacker to conduct denial-of-service attacks by suppressing or mis-routing legitimate charger ...

🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-31903/

#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack

##

thehackerwire@mastodon.social at 2026-03-22T01:00:41.000Z ##

🟠 CVE-2026-31903 - High (7.5)

The WebSocket Application Programming Interface lacks restrictions on the number of authentication requests. This absence of rate limiting may allow an attacker to conduct denial-of-service attacks by suppressing or mis-routing legitimate charger ...

🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-31903/

#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack

##

CVE-2026-3584
(9.8 CRITICAL)

EPSS: 0.22%

updated 2026-03-20T22:16:29.267000

2 posts

The Kali Forms plugin for WordPress is vulnerable to Remote Code Execution in all versions up to, and including, 2.4.9 via the 'form_process' function. This is due to the 'prepare_post_data' function mapping user-supplied keys directly into internal placeholder storage, combined with the use of 'call_user_func' on these placeholder values. This makes it possible for unauthenticated attackers to ex

thehackerwire@mastodon.social at 2026-03-20T22:20:38.000Z ##

🔴 CVE-2026-3584 - Critical (9.8)

The Kali Forms plugin for WordPress is vulnerable to Remote Code Execution in all versions up to, and including, 2.4.9 via the 'form_process' function. This is due to the 'prepare_post_data' function mapping user-supplied keys directly into intern...

updated 2026-03-20T21:28:57

3 posts

### Impact In Livewire v3 (≤ 3.6.3), a vulnerability allows unauthenticated attackers to achieve remote command execution in specific scenarios. The issue stems from how certain component property updates are hydrated. This vulnerability is unique to Livewire v3 and does not affect prior major versions. Exploitation requires a component to be mounted and configured in a particular way, but does no

Nuclei template

5 repos

https://github.com/haxorstars/CVE-2025-54068

https://github.com/z0d131482700x/Livewire2025CVE

https://github.com/flame-11/CVE-2025-54068-livewire

https://github.com/Jenderal92/livewire-vuln-scanner

https://github.com/synacktiv/Livepyre

secdb@infosec.exchange at 2026-03-20T18:00:21.000Z ##

🚨 [CISA-2026:0320] CISA Adds 5 Known Exploited Vulnerabilities to Catalog (https://secdb.nttzen.cloud/security-advisory/detail/CISA-2026:0320)

CISA has added 5 new vulnerabilities to its Known Exploited Vulnerabilities Catalog, based on evidence of active exploitation. These types of vulnerabilities are a frequent attack vector for malicious cyber actors and pose significant risk to the federal enterprise.

⚠️ CVE-2025-31277 (https://secdb.nttzen.cloud/cve/detail/CVE-2025-31277)
- Name: Apple Multiple Products Buffer Overflow Vulnerability
- Action: Apply mitigations per vendor instructions, follow applicable BOD 22-01 guidance for cloud services, or discontinue use of the product if mitigations are unavailable.
- Known To Be Used in Ransomware Campaigns? Unknown
- Vendor: Apple
- Product: Multiple Products
- Notes: https://support.apple.com/en-us/124147 ; https://support.apple.com/en-us/124149 ; https://support.apple.com/en-us/124152 ; https://support.apple.com/en-us/124153 ; https://support.apple.com/en-us/124155 ; https://nvd.nist.gov/vuln/detail/CVE-2025-31277

⚠️ CVE-2025-32432 (https://secdb.nttzen.cloud/cve/detail/CVE-2025-32432)
- Name: Craft CMS Code Injection Vulnerability
- Action: Apply mitigations per vendor instructions, follow applicable BOD 22-01 guidance for cloud services, or discontinue use of the product if mitigations are unavailable.
- Known To Be Used in Ransomware Campaigns? Unknown
- Vendor: Craft CMS
- Product: Craft CMS
- Notes: https://craftcms.com/knowledge-base/craft-cms-cve-2025-32432 ; https://github.com/craftcms/cms/security/advisories/GHSA-f3gw-9ww9-jmc3 ; https://nvd.nist.gov/vuln/detail/CVE-2025-32432

⚠️ CVE-2025-43510 (https://secdb.nttzen.cloud/cve/detail/CVE-2025-43510)
- Name: Apple Multiple Products Improper Locking Vulnerability
- Action: Apply mitigations per vendor instructions, follow applicable BOD 22-01 guidance for cloud services, or discontinue use of the product if mitigations are unavailable.
- Known To Be Used in Ransomware Campaigns? Unknown
- Vendor: Apple
- Product: Multiple Products
- Notes: https://support.apple.com/en-us/125632 ; https://support.apple.com/en-us/125633 ; https://support.apple.com/en-us/125634 ; https://support.apple.com/en-us/125635 ; https://support.apple.com/en-us/125636 ; https://support.apple.com/en-us/125637 ; https://support.apple.com/en-us/125638 ; https://support.apple.com/en-us/125639 ; https://nvd.nist.gov/vuln/detail/CVE-2025-43510

⚠️ CVE-2025-54068 (https://secdb.nttzen.cloud/cve/detail/CVE-2025-54068)
- Name: Laravel Livewire Code Injection Vulnerability
- Action: Apply mitigations per vendor instructions, follow applicable BOD 22-01 guidance for cloud services, or discontinue use of the product if mitigations are unavailable.
- Known To Be Used in Ransomware Campaigns? Unknown
- Vendor: Laravel
- Product: Livewire
- Notes: https://github.com/livewire/livewire/security/advisories/GHSA-29cq-5w36-x7w3 ; https://github.com/livewire/livewire/commit/ef04be759da41b14d2d129e670533180a44987dc ; https://nvd.nist.gov/vuln/detail/CVE-2025-54068

#SecDB #InfoSec #CVE #CISA_KEV #cisa_20260320 #cisa20260320 #cve_2025_31277 #cve_2025_32432 #cve_2025_43510 #cve_2025_43520 #cve_2025_54068 #cve202531277 #cve202532432 #cve202543510 #cve202543520 #cve202554068

##

cisakevtracker@mastodon.social at 2026-03-20T16:01:28.000Z ##

CVE ID: CVE-2025-54068
Vendor: Laravel
Product: Livewire
Date Added: 2026-03-20
Notes: https://github.com/livewire/livewire/security/advisories/GHSA-29cq-5w36-x7w3 ; https://github.com/livewire/livewire/commit/ef04be759da41b14d2d129e670533180a44987dc ; https://nvd.nist.gov/vuln/detail/CVE-2025-54068
CVE URL: https://nvd.nist.gov/vuln/detail/CVE-2025-54068

##

AAKL@infosec.exchange at 2026-03-20T16:01:15.000Z ##

Looks like CISA has added to the KEV catalogue. Today's winner is Apple.

- CVE-2025-31277: Apple Multiple Products Buffer Overflow Vulnerability https://www.cve.org/CVERecord?id=CVE-2025-31277

- CVE-2025-43520: Apple Multiple Products Classic Buffer Overflow Vulnerability https://www.cve.org/CVERecord?id=CVE-2025-43520

- CVE-2025-43510: Apple Multiple Products Improper Locking Vulnerability https://www.cve.org/CVERecord?id=CVE-2025-43510

- CVE-2025-54068: Laravel Livewire Code Injection Vulnerability https://www.cve.org/CVERecord?id=CVE-2025-54068

- CVE-2025-32432: Craft CMS Code Injection Vulnerability https://www.cve.org/CVERecord?id=CVE-2025-32432 #CISA #Apple #infosec #vulnerability

##

CVE-2025-32432
(10.0 CRITICAL)

EPSS: 89.44%

updated 2026-03-20T21:28:38

3 posts

### Impact This is an additional fix for https://github.com/craftcms/cms/security/advisories/GHSA-4w8r-3xrw-v25g This is a high-impact, low-complexity attack vector. To mitigate the issue, users running Craft installations before the fixed versions are encouraged to update to at least that version. ### Details https://craftcms.com/knowledge-base/craft-cms-cve-2025-32432 ### References https

Nuclei template

4 repos

https://github.com/bambooqj/CVE-2025-32432

https://github.com/Sachinart/CVE-2025-32432

https://github.com/CTY-Research-1/CVE-2025-32432-PoC

https://github.com/Chocapikk/CVE-2025-32432

secdb@infosec.exchange at 2026-03-20T18:00:21.000Z ##

🚨 [CISA-2026:0320] CISA Adds 5 Known Exploited Vulnerabilities to Catalog (https://secdb.nttzen.cloud/security-advisory/detail/CISA-2026:0320)

CISA has added 5 new vulnerabilities to its Known Exploited Vulnerabilities Catalog, based on evidence of active exploitation. These types of vulnerabilities are a frequent attack vector for malicious cyber actors and pose significant risk to the federal enterprise.

⚠️ CVE-2025-31277 (https://secdb.nttzen.cloud/cve/detail/CVE-2025-31277)
- Name: Apple Multiple Products Buffer Overflow Vulnerability
- Action: Apply mitigations per vendor instructions, follow applicable BOD 22-01 guidance for cloud services, or discontinue use of the product if mitigations are unavailable.
- Known To Be Used in Ransomware Campaigns? Unknown
- Vendor: Apple
- Product: Multiple Products
- Notes: https://support.apple.com/en-us/124147 ; https://support.apple.com/en-us/124149 ; https://support.apple.com/en-us/124152 ; https://support.apple.com/en-us/124153 ; https://support.apple.com/en-us/124155 ; https://nvd.nist.gov/vuln/detail/CVE-2025-31277

⚠️ CVE-2025-32432 (https://secdb.nttzen.cloud/cve/detail/CVE-2025-32432)
- Name: Craft CMS Code Injection Vulnerability
- Action: Apply mitigations per vendor instructions, follow applicable BOD 22-01 guidance for cloud services, or discontinue use of the product if mitigations are unavailable.
- Known To Be Used in Ransomware Campaigns? Unknown
- Vendor: Craft CMS
- Product: Craft CMS
- Notes: https://craftcms.com/knowledge-base/craft-cms-cve-2025-32432 ; https://github.com/craftcms/cms/security/advisories/GHSA-f3gw-9ww9-jmc3 ; https://nvd.nist.gov/vuln/detail/CVE-2025-32432

⚠️ CVE-2025-43510 (https://secdb.nttzen.cloud/cve/detail/CVE-2025-43510)
- Name: Apple Multiple Products Improper Locking Vulnerability
- Action: Apply mitigations per vendor instructions, follow applicable BOD 22-01 guidance for cloud services, or discontinue use of the product if mitigations are unavailable.
- Known To Be Used in Ransomware Campaigns? Unknown
- Vendor: Apple
- Product: Multiple Products
- Notes: https://support.apple.com/en-us/125632 ; https://support.apple.com/en-us/125633 ; https://support.apple.com/en-us/125634 ; https://support.apple.com/en-us/125635 ; https://support.apple.com/en-us/125636 ; https://support.apple.com/en-us/125637 ; https://support.apple.com/en-us/125638 ; https://support.apple.com/en-us/125639 ; https://nvd.nist.gov/vuln/detail/CVE-2025-43510

⚠️ CVE-2025-54068 (https://secdb.nttzen.cloud/cve/detail/CVE-2025-54068)
- Name: Laravel Livewire Code Injection Vulnerability
- Action: Apply mitigations per vendor instructions, follow applicable BOD 22-01 guidance for cloud services, or discontinue use of the product if mitigations are unavailable.
- Known To Be Used in Ransomware Campaigns? Unknown
- Vendor: Laravel
- Product: Livewire
- Notes: https://github.com/livewire/livewire/security/advisories/GHSA-29cq-5w36-x7w3 ; https://github.com/livewire/livewire/commit/ef04be759da41b14d2d129e670533180a44987dc ; https://nvd.nist.gov/vuln/detail/CVE-2025-54068

#SecDB #InfoSec #CVE #CISA_KEV #cisa_20260320 #cisa20260320 #cve_2025_31277 #cve_2025_32432 #cve_2025_43510 #cve_2025_43520 #cve_2025_54068 #cve202531277 #cve202532432 #cve202543510 #cve202543520 #cve202554068

##

AAKL@infosec.exchange at 2026-03-20T16:01:15.000Z ##

Looks like CISA has added to the KEV catalogue. Today's winner is Apple.

- CVE-2025-31277: Apple Multiple Products Buffer Overflow Vulnerability https://www.cve.org/CVERecord?id=CVE-2025-31277

- CVE-2025-43520: Apple Multiple Products Classic Buffer Overflow Vulnerability https://www.cve.org/CVERecord?id=CVE-2025-43520

- CVE-2025-43510: Apple Multiple Products Improper Locking Vulnerability https://www.cve.org/CVERecord?id=CVE-2025-43510

- CVE-2025-54068: Laravel Livewire Code Injection Vulnerability https://www.cve.org/CVERecord?id=CVE-2025-54068

- CVE-2025-32432: Craft CMS Code Injection Vulnerability https://www.cve.org/CVERecord?id=CVE-2025-32432 #CISA #Apple #infosec #vulnerability

##

cisakevtracker@mastodon.social at 2026-03-20T16:01:13.000Z ##

CVE ID: CVE-2025-32432
Vendor: Craft CMS
Product: Craft CMS
Date Added: 2026-03-20
Notes: https://craftcms.com/knowledge-base/craft-cms-cve-2025-32432 ; https://github.com/craftcms/cms/security/advisories/GHSA-f3gw-9ww9-jmc3 ; https://nvd.nist.gov/vuln/detail/CVE-2025-32432
CVE URL: https://nvd.nist.gov/vuln/detail/CVE-2025-32432

##

CVE-2026-33068(CVSS UNKNOWN)

EPSS: 0.14%

updated 2026-03-20T21:24:22

2 posts

Claude Code resolved the permission mode from settings files, including the repo-controlled `.claude/settings.json`, before determining whether to display the workspace trust confirmation dialog. A malicious repository could set `permissions.defaultMode` to `bypassPermissions` in its committed `.claude/settings.json`, causing the trust dialog to be silently skipped on first open. This allowed a us

updated 2026-03-20T21:23:01

2 posts

### Summary `/objects/phpsessionid.json.php` exposes the current PHP session ID to any unauthenticated request. The `allowOrigin()` function reflects any `Origin` header back in `Access-Control-Allow-Origin` with `Access-Control-Allow-Credentials: true`, enabling cross-origin session theft and full account takeover. ### Details **File:** `objects/phpsessionid.json.php` ```php allowOrigin(); $o

thehackerwire@mastodon.social at 2026-03-20T23:03:57.000Z ##

🟠 CVE-2026-33043 - High (8.1)

WWBN AVideo is an open source video platform. In versions 25.0 and below, /objects/phpsessionid.json.php exposes the current PHP session ID to any unauthenticated request. The allowOrigin() function reflects any Origin header back in Access-Contro...

thehackerwire@mastodon.social at 2026-03-21T23:16:43.000Z ##

🟠 CVE-2026-33476 - High (7.5)

SiYuan is a personal knowledge management system. Prior to version 3.6.2, the Siyuan kernel exposes an unauthenticated file-serving endpoint under `/appearance/*filepath.` Due to improper path sanitization, attackers can perform directory traversa...

updated 2026-03-20T19:26:28.717000

5 posts

WeGIA is a web manager for charitable institutions. Versions 3.6.5 and below contain an authenticated SQL Injection vulnerability in the html/matPat/restaurar_produto.php endpoint. The vulnerability allows an authenticated attacker to inject arbitrary SQL commands via the id_produto GET parameter, leading to full database compromise. In the script /html/matPat/restaurar_produto.php, the applicatio

Matchbook3469@mastodon.social at 2026-03-22T11:17:10.000Z ##

🚨 New security advisory:

CVE-2026-33134 affects Wegia Wegia.

• Impact: Remote code execution or complete system compromise possible
• Risk: Attackers can gain full control of affected systems
• Mitigation: Patch immediately or isolate affected systems

Full breakdown:
https://www.yazoul.net/advisory/cve/cve-2026-33134-wegia-sql-injection-vulnerability-update-now

#Cybersecurity #PatchNow #InfoSecCommunity

##

hbrpgm@adalta.social at 2026-03-21T11:46:52.000Z ##

📺 https://peer.adalta.social/w/wg6KobEvvKKJLWMzqGDZtq
🔗 [🇩🇪🇺🇸🇫🇷](https://adalta.info/articles/prstn_security_116266728422046419_fr)
🔗 [ℹ️](https://www.redpacketsecurity.com/cve-alert-cve-2026-33134-labredescefetrj-wegia/")

Une injection SQL authentifiée dans WeGIA compromet l'intégralité des bases de données des institutions.

#cybersecurity #security #osint #threatintel #cve

##

hbrpgm@adalta.social at 2026-03-21T11:39:47.000Z ##

📺 https://peer.adalta.social/w/vUPVbxbkikKKbXfJUWY7un
🔗 [🇩🇪🇺🇸🇫🇷](https://adalta.info/articles/prstn_security_116266728422046419_en)
🔗 [ℹ️](https://www.redpacketsecurity.com/cve-alert-cve-2026-33134-labredescefetrj-wegia/")

An authenticated SQL injection in WeGIA enables full database compromise, demanding immediate remediation for high-risk organizations.

#cybersecurity #security #osint #threatintel #cve

##

hbrpgm@adalta.social at 2026-03-21T11:35:44.000Z ##

📺 https://peer.adalta.social/w/gG6EiykmeMqKds94uYjSvn
🔗 [🇩🇪🇺🇸🇫🇷](https://adalta.info/articles/prstn_security_116266728422046419_de)
🔗 [ℹ️](https://www.redpacketsecurity.com/cve-alert-cve-2026-33134-labredescefetrj-wegia/")

Authentifizierte SQL-Injektion in einer Wohltätigkeitssoftware ermöglicht vollständige Datenbankkompromittierung.

#cybersecurity #security #osint #threatintel #cve

##

thehackerwire@mastodon.social at 2026-03-20T21:26:31.000Z ##

🔴 CVE-2026-33134 - Critical (9.3)

WeGIA is a web manager for charitable institutions. Versions 3.6.5 and below contain an authenticated SQL Injection vulnerability in the html/matPat/restaurar_produto.php endpoint. The vulnerability allows an authenticated attacker to inject arbit...

🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-33134/

#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack

##

CVE-2026-33135
(9.3 CRITICAL)

EPSS: 0.03%

updated 2026-03-20T19:25:45.043000

2 posts

WeGIA is a web manager for charitable institutions. Versions 3.6.6 and below have a Reflected Cross-Site Scripting (XSS) vulnerability in the novo_memorandoo.php endpoint. An attacker can inject arbitrary JavaScript into the sccs GET parameter, which is directly echoed into the HTML response without any sanitization or encoding. The script /html/memorando/novo_memorandoo.php reads HTTP GET paramet

Matchbook3469@mastodon.social at 2026-03-21T17:18:53.000Z ##

⛔ New security advisory:

CVE-2026-33135 affects Wegia Wegia.

• Impact: Remote code execution or complete system compromise possible
• Risk: Attackers can gain full control of affected systems
• Mitigation: Patch immediately or isolate affected systems

Full breakdown:
https://www.yazoul.net/advisory/cve/cve-2026-33135-wegia-web-manager-reflected-xss-update-to-3-6-7

#Cybersecurity #PatchNow #InfoSecCommunity

##

thehackerwire@mastodon.social at 2026-03-20T21:26:41.000Z ##

🔴 CVE-2026-33135 - Critical (9.3)

WeGIA is a web manager for charitable institutions. Versions 3.6.6 and below have a Reflected Cross-Site Scripting (XSS) vulnerability in the novo_memorandoo.php endpoint. An attacker can inject arbitrary JavaScript into the sccs GET parameter, wh...

🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-33135/

#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack

##

CVE-2026-32318
(7.6 HIGH)

EPSS: 0.01%

updated 2026-03-20T19:16:16.277000

1 posts

Cryptomator for IOS offers multi-platform transparent client-side encryption for files in the cloud. Prior to version 2.8.3, an integrity check vulnerability allows an attacker tamper with the vault configuration file leading to a man-in-the-middle vulnerability in Hub key loading mechanism. Before this fix, the client trusted endpoints from the vault config without host authenticity checks, which

thehackerwire@mastodon.social at 2026-03-20T20:00:35.000Z ##

🟠 CVE-2026-32318 - High (7.6)

Cryptomator for IOS offers multi-platform transparent client-side encryption for files in the cloud. Prior to version 2.8.3, an integrity check vulnerability allows an attacker tamper with the vault configuration file leading to a man-in-the-middl...

🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-32318/

#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack

##

CVE-2025-31277
(8.8 HIGH)

EPSS: 0.39%

updated 2026-03-20T18:53:35.083000

3 posts

The issue was addressed with improved memory handling. This issue is fixed in Safari 18.6, watchOS 11.6, visionOS 2.6, iOS 18.6 and iPadOS 18.6, macOS Sequoia 15.6, tvOS 18.6. Processing maliciously crafted web content may lead to memory corruption.

secdb@infosec.exchange at 2026-03-20T18:00:21.000Z ##

🚨 [CISA-2026:0320] CISA Adds 5 Known Exploited Vulnerabilities to Catalog (https://secdb.nttzen.cloud/security-advisory/detail/CISA-2026:0320)

CISA has added 5 new vulnerabilities to its Known Exploited Vulnerabilities Catalog, based on evidence of active exploitation. These types of vulnerabilities are a frequent attack vector for malicious cyber actors and pose significant risk to the federal enterprise.

⚠️ CVE-2025-31277 (https://secdb.nttzen.cloud/cve/detail/CVE-2025-31277)
- Name: Apple Multiple Products Buffer Overflow Vulnerability
- Action: Apply mitigations per vendor instructions, follow applicable BOD 22-01 guidance for cloud services, or discontinue use of the product if mitigations are unavailable.
- Known To Be Used in Ransomware Campaigns? Unknown
- Vendor: Apple
- Product: Multiple Products
- Notes: https://support.apple.com/en-us/124147 ; https://support.apple.com/en-us/124149 ; https://support.apple.com/en-us/124152 ; https://support.apple.com/en-us/124153 ; https://support.apple.com/en-us/124155 ; https://nvd.nist.gov/vuln/detail/CVE-2025-31277

⚠️ CVE-2025-32432 (https://secdb.nttzen.cloud/cve/detail/CVE-2025-32432)
- Name: Craft CMS Code Injection Vulnerability
- Action: Apply mitigations per vendor instructions, follow applicable BOD 22-01 guidance for cloud services, or discontinue use of the product if mitigations are unavailable.
- Known To Be Used in Ransomware Campaigns? Unknown
- Vendor: Craft CMS
- Product: Craft CMS
- Notes: https://craftcms.com/knowledge-base/craft-cms-cve-2025-32432 ; https://github.com/craftcms/cms/security/advisories/GHSA-f3gw-9ww9-jmc3 ; https://nvd.nist.gov/vuln/detail/CVE-2025-32432

⚠️ CVE-2025-43510 (https://secdb.nttzen.cloud/cve/detail/CVE-2025-43510)
- Name: Apple Multiple Products Improper Locking Vulnerability
- Action: Apply mitigations per vendor instructions, follow applicable BOD 22-01 guidance for cloud services, or discontinue use of the product if mitigations are unavailable.
- Known To Be Used in Ransomware Campaigns? Unknown
- Vendor: Apple
- Product: Multiple Products
- Notes: https://support.apple.com/en-us/125632 ; https://support.apple.com/en-us/125633 ; https://support.apple.com/en-us/125634 ; https://support.apple.com/en-us/125635 ; https://support.apple.com/en-us/125636 ; https://support.apple.com/en-us/125637 ; https://support.apple.com/en-us/125638 ; https://support.apple.com/en-us/125639 ; https://nvd.nist.gov/vuln/detail/CVE-2025-43510

⚠️ CVE-2025-54068 (https://secdb.nttzen.cloud/cve/detail/CVE-2025-54068)
- Name: Laravel Livewire Code Injection Vulnerability
- Action: Apply mitigations per vendor instructions, follow applicable BOD 22-01 guidance for cloud services, or discontinue use of the product if mitigations are unavailable.
- Known To Be Used in Ransomware Campaigns? Unknown
- Vendor: Laravel
- Product: Livewire
- Notes: https://github.com/livewire/livewire/security/advisories/GHSA-29cq-5w36-x7w3 ; https://github.com/livewire/livewire/commit/ef04be759da41b14d2d129e670533180a44987dc ; https://nvd.nist.gov/vuln/detail/CVE-2025-54068

#SecDB #InfoSec #CVE #CISA_KEV #cisa_20260320 #cisa20260320 #cve_2025_31277 #cve_2025_32432 #cve_2025_43510 #cve_2025_43520 #cve_2025_54068 #cve202531277 #cve202532432 #cve202543510 #cve202543520 #cve202554068

##

cisakevtracker@mastodon.social at 2026-03-20T16:02:15.000Z ##

CVE ID: CVE-2025-31277
Vendor: Apple
Product: Multiple Products
Date Added: 2026-03-20
Notes: https://support.apple.com/en-us/124147 ; https://support.apple.com/en-us/124149 ; https://support.apple.com/en-us/124152 ; https://support.apple.com/en-us/124153 ; https://support.apple.com/en-us/124155 ; https://nvd.nist.gov/vuln/detail/CVE-2025-31277
CVE URL: https://nvd.nist.gov/vuln/detail/CVE-2025-31277

##

AAKL@infosec.exchange at 2026-03-20T16:01:15.000Z ##

Looks like CISA has added to the KEV catalogue. Today's winner is Apple.

- CVE-2025-31277: Apple Multiple Products Buffer Overflow Vulnerability https://www.cve.org/CVERecord?id=CVE-2025-31277

- CVE-2025-43520: Apple Multiple Products Classic Buffer Overflow Vulnerability https://www.cve.org/CVERecord?id=CVE-2025-43520

- CVE-2025-43510: Apple Multiple Products Improper Locking Vulnerability https://www.cve.org/CVERecord?id=CVE-2025-43510

- CVE-2025-54068: Laravel Livewire Code Injection Vulnerability https://www.cve.org/CVERecord?id=CVE-2025-54068

- CVE-2025-32432: Craft CMS Code Injection Vulnerability https://www.cve.org/CVERecord?id=CVE-2025-32432 #CISA #Apple #infosec #vulnerability

##

CVE-2026-4452
(8.8 HIGH)

EPSS: 0.07%

updated 2026-03-20T18:32:23

2 posts

Integer overflow in ANGLE in Google Chrome on Windows prior to 146.0.7680.153 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High)

thehackerwire@mastodon.social at 2026-03-22T02:34:11.000Z ##

🟠 CVE-2026-4452 - High (8.8)

Integer overflow in ANGLE in Google Chrome on Windows prior to 146.0.7680.153 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High)

🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-4452/

#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack

##

thehackerwire@mastodon.social at 2026-03-22T02:34:11.000Z ##

🟠 CVE-2026-4452 - High (8.8)

Integer overflow in ANGLE in Google Chrome on Windows prior to 146.0.7680.153 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High)

🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-4452/

#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack

##

CVE-2025-43520
(5.5 MEDIUM)

EPSS: 0.41%

updated 2026-03-20T18:32:19

3 posts

A memory corruption issue was addressed with improved memory handling. This issue is fixed in watchOS 26.1, iOS 18.7.2 and iPadOS 18.7.2, macOS Tahoe 26.1, visionOS 26.1, tvOS 26.1, macOS Sonoma 14.8.2, macOS Sequoia 15.7.2, iOS 26.1 and iPadOS 26.1. A malicious application may be able to cause unexpected system termination or write kernel memory.

secdb@infosec.exchange at 2026-03-20T18:00:21.000Z ##

🚨 [CISA-2026:0320] CISA Adds 5 Known Exploited Vulnerabilities to Catalog (https://secdb.nttzen.cloud/security-advisory/detail/CISA-2026:0320)

CISA has added 5 new vulnerabilities to its Known Exploited Vulnerabilities Catalog, based on evidence of active exploitation. These types of vulnerabilities are a frequent attack vector for malicious cyber actors and pose significant risk to the federal enterprise.

⚠️ CVE-2025-31277 (https://secdb.nttzen.cloud/cve/detail/CVE-2025-31277)
- Name: Apple Multiple Products Buffer Overflow Vulnerability
- Action: Apply mitigations per vendor instructions, follow applicable BOD 22-01 guidance for cloud services, or discontinue use of the product if mitigations are unavailable.
- Known To Be Used in Ransomware Campaigns? Unknown
- Vendor: Apple
- Product: Multiple Products
- Notes: https://support.apple.com/en-us/124147 ; https://support.apple.com/en-us/124149 ; https://support.apple.com/en-us/124152 ; https://support.apple.com/en-us/124153 ; https://support.apple.com/en-us/124155 ; https://nvd.nist.gov/vuln/detail/CVE-2025-31277

⚠️ CVE-2025-32432 (https://secdb.nttzen.cloud/cve/detail/CVE-2025-32432)
- Name: Craft CMS Code Injection Vulnerability
- Action: Apply mitigations per vendor instructions, follow applicable BOD 22-01 guidance for cloud services, or discontinue use of the product if mitigations are unavailable.
- Known To Be Used in Ransomware Campaigns? Unknown
- Vendor: Craft CMS
- Product: Craft CMS
- Notes: https://craftcms.com/knowledge-base/craft-cms-cve-2025-32432 ; https://github.com/craftcms/cms/security/advisories/GHSA-f3gw-9ww9-jmc3 ; https://nvd.nist.gov/vuln/detail/CVE-2025-32432

⚠️ CVE-2025-43510 (https://secdb.nttzen.cloud/cve/detail/CVE-2025-43510)
- Name: Apple Multiple Products Improper Locking Vulnerability
- Action: Apply mitigations per vendor instructions, follow applicable BOD 22-01 guidance for cloud services, or discontinue use of the product if mitigations are unavailable.
- Known To Be Used in Ransomware Campaigns? Unknown
- Vendor: Apple
- Product: Multiple Products
- Notes: https://support.apple.com/en-us/125632 ; https://support.apple.com/en-us/125633 ; https://support.apple.com/en-us/125634 ; https://support.apple.com/en-us/125635 ; https://support.apple.com/en-us/125636 ; https://support.apple.com/en-us/125637 ; https://support.apple.com/en-us/125638 ; https://support.apple.com/en-us/125639 ; https://nvd.nist.gov/vuln/detail/CVE-2025-43510

⚠️ CVE-2025-54068 (https://secdb.nttzen.cloud/cve/detail/CVE-2025-54068)
- Name: Laravel Livewire Code Injection Vulnerability
- Action: Apply mitigations per vendor instructions, follow applicable BOD 22-01 guidance for cloud services, or discontinue use of the product if mitigations are unavailable.
- Known To Be Used in Ransomware Campaigns? Unknown
- Vendor: Laravel
- Product: Livewire
- Notes: https://github.com/livewire/livewire/security/advisories/GHSA-29cq-5w36-x7w3 ; https://github.com/livewire/livewire/commit/ef04be759da41b14d2d129e670533180a44987dc ; https://nvd.nist.gov/vuln/detail/CVE-2025-54068

#SecDB #InfoSec #CVE #CISA_KEV #cisa_20260320 #cisa20260320 #cve_2025_31277 #cve_2025_32432 #cve_2025_43510 #cve_2025_43520 #cve_2025_54068 #cve202531277 #cve202532432 #cve202543510 #cve202543520 #cve202554068

##

cisakevtracker@mastodon.social at 2026-03-20T16:01:59.000Z ##

updated 2026-03-20T18:31:18

2 posts

Integer overflow in ANGLE in Google Chrome prior to 146.0.7680.153 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: Medium)

thehackerwire@mastodon.social at 2026-03-22T02:33:52.000Z ##

🟠 CVE-2026-4464 - High (8.8)

Integer overflow in ANGLE in Google Chrome prior to 146.0.7680.153 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: Medium)

🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-4464/

#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack

##

thehackerwire@mastodon.social at 2026-03-22T02:33:52.000Z ##

🟠 CVE-2026-4464 - High (8.8)

Integer overflow in ANGLE in Google Chrome prior to 146.0.7680.153 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: Medium)

🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-4464/

#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack

##

CVE-2025-43510
(7.8 HIGH)

EPSS: 0.40%

updated 2026-03-20T18:31:15

3 posts

A memory corruption issue was addressed with improved lock state checking. This issue is fixed in watchOS 26.1, iOS 18.7.2 and iPadOS 18.7.2, macOS Tahoe 26.1, visionOS 26.1, tvOS 26.1, macOS Sonoma 14.8.2, macOS Sequoia 15.7.2, iOS 26.1 and iPadOS 26.1. A malicious application may cause unexpected changes in memory shared between processes.

secdb@infosec.exchange at 2026-03-20T18:00:21.000Z ##

🚨 [CISA-2026:0320] CISA Adds 5 Known Exploited Vulnerabilities to Catalog (https://secdb.nttzen.cloud/security-advisory/detail/CISA-2026:0320)

CISA has added 5 new vulnerabilities to its Known Exploited Vulnerabilities Catalog, based on evidence of active exploitation. These types of vulnerabilities are a frequent attack vector for malicious cyber actors and pose significant risk to the federal enterprise.

⚠️ CVE-2025-31277 (https://secdb.nttzen.cloud/cve/detail/CVE-2025-31277)
- Name: Apple Multiple Products Buffer Overflow Vulnerability
- Action: Apply mitigations per vendor instructions, follow applicable BOD 22-01 guidance for cloud services, or discontinue use of the product if mitigations are unavailable.
- Known To Be Used in Ransomware Campaigns? Unknown
- Vendor: Apple
- Product: Multiple Products
- Notes: https://support.apple.com/en-us/124147 ; https://support.apple.com/en-us/124149 ; https://support.apple.com/en-us/124152 ; https://support.apple.com/en-us/124153 ; https://support.apple.com/en-us/124155 ; https://nvd.nist.gov/vuln/detail/CVE-2025-31277

⚠️ CVE-2025-32432 (https://secdb.nttzen.cloud/cve/detail/CVE-2025-32432)
- Name: Craft CMS Code Injection Vulnerability
- Action: Apply mitigations per vendor instructions, follow applicable BOD 22-01 guidance for cloud services, or discontinue use of the product if mitigations are unavailable.
- Known To Be Used in Ransomware Campaigns? Unknown
- Vendor: Craft CMS
- Product: Craft CMS
- Notes: https://craftcms.com/knowledge-base/craft-cms-cve-2025-32432 ; https://github.com/craftcms/cms/security/advisories/GHSA-f3gw-9ww9-jmc3 ; https://nvd.nist.gov/vuln/detail/CVE-2025-32432

⚠️ CVE-2025-43510 (https://secdb.nttzen.cloud/cve/detail/CVE-2025-43510)
- Name: Apple Multiple Products Improper Locking Vulnerability
- Action: Apply mitigations per vendor instructions, follow applicable BOD 22-01 guidance for cloud services, or discontinue use of the product if mitigations are unavailable.
- Known To Be Used in Ransomware Campaigns? Unknown
- Vendor: Apple
- Product: Multiple Products
- Notes: https://support.apple.com/en-us/125632 ; https://support.apple.com/en-us/125633 ; https://support.apple.com/en-us/125634 ; https://support.apple.com/en-us/125635 ; https://support.apple.com/en-us/125636 ; https://support.apple.com/en-us/125637 ; https://support.apple.com/en-us/125638 ; https://support.apple.com/en-us/125639 ; https://nvd.nist.gov/vuln/detail/CVE-2025-43510

⚠️ CVE-2025-54068 (https://secdb.nttzen.cloud/cve/detail/CVE-2025-54068)
- Name: Laravel Livewire Code Injection Vulnerability
- Action: Apply mitigations per vendor instructions, follow applicable BOD 22-01 guidance for cloud services, or discontinue use of the product if mitigations are unavailable.
- Known To Be Used in Ransomware Campaigns? Unknown
- Vendor: Laravel
- Product: Livewire
- Notes: https://github.com/livewire/livewire/security/advisories/GHSA-29cq-5w36-x7w3 ; https://github.com/livewire/livewire/commit/ef04be759da41b14d2d129e670533180a44987dc ; https://nvd.nist.gov/vuln/detail/CVE-2025-54068

#SecDB #InfoSec #CVE #CISA_KEV #cisa_20260320 #cisa20260320 #cve_2025_31277 #cve_2025_32432 #cve_2025_43510 #cve_2025_43520 #cve_2025_54068 #cve202531277 #cve202532432 #cve202543510 #cve202543520 #cve202554068

##

cisakevtracker@mastodon.social at 2026-03-20T16:01:44.000Z ##

##

AAKL@infosec.exchange at 2026-03-20T16:01:15.000Z ##

Looks like CISA has added to the KEV catalogue. Today's winner is Apple.

- CVE-2025-31277: Apple Multiple Products Buffer Overflow Vulnerability https://www.cve.org/CVERecord?id=CVE-2025-31277

- CVE-2025-43520: Apple Multiple Products Classic Buffer Overflow Vulnerability https://www.cve.org/CVERecord?id=CVE-2025-43520

- CVE-2025-43510: Apple Multiple Products Improper Locking Vulnerability https://www.cve.org/CVERecord?id=CVE-2025-43510

- CVE-2025-54068: Laravel Livewire Code Injection Vulnerability https://www.cve.org/CVERecord?id=CVE-2025-54068

- CVE-2025-32432: Craft CMS Code Injection Vulnerability https://www.cve.org/CVERecord?id=CVE-2025-32432 #CISA #Apple #infosec #vulnerability

##

CVE-2026-4492
(8.8 HIGH)

EPSS: 0.05%

updated 2026-03-20T18:16:17.383000

1 posts

A vulnerability was found in Tenda A18 Pro 02.03.02.28. The affected element is the function set_qosMib_list of the file /goform/formSetQosBand. Performing a manipulation of the argument list results in stack-based buffer overflow. The attack is possible to be carried out remotely. The exploit has been made public and could be used.

thehackerwire@mastodon.social at 2026-03-20T20:01:20.000Z ##

🟠 CVE-2026-4492 - High (8.8)

A vulnerability was found in Tenda A18 Pro 02.03.02.28. The affected element is the function set_qosMib_list of the file /goform/formSetQosBand. Performing a manipulation of the argument list results in stack-based buffer overflow. The attack is p...

🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-4492/

#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack

##

CVE-2026-4458
(8.8 HIGH)

EPSS: 0.03%

updated 2026-03-20T17:58:37.903000

2 posts

Use after free in Extensions in Google Chrome prior to 146.0.7680.153 allowed an attacker who convinced a user to install a malicious extension to potentially exploit heap corruption via a crafted Chrome Extension. (Chromium security severity: High)

thehackerwire@mastodon.social at 2026-03-22T02:00:15.000Z ##

🟠 CVE-2026-4458 - High (8.8)

Use after free in Extensions in Google Chrome prior to 146.0.7680.153 allowed an attacker who convinced a user to install a malicious extension to potentially exploit heap corruption via a crafted Chrome Extension. (Chromium security severity: High)

🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-4458/

#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack

##

thehackerwire@mastodon.social at 2026-03-22T02:00:15.000Z ##

🟠 CVE-2026-4458 - High (8.8)

Use after free in Extensions in Google Chrome prior to 146.0.7680.153 allowed an attacker who convinced a user to install a malicious extension to potentially exploit heap corruption via a crafted Chrome Extension. (Chromium security severity: High)

🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-4458/

#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack

##

CVE-2026-4460
(8.8 HIGH)

EPSS: 0.07%

updated 2026-03-20T17:57:46.137000

2 posts

Out of bounds read in Skia in Google Chrome prior to 146.0.7680.153 allowed a remote attacker to perform an out of bounds memory read via a crafted HTML page. (Chromium security severity: High)

thehackerwire@mastodon.social at 2026-03-22T02:00:35.000Z ##

🟠 CVE-2026-4460 - High (8.8)

Out of bounds read in Skia in Google Chrome prior to 146.0.7680.153 allowed a remote attacker to perform an out of bounds memory read via a crafted HTML page. (Chromium security severity: High)

updated 2026-03-20T15:32:14

2 posts

Heap buffer overflow in WebRTC in Google Chrome prior to 146.0.7680.153 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High)

thehackerwire@mastodon.social at 2026-03-22T02:33:31.000Z ##

🟠 CVE-2026-4463 - High (8.8)

Heap buffer overflow in WebRTC in Google Chrome prior to 146.0.7680.153 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High)

🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-4463/

#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack

##

thehackerwire@mastodon.social at 2026-03-22T02:33:31.000Z ##

🟠 CVE-2026-4463 - High (8.8)

Heap buffer overflow in WebRTC in Google Chrome prior to 146.0.7680.153 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High)

🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-4463/

#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack

##

CVE-2026-4462
(8.8 HIGH)

EPSS: 0.07%

updated 2026-03-20T15:32:14

2 posts

Out of bounds read in Blink in Google Chrome prior to 146.0.7680.153 allowed a remote attacker to perform an out of bounds memory read via a crafted HTML page. (Chromium security severity: High)

thehackerwire@mastodon.social at 2026-03-22T02:33:22.000Z ##

🟠 CVE-2026-4462 - High (8.8)

Out of bounds read in Blink in Google Chrome prior to 146.0.7680.153 allowed a remote attacker to perform an out of bounds memory read via a crafted HTML page. (Chromium security severity: High)

🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-4462/

#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack

##

thehackerwire@mastodon.social at 2026-03-22T02:33:22.000Z ##

🟠 CVE-2026-4462 - High (8.8)

Out of bounds read in Blink in Google Chrome prior to 146.0.7680.153 allowed a remote attacker to perform an out of bounds memory read via a crafted HTML page. (Chromium security severity: High)

🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-4462/

#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack

##

CVE-2026-21992
(9.8 CRITICAL)

EPSS: 0.03%

updated 2026-03-20T15:32:14

9 posts

Vulnerability in the Oracle Identity Manager product of Oracle Fusion Middleware (component: REST WebServices) and Oracle Web Services Manager product of Oracle Fusion Middleware (component: Web Services Security). Supported versions that are affected are 12.2.1.4.0 and 14.1.2.1.0. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise Oracle

1 repos

https://github.com/TEXploited/CVE-2026-21992

thehackerwire@mastodon.social at 2026-03-22T01:41:03.000Z ##

🔴 CVE-2026-21992 - Critical (9.8)

Vulnerability in the Oracle Identity Manager product of Oracle Fusion Middleware (component: REST WebServices) and Oracle Web Services Manager product of Oracle Fusion Middleware (component: Web Services Security). Supported versions that are aff...

🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-21992/

#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack

##

hackerworkspace at 2026-03-21T17:47:47.977Z ##

Oracle Patches Critical CVE-2026-21992 Enabling Unauthenticated RCE in Identity Manager

https://thehackernews.com/2026/03/oracle-patches-critical-cve-2026-21992.html

Short summary: https://hackerworkspace.com/article/oracle-patches-critical-cve-2026-21992-enabling-unauthenticated-rce-in-identity-manager

#cybersecurity #vulnerability #exploit

##

youranonnewsirc@nerdculture.de at 2026-03-21T16:17:40.000Z ##

Geopolitical tensions remain high as the Iran conflict disrupts the Strait of Hormuz, impacting oil prices and global tech supply chains due to halted helium output from Qatar (Mar 20-21, 2026). In technology, Google introduced a mandatory 24-hour wait for Android sideloading from unverified developers (Mar 20, 2026), while Nvidia showcased new AI chips at GTC 2026 (Mar 20, 2026). Cybersecurity saw Oracle patch a critical RCE vulnerability (CVE-2026-21992) (Mar 21, 2026), and Iranian-linked hackers targeted medical tech firm Stryker, wiping devices (Mar 20, 2026). A Trivy supply chain attack also deployed 'CanisterWorm' across npm packages (Mar 20, 2026).

#Cybersecurity #Geopolitics #TechNews

##

allaboutsecurity@mastodon.social at 2026-03-21T09:02:37.000Z ##

CVE-2026-21992: Oracle schließt RCE-Lücke in Fusion Middleware außerhalb des regulären Patch-Zyklus

Die als CVE-2026-21992 klassifizierte Schwachstelle erlaubt es Angreifern, ohne Anmeldedaten beliebigen Code auf betroffenen Systemen auszuführen – sofern diese über das Netz erreichbar sind.

https://www.all-about-security.de/cve-2026-21992-oracle-schliesst-rce-luecke-in-fusion-middleware-ausserhalb-des-regulaeren-patch-zyklus/

#oracle #cve #RCE #fusionMiddleware

##

thehackerwire@mastodon.social at 2026-03-22T01:41:03.000Z ##

🔴 CVE-2026-21992 - Critical (9.8)

Vulnerability in the Oracle Identity Manager product of Oracle Fusion Middleware (component: REST WebServices) and Oracle Web Services Manager product of Oracle Fusion Middleware (component: Web Services Security). Supported versions that are aff...

🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-21992/

#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack

##

hackerworkspace@infosec.exchange at 2026-03-21T17:47:47.000Z ##

Oracle Patches Critical CVE-2026-21992 Enabling Unauthenticated RCE in Identity Manager

https://thehackernews.com/2026/03/oracle-patches-critical-cve-2026-21992.html

Short summary: https://hackerworkspace.com/article/oracle-patches-critical-cve-2026-21992-enabling-unauthenticated-rce-in-identity-manager

#cybersecurity #vulnerability #exploit

##

youranonnewsirc@nerdculture.de at 2026-03-21T16:17:40.000Z ##

Geopolitical tensions remain high as the Iran conflict disrupts the Strait of Hormuz, impacting oil prices and global tech supply chains due to halted helium output from Qatar (Mar 20-21, 2026). In technology, Google introduced a mandatory 24-hour wait for Android sideloading from unverified developers (Mar 20, 2026), while Nvidia showcased new AI chips at GTC 2026 (Mar 20, 2026). Cybersecurity saw Oracle patch a critical RCE vulnerability (CVE-2026-21992) (Mar 21, 2026), and Iranian-linked hackers targeted medical tech firm Stryker, wiping devices (Mar 20, 2026). A Trivy supply chain attack also deployed 'CanisterWorm' across npm packages (Mar 20, 2026).

#Cybersecurity #Geopolitics #TechNews

##

beyondmachines1@infosec.exchange at 2026-03-21T09:01:48.000Z ##

Oracle Issues Emergency Patch for Critical Vulnerability in Identity Manager, Web Services Manager

Oracle released an emergency patch for a critical remote code execution vulnerability (CVE-2026-21992) in Identity Manager and Web Services Manager that allows unauthenticated attackers to take over systems.

**If you're running Oracle Fusion Middleware , Oracle Identity Manager or Oracle Web Services Manager, this is important and probably urgent. If posssible, isolate the system to trusted networks only and use a Web Application Firewall with custom rules for this endoint. Then patch ASAP, because this flaw will be exploited, very soon.**
#cybersecurity #infosec #advisory #vulnerability
https://beyondmachines.net/event_details/oracle-issues-emergency-patch-for-critical-vulnerability-in-identity-manager-web-services-manager-g-u-z-h-t/gD2P6Ple2L

##

campuscodi@mastodon.social at 2026-03-20T15:48:39.000Z ##

Oracle issues an out-of-band security update for a pre-auth RCE in Oracle Identity Manager

https://www.oracle.com/security-alerts/alert-cve-2026-21992.html

##

CVE-2026-4447
(8.8 HIGH)

EPSS: 0.09%

updated 2026-03-20T15:32:13

2 posts

Inappropriate implementation in V8 in Google Chrome prior to 146.0.7680.153 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. (Chromium security severity: High)

thehackerwire@mastodon.social at 2026-03-22T04:01:59.000Z ##

🟠 CVE-2026-4447 - High (8.8)

Inappropriate implementation in V8 in Google Chrome prior to 146.0.7680.153 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. (Chromium security severity: High)

🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-4447/

#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack

##

thehackerwire@mastodon.social at 2026-03-22T04:01:59.000Z ##

🟠 CVE-2026-4447 - High (8.8)

Inappropriate implementation in V8 in Google Chrome prior to 146.0.7680.153 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. (Chromium security severity: High)

🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-4447/

#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack

##

CVE-2026-4446
(8.8 HIGH)

EPSS: 0.09%

updated 2026-03-20T15:32:13

2 posts

Use after free in WebRTC in Google Chrome prior to 146.0.7680.153 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High)

thehackerwire@mastodon.social at 2026-03-22T04:01:50.000Z ##

🟠 CVE-2026-4446 - High (8.8)

Use after free in WebRTC in Google Chrome prior to 146.0.7680.153 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High)

🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-4446/

#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack

##

thehackerwire@mastodon.social at 2026-03-22T04:01:50.000Z ##

🟠 CVE-2026-4446 - High (8.8)

Use after free in WebRTC in Google Chrome prior to 146.0.7680.153 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High)

🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-4446/

#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack

##

CVE-2026-4445
(8.8 HIGH)

EPSS: 0.09%

updated 2026-03-20T15:32:13

2 posts

Use after free in WebRTC in Google Chrome prior to 146.0.7680.153 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High)

thehackerwire@mastodon.social at 2026-03-22T04:00:33.000Z ##

🟠 CVE-2026-4445 - High (8.8)

Use after free in WebRTC in Google Chrome prior to 146.0.7680.153 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High)

🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-4445/

#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack

##

thehackerwire@mastodon.social at 2026-03-22T04:00:33.000Z ##

🟠 CVE-2026-4445 - High (8.8)

Use after free in WebRTC in Google Chrome prior to 146.0.7680.153 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High)

🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-4445/

#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack

##

CVE-2026-4444
(8.8 HIGH)

EPSS: 0.06%

updated 2026-03-20T15:32:13

2 posts

Stack buffer overflow in WebRTC in Google Chrome prior to 146.0.7680.153 allowed a remote attacker to potentially exploit stack corruption via a crafted HTML page. (Chromium security severity: High)

thehackerwire@mastodon.social at 2026-03-22T04:00:24.000Z ##

🟠 CVE-2026-4444 - High (8.8)

Stack buffer overflow in WebRTC in Google Chrome prior to 146.0.7680.153 allowed a remote attacker to potentially exploit stack corruption via a crafted HTML page. (Chromium security severity: High)

🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-4444/

#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack

##

thehackerwire@mastodon.social at 2026-03-22T04:00:24.000Z ##

🟠 CVE-2026-4444 - High (8.8)

Stack buffer overflow in WebRTC in Google Chrome prior to 146.0.7680.153 allowed a remote attacker to potentially exploit stack corruption via a crafted HTML page. (Chromium security severity: High)

🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-4444/

#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack

##

CVE-2026-4456
(8.8 HIGH)

EPSS: 0.10%

updated 2026-03-20T15:32:13

2 posts

Use after free in Digital Credentials API in Google Chrome prior to 146.0.7680.153 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page. (Chromium security severity: High)

thehackerwire@mastodon.social at 2026-03-22T03:00:59.000Z ##

🟠 CVE-2026-4456 - High (8.8)

Use after free in Digital Credentials API in Google Chrome prior to 146.0.7680.153 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page. (Chromium security severity: High)

🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-4456/

#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack

##

thehackerwire@mastodon.social at 2026-03-22T03:00:59.000Z ##

🟠 CVE-2026-4456 - High (8.8)

Use after free in Digital Credentials API in Google Chrome prior to 146.0.7680.153 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page. (Chromium security severity: High)

🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-4456/

#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack

##

CVE-2026-4455
(8.8 HIGH)

EPSS: 0.07%

updated 2026-03-20T15:32:13

2 posts

Heap buffer overflow in PDFium in Google Chrome prior to 146.0.7680.153 allowed a remote attacker to potentially exploit heap corruption via a crafted PDF file. (Chromium security severity: High)

thehackerwire@mastodon.social at 2026-03-22T03:00:49.000Z ##

🟠 CVE-2026-4455 - High (8.8)

Heap buffer overflow in PDFium in Google Chrome prior to 146.0.7680.153 allowed a remote attacker to potentially exploit heap corruption via a crafted PDF file. (Chromium security severity: High)

🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-4455/

#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack

##

thehackerwire@mastodon.social at 2026-03-22T03:00:49.000Z ##

🟠 CVE-2026-4455 - High (8.8)

Heap buffer overflow in PDFium in Google Chrome prior to 146.0.7680.153 allowed a remote attacker to potentially exploit heap corruption via a crafted PDF file. (Chromium security severity: High)

🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-4455/

#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack

##

CVE-2026-4451
(8.8 HIGH)

EPSS: 0.10%

updated 2026-03-20T15:32:13

2 posts

Insufficient validation of untrusted input in Navigation in Google Chrome prior to 146.0.7680.153 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page. (Chromium security severity: High)

thehackerwire@mastodon.social at 2026-03-22T02:34:01.000Z ##

🟠 CVE-2026-4451 - High (8.8)

Insufficient validation of untrusted input in Navigation in Google Chrome prior to 146.0.7680.153 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page. (Chromium securit...

🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-4451/

#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack

##

thehackerwire@mastodon.social at 2026-03-22T02:34:01.000Z ##

🟠 CVE-2026-4451 - High (8.8)

Insufficient validation of untrusted input in Navigation in Google Chrome prior to 146.0.7680.153 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page. (Chromium securit...

🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-4451/

#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack

##

CVE-2026-4486
(8.8 HIGH)

EPSS: 0.08%

updated 2026-03-20T15:31:20

1 posts

A vulnerability was found in D-Link DIR-513 1.10. This affects the function formEasySetPassword of the file /goform/formEasySetPassword of the component Web Service. The manipulation of the argument curTime results in stack-based buffer overflow. The attack may be performed from remote. The exploit has been made public and could be used. This vulnerability only affects products that are no longer

thehackerwire@mastodon.social at 2026-03-20T21:22:43.000Z ##

🟠 CVE-2026-4486 - High (8.8)

A vulnerability was found in D-Link DIR-513 1.10. This affects the function formEasySetPassword of the file /goform/formEasySetPassword of the component Web Service. The manipulation of the argument curTime results in stack-based buffer overflow. ...

🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-4486/

#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack

##

CVE-2026-4457
(8.8 HIGH)

EPSS: 0.07%

updated 2026-03-20T15:31:12

2 posts

Type Confusion in V8 in Google Chrome prior to 146.0.7680.153 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High)

thehackerwire@mastodon.social at 2026-03-22T04:00:13.000Z ##

🟠 CVE-2026-4457 - High (8.8)

Type Confusion in V8 in Google Chrome prior to 146.0.7680.153 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High)

🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-4457/

#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack

##

thehackerwire@mastodon.social at 2026-03-22T04:00:13.000Z ##

🟠 CVE-2026-4457 - High (8.8)

Type Confusion in V8 in Google Chrome prior to 146.0.7680.153 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High)

🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-4457/

#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack

##

CVE-2026-4454
(8.8 HIGH)

EPSS: 0.10%

updated 2026-03-20T15:31:12

2 posts

Use after free in Network in Google Chrome prior to 146.0.7680.153 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High)

thehackerwire@mastodon.social at 2026-03-22T03:00:40.000Z ##

🟠 CVE-2026-4454 - High (8.8)

Use after free in Network in Google Chrome prior to 146.0.7680.153 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High)

🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-4454/

#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack

##

thehackerwire@mastodon.social at 2026-03-22T03:00:40.000Z ##

🟠 CVE-2026-4454 - High (8.8)

Use after free in Network in Google Chrome prior to 146.0.7680.153 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High)

🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-4454/

#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack

##

CVE-2026-4461
(8.8 HIGH)

EPSS: 0.07%

updated 2026-03-20T15:31:12

2 posts

Inappropriate implementation in V8 in Google Chrome prior to 146.0.7680.153 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High)

thehackerwire@mastodon.social at 2026-03-22T02:33:13.000Z ##

🟠 CVE-2026-4461 - High (8.8)

Inappropriate implementation in V8 in Google Chrome prior to 146.0.7680.153 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High)

🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-4461/

#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack

##

thehackerwire@mastodon.social at 2026-03-22T02:33:13.000Z ##

🟠 CVE-2026-4461 - High (8.8)

Inappropriate implementation in V8 in Google Chrome prior to 146.0.7680.153 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High)

🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-4461/

#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack

##

CVE-2026-4459
(8.8 HIGH)

EPSS: 0.07%

updated 2026-03-20T15:31:12

2 posts

Out of bounds read and write in WebAudio in Google Chrome prior to 146.0.7680.153 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High)

thehackerwire@mastodon.social at 2026-03-22T02:00:25.000Z ##

🟠 CVE-2026-4459 - High (8.8)

Out of bounds read and write in WebAudio in Google Chrome prior to 146.0.7680.153 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High)

updated 2026-03-20T15:16:15.670000

2 posts

When applications specify HTTP response headers for servlet applications using Spring Security, there is the possibility that the HTTP Headers will not be written. This issue affects Spring Security: from 5.7.0 through 5.7.21, from 5.8.0 through 5.8.23, from 6.3.0 through 6.3.14, from 6.4.0 through 6.4.14, from 6.5.0 through 6.5.8, from 7.0.0 through 7.0.3.

updated 2026-03-20T13:37:50.737000

2 posts

AutoMapper is a convention-based object-object mapper in .NET. Versions prior to 15.1.1 and 16.1.1 are vulnerable to a Denial of Service (DoS) attack. When mapping deeply nested object graphs, the library uses recursive method calls without enforcing a default maximum depth limit. This allows an attacker to provide a specially crafted object graph that exhausts the thread's stack memory, triggerin

thehackerwire@mastodon.social at 2026-03-22T01:40:45.000Z ##

🟠 CVE-2026-32933 - High (7.5)

AutoMapper is a convention-based object-object mapper in .NET. Versions prior to 15.1.1 and 16.1.1 are vulnerable to a Denial of Service (DoS) attack. When mapping deeply nested object graphs, the library uses recursive method calls without enforc...

🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-32933/

#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack

##

thehackerwire@mastodon.social at 2026-03-22T01:40:45.000Z ##

🟠 CVE-2026-32933 - High (7.5)

AutoMapper is a convention-based object-object mapper in .NET. Versions prior to 15.1.1 and 16.1.1 are vulnerable to a Denial of Service (DoS) attack. When mapping deeply nested object graphs, the library uses recursive method calls without enforc...

🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-32933/

#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack

##

CVE-2026-33037
(8.1 HIGH)

EPSS: 0.23%

updated 2026-03-20T13:37:50.737000

2 posts

WWBN AVideo is an open source video platform. In versions 25.0 and below, the official Docker deployment files (docker-compose.yml, env.example) ship with the admin password set to "password", which is automatically used to seed the admin account during installation, meaning any instance deployed without overriding SYSTEM_ADMIN_PASSWORD is immediately vulnerable to trivial administrative takeover.

thehackerwire@mastodon.social at 2026-03-20T23:04:06.000Z ##

🟠 CVE-2026-33037 - High (8.1)

WWBN AVideo is an open source video platform. In versions 25.0 and below, the official Docker deployment files (docker-compose.yml, env.example) ship with the admin password set to "password", which is automatically used to seed the admin account ...

🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-33037/

#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack

##

thehackerwire@mastodon.social at 2026-03-20T23:00:46.000Z ##

🟠 CVE-2026-33037 - High (8.1)

WWBN AVideo is an open source video platform. In versions 25.0 and below, the official Docker deployment files (docker-compose.yml, env.example) ship with the admin password set to "password", which is automatically used to seed the admin account ...

🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-33037/

#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack

##

CVE-2026-4038
(9.8 CRITICAL)

EPSS: 0.06%

updated 2026-03-20T13:37:50.737000

2 posts

The Aimogen Pro plugin for WordPress is vulnerable to Arbitrary Function Call that can lead to privilege escalation due to a missing capability check on the 'aiomatic_call_ai_function_realtime' function in all versions up to, and including, 2.7.5. This makes it possible for unauthenticated attackers to call arbitrary WordPress functions such as 'update_option' to update the default role for regist

thehackerwire@mastodon.social at 2026-03-20T23:01:23.000Z ##

🔴 CVE-2026-4038 - Critical (9.8)

The Aimogen Pro plugin for WordPress is vulnerable to Arbitrary Function Call that can lead to privilege escalation due to a missing capability check on the 'aiomatic_call_ai_function_realtime' function in all versions up to, and including, 2.7.5....

🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-4038/

#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack

##

offseq@infosec.exchange at 2026-03-20T04:30:27.000Z ##

⚠️ CVE-2026-4038 (CRITICAL): Aimogen Pro WP plugin lets unauthenticated attackers gain admin via missing auth in aiomatic_call_ai_function_realtime. All versions affected. Disable plugin & monitor site integrity! https://radar.offseq.com/threat/cve-2026-4038-cwe-862-missing-authorization-in-cod-c5151216 #OffSeq #WordPress #CVE20264038

##

CVE-2026-33036
(7.5 HIGH)

EPSS: 0.04%

updated 2026-03-20T13:37:50.737000

1 posts

fast-xml-parser allows users to process XML from JS object without C/C++ based libraries or callbacks. Versions 4.0.0-beta.3 through 5.5.5 contain a bypass vulnerability where numeric character references (&#NNN;, &#xHH;) and standard XML entities completely evade the entity expansion limits (e.g., maxTotalExpansions, maxExpandedLength) added to fix CVE-2026-26278, enabling XML entity expansion De

thehackerwire@mastodon.social at 2026-03-20T23:00:42.000Z ##

🟠 CVE-2026-33036 - High (7.5)

fast-xml-parser allows users to process XML from JS object without C/C++ based libraries or callbacks. Versions 4.0.0-beta.3 through 5.5.5 contain a bypass vulnerability where numeric character references (&#NNN;, &#xHH;) and standard XML entities...

🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-33036/

#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack

##

CVE-2026-4478
(8.1 HIGH)

EPSS: 0.01%

updated 2026-03-20T13:37:50.737000

2 posts

A vulnerability was identified in Yi Technology YI Home Camera 2 2.1.1_20171024151200. This impacts an unknown function of the file home/web/ipc of the component HTTP Firmware Update Handler. The manipulation leads to improper verification of cryptographic signature. The attack is possible to be carried out remotely. The complexity of an attack is rather high. The exploitability is said to be diff

updated 2026-03-20T13:37:50.737000

2 posts

A security issue was discovered in ingress-nginx where a combination of Ingress annotations can be used to inject configuration into nginx. This can lead to arbitrary code execution in the context of the ingress-nginx controller, and disclosure of Secrets accessible to the controller. (Note that in the default installation, the controller can access all Secrets cluster-wide.)

1 repos

https://github.com/stuartMoorhouse/CVE-2026-4342

thehackerwire@mastodon.social at 2026-03-19T22:18:53.000Z ##

🟠 CVE-2026-4342 - High (8.8)

A security issue was discovered in ingress-nginx where a combination of Ingress annotations can be used to inject configuration into nginx. This can lead to arbitrary code execution in the context of the ingress-nginx controller, and disclosure of...

🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-4342/

#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack

##

thehackerwire@mastodon.social at 2026-03-19T22:17:53.000Z ##

🟠 CVE-2026-4342 - High (8.8)

A security issue was discovered in ingress-nginx where a combination of Ingress annotations can be used to inject configuration into nginx. This can lead to arbitrary code execution in the context of the ingress-nginx controller, and disclosure of...

🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-4342/

#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack

##

CVE-2026-22324
(8.1 HIGH)

EPSS: 0.11%

updated 2026-03-20T12:31:12

1 posts

Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion') vulnerability in ThemeREX Melania allows PHP Local File Inclusion.This issue affects Melania: from n/a through 2.5.0.

thehackerwire@mastodon.social at 2026-03-20T22:00:31.000Z ##

🟠 CVE-2026-22324 - High (8.1)

Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion') vulnerability in ThemeREX Melania allows PHP Local File Inclusion.This issue affects Melania: from n/a through 2.5.0.

🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-22324/

#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack

##

CVE-2026-4475
(8.8 HIGH)

EPSS: 0.02%

updated 2026-03-20T09:32:16

3 posts

A vulnerability has been found in Yi Technology YI Home Camera 2 2.1.1_20171024151200. The affected element is an unknown function of the file home/web/ipc. Such manipulation leads to hard-coded credentials. Access to the local network is required for this attack to succeed. The exploit has been disclosed to the public and may be used. The vendor was contacted early about this disclosure but did n

thehackerwire@mastodon.social at 2026-03-20T23:03:47.000Z ##

🟠 CVE-2026-4475 - High (8.8)

A vulnerability has been found in Yi Technology YI Home Camera 2 2.1.1_20171024151200. The affected element is an unknown function of the file home/web/ipc. Such manipulation leads to hard-coded credentials. Access to the local network is required...

🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-4475/

#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack

##

thehackerwire@mastodon.social at 2026-03-20T23:00:27.000Z ##

🟠 CVE-2026-4475 - High (8.8)

A vulnerability has been found in Yi Technology YI Home Camera 2 2.1.1_20171024151200. The affected element is an unknown function of the file home/web/ipc. Such manipulation leads to hard-coded credentials. Access to the local network is required...

🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-4475/

#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack

##

thehackerwire@mastodon.social at 2026-03-20T22:17:41.000Z ##

🟠 CVE-2026-4475 - High (8.8)

A vulnerability has been found in Yi Technology YI Home Camera 2 2.1.1_20171024151200. The affected element is an unknown function of the file home/web/ipc. Such manipulation leads to hard-coded credentials. Access to the local network is required...

🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-4475/

#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack

##

CVE-2026-32985
(9.8 CRITICAL)

EPSS: 0.64%

updated 2026-03-20T00:31:34

2 posts

Xerte Online Toolkits versions 3.14 and earlier contain an unauthenticated arbitrary file upload vulnerability in the template import functionality. The issue exists in /website_code/php/import/import.php where missing authentication checks allow an attacker to upload a crafted ZIP archive disguised as a project template. The archive can contain a malicious PHP payload placed in the media/ directo

Matchbook3469@mastodon.social at 2026-03-21T13:36:39.000Z ##

⛔ New security advisory:

CVE-2026-32985 affects multiple systems.

• Impact: Remote code execution or complete system compromise possible
• Risk: Attackers can gain full control of affected systems
• Mitigation: Patch immediately or isolate affected systems

Full breakdown:
https://www.yazoul.net/advisory/cve/cve-2026-32985-xerte-online-toolkits-rce-vulnerability-patch-immediately

#Cybersecurity #PatchNow #InfoSecCommunity

##

offseq@infosec.exchange at 2026-03-20T03:00:25.000Z ##

🔴 CRITICAL: CVE-2026-32985 in Xerte Online Toolkits ≤3.14 lets attackers upload PHP via import.php and gain RCE — no auth needed! Patch ASAP or restrict access, disable PHP in user dirs. Details: https://radar.offseq.com/threat/cve-2026-32985-cwe-306-missing-authentication-for--04629a96 #OffSeq #CVE202632985 #infosec #RCE

##

CVE-2026-32194
(9.8 CRITICAL)

EPSS: 0.10%

updated 2026-03-20T00:31:34

2 posts

Improper neutralization of special elements used in a command ('command injection') in Microsoft Bing Images allows an unauthorized attacker to execute code over a network.

1 repos

https://github.com/z3r0h3ro/CVE-2026-32194-POC

thehackerwire@mastodon.social at 2026-03-19T22:19:02.000Z ##

🔴 CVE-2026-32194 - Critical (9.8)

Improper neutralization of special elements used in a command ('command injection') in Microsoft Bing Images allows an unauthorized attacker to execute code over a network.

🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-32194/

#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack

##

thehackerwire@mastodon.social at 2026-03-19T22:18:02.000Z ##

🔴 CVE-2026-32194 - Critical (9.8)

Improper neutralization of special elements used in a command ('command injection') in Microsoft Bing Images allows an unauthorized attacker to execute code over a network.

🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-32194/

#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack

##

CVE-2026-33001
(8.8 HIGH)

A vulnerability in the web-based management interface of Cisco Secure Firewall Management Center (FMC) Software could allow an unauthenticated, remote attacker to execute arbitrary Java code as root on an affected device. This vulnerability is due to insecure deserialization of a user-supplied Java byte stream. An attacker could exploit this vulnerability by sending a crafted serialized Java obj

3 repos

https://github.com/Sushilsin/CVE-2026-20131

https://github.com/sak110/CVE-2026-20131

https://github.com/p3Nt3st3r-sTAr/CVE-2026-20131-POC

cyberveille@mastobot.ping.moi at 2026-03-21T22:30:12.000Z ##

📢 Interlock Ransomware exploite un zero-day Cisco FMC (CVE-2026-20131) 36 jours avant divulgation
📝 *Amazon Threat Intelligence a dé...
📖 cyberveille : https://cyberveille.ch/posts/2026-03-21-interlock-ransomware-exploite-un-zero-day-cisco-fmc-cve-2026-20131-36-jours-avant-divulgation/
🌐 source : https://aws.amazon.com/fr/blogs/security/amazon-threat-intelligence-teams-identify-interlock-ransomware-campaign-targeting-enterprise-firewalls/
#CVE_2026_20131 #Certify #Cyberveille

##

PC_Fluesterer@social.tchncs.de at 2026-03-21T13:30:30.000Z ##

Cisco Zero-Day 36 Tage vor Update ausgenutzt

Am 2026-03-04 hat Cisco ein Update gegen die Sicherheitslücke CVE-2026-20131 veröffentlicht. Sie hat die Einstufung 10 von 10 erhalten: die schlimmste aller vorstellbaren Schwachstellen. Falls¹ die Verwaltungs-Oberfläche (Management Interface) der Secure Firewall Management Center (FMC) Software und Security Cloud Control (SCC) Firewall Management Software aus dem Internet erreichbar ist, kann ein entfernter Angreifer ohne Autorisierung beliebigen Code mit Administrator-Rechten auf den betroffenen Geräten ausführen (RCE). Sehr angemessen für Geräte, die

https://www.pc-fluesterer.info/wordpress/2026/03/21/cisco-zero-day-36-tage-vor-update-ausgenutzt/

#Allgemein #Empfehlung #Hintergrund #Warnung #0day #closedsource #cybercrime #erpresser #exploits #firewall #hersteller #hintertür #sicherheit #UnplugTrump #vorfälle

##

PC_Fluesterer@social.tchncs.de at 2026-03-21T13:30:30.000Z ##

Cisco Zero-Day 36 Tage vor Update ausgenutzt

Am 2026-03-04 hat Cisco ein Update gegen die Sicherheitslücke CVE-2026-20131 veröffentlicht. Sie hat die Einstufung 10 von 10 erhalten: die schlimmste aller vorstellbaren Schwachstellen. Falls¹ die Verwaltungs-Oberfläche (Management Interface) der Secure Firewall Management Center (FMC) Software und Security Cloud Control (SCC) Firewall Management Software aus dem Internet erreichbar ist, kann ein entfernter Angreifer ohne Autorisierung beliebigen Code mit Administrator-Rechten auf den betroffenen Geräten ausführen (RCE). Sehr angemessen für Geräte, die

https://www.pc-fluesterer.info/wordpress/2026/03/21/cisco-zero-day-36-tage-vor-update-ausgenutzt/

#Allgemein #Empfehlung #Hintergrund #Warnung #0day #closedsource #cybercrime #erpresser #exploits #firewall #hersteller #hintertür #sicherheit #UnplugTrump #vorfälle

##

gtronix@infosec.exchange at 2026-03-20T18:00:42.000Z ##

"CISA orders feds to patch max-severity Cisco flaw by Sunday"

"[...] The Cybersecurity and Infrastructure Security Agency (CISA) has ordered federal agencies to patch a maximum-severity vulnerability, CVE-2026-20131, in Cisco Secure Firewall Management Center (FMC) by Sunday, March 22."

https://www.bleepingcomputer.com/news/security/cisa-orders-feds-to-patch-max-severity-cisco-flaw-by-sunday/

#Cybersecurity

##

AAKL@infosec.exchange at 2026-03-20T16:26:29.000Z ##

The campaign is exploiting "critical vulnerability (CVE-2026-20131) in Cisco Secure Firewall Management Center (FMC), enabling unauthenticated remote code execution as root. The campaign combines edge-device exploitation, custom malware tooling, and double extortion tactics, indicating a mature and targeted ransomware operation."

FortiGuard's outbreak alerts listed a critical Interlock ransomware attack yesterday: https://fortiguard.fortinet.com/outbreak-alert/interlock-ransomware @FortiGuardLabs #infosec #ransomware #Cisco #cyberattack

##

oversecurity@mastodon.social at 2026-03-20T15:20:05.000Z ##

CISA orders feds to patch max-severity Cisco flaw by Sunday

The Cybersecurity and Infrastructure Security Agency (CISA) has ordered federal agencies to patch a maximum-severity vulnerability, CVE-2026-20131,...

🔗️ [Bleepingcomputer] https://link.is.it/eSynqa

##

jbz@indieweb.social at 2026-03-19T21:55:01.000Z ##

⚠️ Ransomware crims abused Cisco 0-day weeks before disclosure

｢ Ransomware criminals exploited CVE-2026-20131, a maximum-severity bug in Cisco Secure Firewall Management Center software, as a zero-day vulnerability more than a month before Cisco patched the hole, according to Amazon security boss CJ Moses ｣
https://www.theregister.com/2026/03/18/amazon_cisco_firewall_0_day_ransomware/

#cisco #0day #Ransomware #infosec

##

CVE-2026-24291
(7.8 HIGH)

EPSS: 0.06%

updated 2026-03-19T18:31:15

2 posts

Incorrect permission assignment for critical resource in Windows Accessibility Infrastructure (ATBroker.exe) allows an authorized attacker to elevate privileges locally.

2 repos

https://github.com/lennertdefauw/CVE-2026-24291

https://github.com/n0isegat3/RegPwnBRc4BOF

secdb at 2026-03-21T21:16:43.840Z ##

🚨 CVE-2026-24291 (RegPwn)
Windows Accessibility Infrastructure (ATBroker.exe) Elevation of Privilege Vulnerability

Incorrect permission assignment for critical resource in Windows Accessibility Infrastructure (ATBroker.exe) allows an authorized attacker to elevate privileges locally.

https://secdb.nttzen.cloud/cve/detail/CVE-2026-24291

#ZEN #SecDB #InfoSec #RegPwn #CVE202624291

##

secdb@infosec.exchange at 2026-03-21T21:16:43.000Z ##

🚨 CVE-2026-24291 (RegPwn)
Windows Accessibility Infrastructure (ATBroker.exe) Elevation of Privilege Vulnerability

Incorrect permission assignment for critical resource in Windows Accessibility Infrastructure (ATBroker.exe) allows an authorized attacker to elevate privileges locally.

https://secdb.nttzen.cloud/cve/detail/CVE-2026-24291

#ZEN #SecDB #InfoSec #RegPwn #CVE202624291

##

CVE-2026-31962
(8.8 HIGH)

EPSS: 0.05%

updated 2026-03-19T17:30:45.370000

1 posts

HTSlib is a library for reading and writing bioinformatics file formats. CRAM is a compressed format which stores DNA sequence alignment data. While most alignment records store DNA sequence and quality values, the format also allows them to omit this data in certain cases to save space. Due to some quirks of the CRAM format, it is necessary to handle these records carefully as they will actually

thehackerwire@mastodon.social at 2026-03-19T21:58:22.000Z ##

🟠 CVE-2026-31962 - High (8.8)

HTSlib is a library for reading and writing bioinformatics file formats. CRAM is a compressed format which stores DNA sequence alignment data. While most alignment records store DNA sequence and quality values, the format also allows them to omit ...

🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-31962/

#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack

##

CVE-2025-58112
(8.8 HIGH)

EPSS: 0.07%

updated 2026-03-19T15:32:24

2 posts

Microsoft Dynamics 365 Customer Engagement (on-premises) 1612 (9.0.2.3034) allows the generation of customized reports via raw SQL queries in an upload of a .rdl (Report Definition Language) file; this is then processed by the SQL Server Reporting Service. An account with the privilege Add Reporting Services Reports can upload a malicious rdl file. If the malicious rdl file is already loaded and i

thehackerwire@mastodon.social at 2026-03-19T22:00:12.000Z ##

🟠 CVE-2025-58112 - High (8.8)

Microsoft Dynamics 365 Customer Engagement (on-premises) 1612 (9.0.2.3034) allows the generation of customized reports via raw SQL queries in an upload of a .rdl (Report Definition Language) file; this is then processed by the SQL Server Reporting...

🔗 https://www.thehackerwire.com/vulnerability/CVE-2025-58112/

#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack

##

thehackerwire@mastodon.social at 2026-03-19T21:58:06.000Z ##

🟠 CVE-2025-58112 - High (8.8)

Microsoft Dynamics 365 Customer Engagement (on-premises) 1612 (9.0.2.3034) allows the generation of customized reports via raw SQL queries in an upload of a .rdl (Report Definition Language) file; this is then processed by the SQL Server Reporting...

🔗 https://www.thehackerwire.com/vulnerability/CVE-2025-58112/

#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack

##

CVE-2026-29856
(7.5 HIGH)

EPSS: 0.04%

updated 2026-03-19T15:32:23

2 posts

An issue in the VirtualHost configuration handling/parser component of aaPanel v7.57.0 allows attackers to cause a Regular Expression Denial of Service (ReDoS) via a crafted input.

thehackerwire@mastodon.social at 2026-03-19T22:00:31.000Z ##

🟠 CVE-2026-29856 - High (7.5)

An issue in the VirtualHost configuration handling/parser component of aaPanel v7.57.0 allows attackers to cause a Regular Expression Denial of Service (ReDoS) via a crafted input.

updated 2026-03-19T15:31:22

3 posts

A malicious actor with access to the network could exploit a Path Traversal vulnerability found in the UniFi Network Application to access files on the underlying system that could be manipulated to access an underlying account.

benzogaga33@mamot.fr at 2026-03-20T16:40:03.000Z ##

Ubiquiti – CVE-2026-22557 : cette faille critique menace votre réseau UniFi https://www.it-connect.fr/ubiquiti-cve-2026-22557-cette-faille-critique-menace-votre-reseau-unifi/ #ActuCybersécurité #Cybersécurité #Vulnérabilité

##

beyondmachines1@infosec.exchange at 2026-03-20T11:01:48.000Z ##

Ubiquiti Patches Critical Account Takeover Flaw in UniFi Network Application

Ubiquiti patched a critical path traversal vulnerability (CVE-2026-22557) and a high-severity NoSQL injection flaw in its UniFi Network Application. These bugs allow attackers to hijack accounts or escalate privileges, potentially compromising entire networking environments.

**If you are using Ubiquiti products, update your UniFi Network Application and UniFi Express firmware ASAP. As usual, first make sure all management interfaces are not exposed to the public internet and are accessible only from trusted networks.**
#cybersecurity #infosec #advisory #vulnerability
https://beyondmachines.net/event_details/ubiquiti-patches-critical-account-takeover-flaw-in-unifi-network-application-0-3-2-q-p/gD2P6Ple2L

##

youranonnewsirc@nerdculture.de at 2026-03-19T23:56:20.000Z ##

Geopolitical tensions surged as Iran targeted Gulf energy after Israeli strikes, spiking oil prices to $118/barrel (March 18-19). In cybersecurity, CISA warned of actively exploited SharePoint flaws (CVE-2026-20963), critical Ubiquiti UniFi (CVE-2026-22557), and Telnetd root-access vulnerabilities (CVE-2026-32746). NVIDIA forecasts $1T AI demand by 2027.
#AnonNews_irc #Cybersecurity #News

##

CVE-2026-30704
(9.1 CRITICAL)

EPSS: 0.04%

updated 2026-03-19T15:16:26.580000

2 posts

The WiFi Extender WDR201A (HW V2.1, FW LFMZX28040922V1.02) exposes an unprotected UART interface through accessible hardware pads on the PCB

thehackerwire@mastodon.social at 2026-03-19T22:00:22.000Z ##

🔴 CVE-2026-30704 - Critical (9.1)

The WiFi Extender WDR201A (HW V2.1, FW LFMZX28040922V1.02) exposes an unprotected UART interface through accessible hardware pads on the PCB

updated 2026-03-19T14:16:15.103000

2 posts

telnetd in GNU inetutils through 2.7 allows an out-of-bounds write in the LINEMODE SLC (Set Local Characters) suboption handler because add_slc does not check whether the buffer is full.

4 repos

https://github.com/danindiana/cve-2026-32746-mitigation

https://github.com/watchtowrlabs/watchtowr-vs-telnetd-CVE-2026-32746

https://github.com/chosenonehacks/CVE-2026-32746

https://github.com/jeffaf/cve-2026-32746

AAKL@infosec.exchange at 2026-03-20T16:46:17.000Z ##

Posted yesterday, if you missed it:

WatchTower: A 32-Year-Old Bug Walks Into A Telnet Server (GNU inetutils Telnetd CVE-2026-32746 Pre-Auth RCE) https://labs.watchtowr.com/a-32-year-old-bug-walks-into-a-telnet-server-gnu-inetutils-telnetd-cve-2026-32746/ #infosec #threatresearch

##

youranonnewsirc@nerdculture.de at 2026-03-19T23:56:20.000Z ##

Geopolitical tensions surged as Iran targeted Gulf energy after Israeli strikes, spiking oil prices to $118/barrel (March 18-19). In cybersecurity, CISA warned of actively exploited SharePoint flaws (CVE-2026-20963), critical Ubiquiti UniFi (CVE-2026-22557), and Telnetd root-access vulnerabilities (CVE-2026-32746). NVIDIA forecasts $1T AI demand by 2027.
#AnonNews_irc #Cybersecurity #News

##

CVE-2026-31970
(8.1 HIGH)

EPSS: 0.04%

updated 2026-03-19T13:59:29.387000

1 posts

HTSlib is a library for reading and writing bioinformatics file formats. GZI files are used to index block-compressed GZIP [BGZF] files. In the GZI loading function, `bgzf_index_load_hfile()`, it was possible to trigger an integer overflow, leading to an under- or zero-sized buffer being allocated to store the index. Sixteen zero bytes would then be written to this buffer, and, depending on the

thehackerwire@mastodon.social at 2026-03-19T21:33:55.000Z ##

🟠 CVE-2026-31970 - High (8.1)

HTSlib is a library for reading and writing bioinformatics file formats. GZI files are used to index block-compressed GZIP [BGZF] files. In the GZI loading function, `bgzf_index_load_hfile()`, it was possible to trigger an integer overflow, leadi...

🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-31970/

#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack

##

CVE-2026-20963
(8.8 HIGH)

EPSS: 9.14%

updated 2026-03-19T13:09:24.293000

3 posts

Deserialization of untrusted data in Microsoft Office SharePoint allows an authorized attacker to execute code over a network.

christopherkunz@chaos.social at 2026-03-20T13:53:15.000Z ##

CVE-2026-20963 Sharepoint Insecure Deserialization 8.8/10

Weekend soon. Where @watchTowr blog? Need lolz. I can has?

##

beyondmachines1@infosec.exchange at 2026-03-20T12:01:48.000Z ##

Critical Microsoft SharePoint RCE Vulnerability CVE-2026-20963 Under Active Exploitation

Microsoft SharePoint is under active exploitation of a critical RCE vulnerability (CVE-2026-20963) that allows unauthenticated attackers to take over servers via a deserialization flaw.

**Your SharePoint servers are under attack. Ideally, isolate them from the internet and make them accessible only from internal networks. Them apply the January 2026 patch ASAP. If you are still using SharePoint 2013 or older, isolate them and upgrade to a newer version. Those old systems are permanently vulnerable.**
#cybersecurity #infosec #attack #activeexploit
https://beyondmachines.net/event_details/critical-microsoft-sharepoint-rce-vulnerability-cve-2026-20963-under-active-exploitation-l-r-5-d-h/gD2P6Ple2L

##

youranonnewsirc@nerdculture.de at 2026-03-19T23:56:20.000Z ##

Geopolitical tensions surged as Iran targeted Gulf energy after Israeli strikes, spiking oil prices to $118/barrel (March 18-19). In cybersecurity, CISA warned of actively exploited SharePoint flaws (CVE-2026-20963), critical Ubiquiti UniFi (CVE-2026-22557), and Telnetd root-access vulnerabilities (CVE-2026-32746). NVIDIA forecasts $1T AI demand by 2027.
#AnonNews_irc #Cybersecurity #News

##

CVE-2026-33236
(8.1 HIGH)

EPSS: 0.04%

updated 2026-03-19T12:42:43

2 posts

## Vulnerability Description The NLTK downloader does not validate the `subdir` and `id` attributes when processing remote XML index files. Attackers can control a remote XML index server to provide malicious values containing path traversal sequences (such as `../`), which can lead to: 1. **Arbitrary Directory Creation**: Create directories at arbitrary locations in the file system 2. **Arbitra

thehackerwire@mastodon.social at 2026-03-21T23:16:52.000Z ##

🟠 CVE-2026-33236 - High (8.1)

NLTK (Natural Language Toolkit) is a suite of open source Python modules, data sets, and tutorials supporting research and development in Natural Language Processing. In versions 3.9.3 and prior, the NLTK downloader does not validate the `subdir` ...

🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-33236/

#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack

##

thehackerwire@mastodon.social at 2026-03-21T23:16:52.000Z ##

🟠 CVE-2026-33236 - High (8.1)

NLTK (Natural Language Toolkit) is a suite of open source Python modules, data sets, and tutorials supporting research and development in Natural Language Processing. In versions 3.9.3 and prior, the NLTK downloader does not validate the `subdir` ...

🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-33236/

#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack

##

CVE-2026-33231
(7.5 HIGH)

EPSS: 0.04%

updated 2026-03-19T12:42:23

2 posts

### Summary `nltk.app.wordnet_app` allows unauthenticated remote shutdown of the local WordNet Browser HTTP server when it is started in its default mode. A simple `GET /SHUTDOWN%20THE%20SERVER` request causes the process to terminate immediately via `os._exit(0)`, resulting in a denial of service. ### Details The vulnerable logic is in `nltk/app/wordnet_app.py`: - [`nltk/app/wordnet_app.py:242`

thehackerwire@mastodon.social at 2026-03-22T00:00:13.000Z ##

🟠 CVE-2026-33231 - High (7.5)

NLTK (Natural Language Toolkit) is a suite of open source Python modules, data sets, and tutorials supporting research and development in Natural Language Processing. In versions 3.9.3 and prior, `nltk.app.wordnet_app` allows unauthenticated remot...

🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-33231/

#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack

##

thehackerwire@mastodon.social at 2026-03-22T00:00:13.000Z ##

🟠 CVE-2026-33231 - High (7.5)

NLTK (Natural Language Toolkit) is a suite of open source Python modules, data sets, and tutorials supporting research and development in Natural Language Processing. In versions 3.9.3 and prior, `nltk.app.wordnet_app` allows unauthenticated remot...

🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-33231/

#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack

##

CVE-2026-33204
(7.5 HIGH)

EPSS: 0.04%

updated 2026-03-18T20:16:59

2 posts

## Summary An unauthenticated attacker can perform a Denial of Service via JWE header tampering when PBES2 algorithms are used. Applications that call `JWE::decrypt()` on attacker-controlled JWEs using PBES2 algorithms are affected. ## Details PHP version: `PHP 8.4.11` SimpleJWT version: `v1.1.0` The relevant portion of the vulnerable implementation is shown below ([PBES2.php](https://github

thehackerwire@mastodon.social at 2026-03-22T00:01:32.000Z ##

🟠 CVE-2026-33204 - High (7.5)

SimpleJWT is a simple JSON web token library written in PHP. Prior to version 1.1.1, an unauthenticated attacker can perform a Denial of Service via JWE header tampering when PBES2 algorithms are used. Applications that call JWE::decrypt() on atta...

🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-33204/

#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack

##

thehackerwire@mastodon.social at 2026-03-22T00:01:32.000Z ##

🟠 CVE-2026-33204 - High (7.5)

SimpleJWT is a simple JSON web token library written in PHP. Prior to version 1.1.1, an unauthenticated attacker can perform a Denial of Service via JWE header tampering when PBES2 algorithms are used. Applications that call JWE::decrypt() on atta...

🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-33204/

#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack

##

CVE-2026-33203
(7.5 HIGH)

EPSS: 0.10%

updated 2026-03-18T20:11:01

2 posts

## Summary The SiYuan kernel WebSocket server accepts unauthenticated connections when a specific “auth keepalive” query parameter is present. After connection, incoming messages are parsed using unchecked type assertions on attacker-controlled JSON. A remote attacker can send malformed messages that trigger a runtime panic, potentially crashing the kernel process and causing denial of service.

thehackerwire@mastodon.social at 2026-03-22T00:01:23.000Z ##

🟠 CVE-2026-33203 - High (7.5)

SiYuan is a personal knowledge management system. Prior to version 3.6.2, the SiYuan kernel WebSocket server accepts unauthenticated connections when a specific "auth keepalive" query parameter is present. After connection, incoming messages are p...

🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-33203/

#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack

##

thehackerwire@mastodon.social at 2026-03-22T00:01:23.000Z ##

🟠 CVE-2026-33203 - High (7.5)

SiYuan is a personal knowledge management system. Prior to version 3.6.2, the SiYuan kernel WebSocket server accepts unauthenticated connections when a specific "auth keepalive" query parameter is present. After connection, incoming messages are p...

🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-33203/

#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack

##

CVE-2026-33180
(9.8 CRITICAL)

EPSS: 0.03%

updated 2026-03-18T20:07:50

2 posts

### Impact When setting headers in HTTP requests, the internal HTTP client sends headers first to the host in the initial URL but also, if asked to follow redirects and a 30X HTTP response code is returned, to the host mentioned in URL in the Location: response header value. Sending the same set of headers to subsequent hosts is a problem as this header often contains privacy sensitive informatio

thehackerwire@mastodon.social at 2026-03-22T00:00:23.000Z ##

🟠 CVE-2026-33180 - High (7.5)

HAPI FHIR is a complete implementation of the HL7 FHIR standard for healthcare interoperability in Java. Prior to version 6.9.0, when setting headers in HTTP requests, the internal HTTP client sends headers first to the host in the initial URL but...

🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-33180/

#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack

##

thehackerwire@mastodon.social at 2026-03-22T00:00:23.000Z ##

🟠 CVE-2026-33180 - High (7.5)

HAPI FHIR is a complete implementation of the HL7 FHIR standard for healthcare interoperability in Java. Prior to version 6.9.0, when setting headers in HTTP requests, the internal HTTP client sends headers first to the host in the initial URL but...

🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-33180/

#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack

##

CVE-2026-33172
(8.7 HIGH)

EPSS: 0.01%

updated 2026-03-18T19:54:32

2 posts

### Impact Stored XSS vulnerability in SVG asset reuploads allows authenticated users with asset upload permissions to bypass SVG sanitization and inject malicious JavaScript that executes when the asset is viewed. ### Patches This has been fixed in 5.73.14 and 6.7.0.

thehackerwire@mastodon.social at 2026-03-20T22:23:31.000Z ##

🟠 CVE-2026-33172 - High (8.7)

Statamic is a Laravel and Git powered content management system (CMS). Prior to versions 5.73.14 and 6.7.0, a stored XSS vulnerability in SVG asset reuploads allows authenticated users with asset upload permissions to bypass SVG sanitization and i...

🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-33172/

#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack

##

thehackerwire@mastodon.social at 2026-03-20T22:17:30.000Z ##

🟠 CVE-2026-33172 - High (8.7)

Statamic is a Laravel and Git powered content management system (CMS). Prior to versions 5.73.14 and 6.7.0, a stored XSS vulnerability in SVG asset reuploads allows authenticated users with asset upload permissions to bypass SVG sanitization and i...

🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-33172/

#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack

##

CVE-2026-33166
(8.6 HIGH)

EPSS: 0.01%

updated 2026-03-18T19:53:59

2 posts

### Summary The Allure report generator is vulnerable to an arbitrary file read via path traversal when processing test results. An attacker can craft a malicious result file (-result.json, -container.json, or .plist) that points an attachment source to a sensitive file on the host system. During report generation, Allure will resolve these paths and include the sensitive files in the final report

thehackerwire@mastodon.social at 2026-03-20T22:23:21.000Z ##

🟠 CVE-2026-33166 - High (8.6)

Allure 2 is the version 2.x branch of Allure Report, a multi-language test reporting tool. The Allure report generator prior to version 2.38.0 is vulnerable to an arbitrary file read via path traversal when processing test results. An attacker can...

🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-33166/

#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack

##

thehackerwire@mastodon.social at 2026-03-20T22:17:20.000Z ##

🟠 CVE-2026-33166 - High (8.6)

Allure 2 is the version 2.x branch of Allure Report, a multi-language test reporting tool. The Allure report generator prior to version 2.38.0 is vulnerable to an arbitrary file read via path traversal when processing test results. An attacker can...

🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-33166/

#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack

##

CVE-2026-33053(CVSS UNKNOWN)

EPSS: 0.02%

updated 2026-03-18T12:58:35

2 posts

**Detection Method:** Kolega.dev Deep Code Scan | Attribute | Value | |---|---| | Location | src/backend/base/langflow/api/v1/api_key.py:44-53 | | Practical Exploitability | High | | Developer Approver | faizan@kolega.ai | ### Description The delete_api_key_route() endpoint accepts an api_key_id path parameter and deletes it with only a generic authentication check (get_current_active_user depen

thehackerwire@mastodon.social at 2026-03-20T23:00:31.000Z ##

🟠 CVE-2026-33053 - High (8.8)

Langflow is a tool for building and deploying AI-powered agents and workflows. In versions prior to 1.9.0, the delete_api_key_route() endpoint accepts an api_key_id path parameter and deletes it with only a generic authentication check (get_curren...

🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-33053/

#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack

##

thehackerwire@mastodon.social at 2026-03-20T22:17:50.000Z ##

🟠 CVE-2026-33053 - High (8.8)

Langflow is a tool for building and deploying AI-powered agents and workflows. In versions prior to 1.9.0, the delete_api_key_route() endpoint accepts an api_key_id path parameter and deletes it with only a generic authentication check (get_curren...

🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-33053/

#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack

##

CVE-2026-3888
(7.8 HIGH)

EPSS: 0.01%

updated 2026-03-18T04:17:30.720000

3 posts

Local privilege escalation in snapd on Linux allows local attackers to get root privilege by re-creating snap's private /tmp directory when systemd-tmpfiles is configured to automatically clean up this directory. This issue affects Ubuntu 16.04 LTS, 18.04 LTS, 20.04 LTS, 22.04 LTS, and 24.04 LTS.

3 repos

https://github.com/netw0rk7/CVE-2026-3888-PoC

https://github.com/fevar54/CVE-2026-3888-POC-all-from-the-Qualys-platform.

https://github.com/Many-Hat-Group/Ubuntu-CVE-2026-3888-patcher

linux@activitypub.awakari.com at 2026-03-19T22:32:26.000Z ## Debian DSA-6170-1 snapd Local Escalation CVE-2026-3888 Advisory The Qualys Threat Research Unit (TRU) discovered a local privilege escalation vulnerability in snapd, a daemon and tooling that enabl...

#Debian #Linux #Distribution #- #Security #Advisories

Origin | Interest | Match ##

patrickcmiller@infosec.exchange at 2026-03-19T22:42:00.000Z ##

Ubuntu CVE-2026-3888 Bug Lets Attackers Gain Root via systemd Cleanup Timing Exploit https://thehackernews.com/2026/03/ubuntu-cve-2026-3888-bug-lets-attackers.html

##

magi@mastodon.uno at 2026-03-19T21:37:51.000Z ##

Ubuntu a rischio: bug di Snap permette accesso root (CVE-2026-3888)
#Ubuntu
Scoperta una vulnerabilità critica in Ubuntu (CVE-2026-3888): il sistema Snap permette escalation a root.

https://www.marcosbox.com/2026/03/19/ubuntu-vulnerabilita-snap-cve-2026-3888-root/

@sicurezza

##

CVE-2026-32306
(9.9 CRITICAL)

EPSS: 0.40%

updated 2026-03-17T20:08:56.733000

1 posts

OneUptime is a solution for monitoring and managing online services. Prior to 10.0.23, the telemetry aggregation API accepts user-controlled aggregationType, aggregateColumnName, and aggregationTimestampColumnName parameters and interpolates them directly into ClickHouse SQL queries via the .append() method (documented as "trusted SQL"). There is no allowlist, no parameterized query binding, and n

thehackerwire@mastodon.social at 2026-03-20T21:22:33.000Z ##

🟠 CVE-2026-33142 - High (8.1)

OneUptime is a solution for monitoring and managing online services. Prior to version 10.0.34, the fix for CVE-2026-32306 (ClickHouse SQL injection via aggregate query parameters) added column name validation to the _aggregateBy method but did not...

🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-33142/

#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack

##

CVE-2026-33017(CVSS UNKNOWN)

EPSS: 0.46%

updated 2026-03-17T20:05:06

6 posts

## Summary The `POST /api/v1/build_public_tmp/{flow_id}/flow` endpoint allows building public flows without requiring authentication. When the optional `data` parameter is supplied, the endpoint uses **attacker-controlled flow data** (containing arbitrary Python code in node definitions) instead of the stored flow data from the database. This code is passed to `exec()` with zero sandboxing, resul

3 repos

https://github.com/MaxMnMl/langflow-CVE-2026-33017-poc

https://github.com/SimoesCTT/Sovereign-Echo-33017

https://github.com/omer-efe-curkus/CVE-2026-33017-Langflow-RCE-PoC

threatcodex at 2026-03-22T00:29:59.011Z ##

CVE-2026–33017: How I Found an Unauthenticated RCE in Langflow by Reading the Code They Already Fixed
#CVE_2026–33017
https://medium.com/@aviral23/cve-2026-33017-how-i-found-an-unauthenticated-rce-in-langflow-by-reading-the-code-they-already-dc96cdce5896

##

beyondmachines1 at 2026-03-21T10:01:49.251Z ##

Critical Langflow RCE Vulnerability CVE-2026-33017 Exploited Within Hours

Researchers report active exploitation of a critical RCE vulnerability (CVE-2026-33017) in Langflow that allows unauthenticated attackers to execute arbitrary Python code and steal sensitive API keys. The flaw was weaponized within 20 hours of disclosure, targeting exposed AI orchestration pipelines to harvest credentials and environment variables.

**If you're running Langflow, this is urgent. Update immediately to version 1.9.0.dev8 or later to patch CVE-2026-33017, and disable the AUTO_LOGIN=true default setting. Until you can update, restrict network access to the vulnerable endpoint, place Langflow behind a reverse proxy with authentication. Regardless if you patch or isolate, make sure to rotate all API keys and credentials the platform uses after isolating.**
#cybersecurity #infosec #attack #activeexploit
https://beyondmachines.net/event_details/critical-langflow-rce-vulnerability-cve-2026-33017-exploited-within-hours-q-n-c-a-6/gD2P6Ple2L

##

threatcodex@infosec.exchange at 2026-03-22T00:29:59.000Z ##

CVE-2026–33017: How I Found an Unauthenticated RCE in Langflow by Reading the Code They Already Fixed
#CVE_2026–33017
https://medium.com/@aviral23/cve-2026-33017-how-i-found-an-unauthenticated-rce-in-langflow-by-reading-the-code-they-already-dc96cdce5896

##

beyondmachines1@infosec.exchange at 2026-03-21T10:01:49.000Z ##

Critical Langflow RCE Vulnerability CVE-2026-33017 Exploited Within Hours

Researchers report active exploitation of a critical RCE vulnerability (CVE-2026-33017) in Langflow that allows unauthenticated attackers to execute arbitrary Python code and steal sensitive API keys. The flaw was weaponized within 20 hours of disclosure, targeting exposed AI orchestration pipelines to harvest credentials and environment variables.

**If you're running Langflow, this is urgent. Update immediately to version 1.9.0.dev8 or later to patch CVE-2026-33017, and disable the AUTO_LOGIN=true default setting. Until you can update, restrict network access to the vulnerable endpoint, place Langflow behind a reverse proxy with authentication. Regardless if you patch or isolate, make sure to rotate all API keys and credentials the platform uses after isolating.**
#cybersecurity #infosec #attack #activeexploit
https://beyondmachines.net/event_details/critical-langflow-rce-vulnerability-cve-2026-33017-exploited-within-hours-q-n-c-a-6/gD2P6Ple2L

##

hackerworkspace@infosec.exchange at 2026-03-20T20:51:29.000Z ##

Critical Langflow Flaw CVE-2026-33017 Triggers Attacks within 20 Hours of Disclosure

https://thehackernews.com/2026/03/critical-langflow-flaw-cve-2026-33017.html

Short summary: https://hackerworkspace.com/article/critical-langflow-flaw-cve-2026-33017-triggers-attacks-within-20-hours-of-disclosure

#cybersecurity #threatintelligence #vulnerability

##

AAKL@infosec.exchange at 2026-03-20T14:56:47.000Z ##

From yesterday. Langflow is "an open-source visual framework for building AI agents and retrieval-augmented generation (RAG) pipelines."

Sysdig: CVE-2026-33017: How attackers compromised Langflow AI pipelines in 20 hours https://www.sysdig.com/blog/cve-2026-33017-how-attackers-compromised-langflow-ai-pipelines-in-20-hours

More:

Infosecurity-Magazine: https://www.infosecurity-magazine.com/news/hackers-exploit-critical-langflow/ #infosec

##

CVE-2026-3564
(9.1 CRITICAL)

EPSS: 0.06%

updated 2026-03-17T15:36:34

1 posts

A condition in ScreenConnect may allow an actor with access to server-level cryptographic material used for authentication to obtain unauthorized access, including elevated privileges, in certain scenarios.

beyondmachines1@infosec.exchange at 2026-03-20T15:01:48.000Z ##

ConnectWise Patches Critical ScreenConnect Cryptographic Flaw

ConnectWise patched a critical vulnerability (CVE-2026-3564) in ScreenConnect that allows attackers to extract cryptographic machine keys and bypass session authentication. The flaw enables unauthorized access and privilege escalation, which is a significant risk to MSPs and their downstream clients.

**Treat this update as an emergency change because remote access tools are primary targets for lateral movement and supply chain attacks. If you run on-premises ScreenConnect, verify your version immediately, patch ASAP.**
#cybersecurity #infosec #advisory #vulnerability
https://beyondmachines.net/event_details/connectwise-patches-critical-screenconnect-cryptographic-flaw-i-v-k-f-7/gD2P6Ple2L

##

CVE-2026-31979
(8.8 HIGH)

EPSS: 0.02%

updated 2026-03-16T18:18:34.750000

2 posts

Himmelblau is an interoperability suite for Microsoft Azure Entra ID and Intune. Prior to 3.1.0 and 2.3.8, the himmelblaud-tasks daemon, running as root, writes Kerberos cache files under /tmp/krb5cc_<uid> without symlink protections. Since commit 87a51ee, PrivateTmp is explicitly removed from the tasks daemon's systemd hardening, exposing it to the host /tmp. A local user can exploit this via sym

campuscodi@mastodon.social at 2026-03-22T12:01:18.000Z ##

A vulnerability in a Linux enterprise app can allow attackers root access over devices

The issue impacts Himmelblau, an interoperability suite to integrate Linux with Entra ID and Intune networks.

https://www.akamai.com/blog/security-research/2026/mar/cve-2026-31979-symlink-root-privilege-escalation-himmelblau

##

campuscodi@mastodon.social at 2026-03-22T12:01:18.000Z ##

A vulnerability in a Linux enterprise app can allow attackers root access over devices

The issue impacts Himmelblau, an interoperability suite to integrate Linux with Entra ID and Intune networks.

https://www.akamai.com/blog/security-research/2026/mar/cve-2026-31979-symlink-root-privilege-escalation-himmelblau

##

CVE-2026-25896
(9.3 CRITICAL)

EPSS: 0.01%

updated 2026-02-27T16:51:59

1 posts

# Entity encoding bypass via regex injection in DOCTYPE entity names ## Summary A dot (`.`) in a DOCTYPE entity name is treated as a regex wildcard during entity replacement, allowing an attacker to shadow built-in XML entities (`<`, `>`, `&`, `"`, `'`) with arbitrary values. This bypasses entity encoding and leads to XSS when parsed output is rendered. ## Details The fix f

AAKL@infosec.exchange at 2026-03-20T16:16:56.000Z ##

New advisory. Login is needed for details.

Broadcom: Critical: Software Toolkit Plugin for z/OSMF 1.0 - Vulnerability in fast-xml-parser (CVE-2026-25896) https://support.broadcom.com/web/ecx/security-advisory #infosec #vulnerability #Broadcom

##

CVE-2025-32711
(9.3 CRITICAL)

EPSS: 3.89%

updated 2026-02-20T18:31:25

1 posts

Ai command injection in M365 Copilot allows an unauthorized attacker to disclose information over a network.

1 repos

https://github.com/daryllundy/cve-2025-32711

LLMs@activitypub.awakari.com at 2026-03-19T00:00:00.000Z ## The next layer of AI security Identity establishes trust. The next problem is how that trust is used. In June 2025, Microsoft patched EchoLeak (CVE-2025-32711), a zero-click vulnerability in Micros...

Origin | Interest | Match ##

CVE-2026-1581
(7.5 HIGH)

EPSS: 11.33%

updated 2026-02-19T18:32:09

2 posts

The wpForo Forum plugin for WordPress is vulnerable to time-based SQL Injection via the 'wpfob' parameter in all versions up to, and including, 2.4.14 due to insufficient escaping on the user supplied parameter and lack of sufficient preparation on the existing SQL query. This makes it possible for unauthenticated attackers to append additional SQL queries into already existing queries that can be

Nuclei template

1 repos

https://github.com/rootdirective-sec/CVE-2026-1581-Analysis-Lab

hackerworkspace at 2026-03-21T19:54:58.728Z ##

wpForo Forum <= 2.4.14 - SQL Injection (CVE-2026-1581)

https://pentest-tools.com/vulnerabilities-exploits/wpforo-forum-2414-sql-injection_29049

Short summary: https://hackerworkspace.com/article/wpforo-forum-2-4-14-sql-injection-cve-2026-1581

#cybersecurity #vulnerability #exploit

##

hackerworkspace@infosec.exchange at 2026-03-21T19:54:58.000Z ##

wpForo Forum <= 2.4.14 - SQL Injection (CVE-2026-1581)

https://pentest-tools.com/vulnerabilities-exploits/wpforo-forum-2414-sql-injection_29049

Short summary: https://hackerworkspace.com/article/wpforo-forum-2-4-14-sql-injection-cve-2026-1581

#cybersecurity #vulnerability #exploit

##

CVE-2026-20817
(7.8 HIGH)

EPSS: 0.02%

updated 2026-01-14T20:31:32.760000

2 posts

Improper handling of insufficient permissions or privileges in Windows Error Reporting allows an authorized attacker to elevate privileges locally.

1 repos

https://github.com/oxfemale/CVE-2026-20817

itm4n at 2026-03-22T16:30:29.234Z ##

This is my analysis (and PoC) for CVE-2026-20817, a privilege escalation in the Windows Error Reporting service.

👉 https://itm4n.github.io/cve-2026-20817-wersvc-eop/

Credit goes to Denis Faiustov and Ruslan Sayfiev for the discovery.

TL;DR A low privilege user could send an ALPC message to the WER service and coerce it to start a WerFault.exe process as SYSTEM with user-controlled arguments and options. I did not achieve arbitrary code execution, but perhaps someone knows how this can be done? 🤷‍♂️

##

itm4n@infosec.exchange at 2026-03-22T16:30:29.000Z ##

This is my analysis (and PoC) for CVE-2026-20817, a privilege escalation in the Windows Error Reporting service.

👉 https://itm4n.github.io/cve-2026-20817-wersvc-eop/

Credit goes to Denis Faiustov and Ruslan Sayfiev for the discovery.

TL;DR A low privilege user could send an ALPC message to the WER service and coerce it to start a WerFault.exe process as SYSTEM with user-controlled arguments and options. I did not achieve arbitrary code execution, but perhaps someone knows how this can be done? 🤷‍♂️

##

CVE-2025-32975
(10.0 CRITICAL)

EPSS: 0.13%

updated 2025-11-03T21:35:11

3 posts

Quest KACE Systems Management Appliance (SMA) 13.0.x before 13.0.385, 13.1.x before 13.1.81, 13.2.x before 13.2.183, 14.0.x before 14.0.341 (Patch 5), and 14.1.x before 14.1.101 (Patch 4) contains an authentication bypass vulnerability that allows attackers to impersonate legitimate users without valid credentials. The vulnerability exists in the SSO authentication handling mechanism and can lead

offseq at 2026-03-22T00:00:39.641Z ##

⚠️ CRITICAL: Quest KACE vuln (CVE-2025-32975) under active exploitation, mainly in education. No patch yet — segment networks, monitor KACE activity, and restrict access. Global risk. Details: https://radar.offseq.com/threat/critical-quest-kace-vulnerability-potentially-expl-c5cd699f #OffSeq #Vulnerability #QuestKACE #Education

##

offseq@infosec.exchange at 2026-03-22T00:00:39.000Z ##

⚠️ CRITICAL: Quest KACE vuln (CVE-2025-32975) under active exploitation, mainly in education. No patch yet — segment networks, monitor KACE activity, and restrict access. Global risk. Details: https://radar.offseq.com/threat/critical-quest-kace-vulnerability-potentially-expl-c5cd699f #OffSeq #Vulnerability #QuestKACE #Education

##

beyondmachines1@infosec.exchange at 2026-03-20T13:01:49.000Z ##

Attackers Exploit Critical Quest KACE SMA Authentication Bypass

Arctic Wolf reports attacks exploiting a critical authentication bypass (CVE-2025-32975) in Quest KACE SMA to gain administrative control and move laterally into domain controllers and backup systems.

**If you are using Quest KACE SMA, this is urgent. Make sure your Quest KACE SMA is off the public internet and behind a VPN immediately. Check your logs for new unknown admin accounts, as these are signs that attackers have already taken over your management system. Then patch ASAP.**
#cybersecurity #infosec #attack #activeexploit
https://beyondmachines.net/event_details/attackers-exploit-critical-quest-kace-sma-authentication-bypass-z-3-u-b-2/gD2P6Ple2L

##

CVE-2025-20720
(8.8 HIGH)

EPSS: 0.03%

updated 2025-10-15T18:45:23.107000

2 posts

In wlan AP driver, there is a possible out of bounds write due to an incorrect bounds check. This could lead to remote (proximal/adjacent) escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation. Patch ID: WCNCR00418954; Issue ID: MSV-3569.

beyondmachines1 at 2026-03-22T11:01:25.772Z ##

PolyShell Vulnerability Exposes Adobe Commerce and Magento to Remote Code Execution

Sansec reports "PolyShell," an unrestricted file upload vulnerability (CVE-2025-20720) in Magento and Adobe Commerce that allows unauthenticated attackers to achieve remote code execution via the REST API.

**If you are using Adobe Commerce and Magento Open Source, restrict web server access to the pub/media/custom_options/ directory to prevent the execution of uploaded malicious scripts. Since a production patch is currently not afailable, deploy a web application firewall to block exploit attempts in real-time.**
#cybersecurity #infosec #advisory #databreach
https://beyondmachines.net/event_details/polyshell-vulnerability-exposes-adobe-commerce-and-magento-to-remote-code-execution-9-b-r-8-z/gD2P6Ple2L

##

beyondmachines1@infosec.exchange at 2026-03-22T11:01:25.000Z ##

PolyShell Vulnerability Exposes Adobe Commerce and Magento to Remote Code Execution

Sansec reports "PolyShell," an unrestricted file upload vulnerability (CVE-2025-20720) in Magento and Adobe Commerce that allows unauthenticated attackers to achieve remote code execution via the REST API.

**If you are using Adobe Commerce and Magento Open Source, restrict web server access to the pub/media/custom_options/ directory to prevent the execution of uploaded malicious scripts. Since a production patch is currently not afailable, deploy a web application firewall to block exploit attempts in real-time.**
#cybersecurity #infosec #advisory #databreach
https://beyondmachines.net/event_details/polyshell-vulnerability-exposes-adobe-commerce-and-magento-to-remote-code-execution-9-b-r-8-z/gD2P6Ple2L

##

CVE-2026-32888
(0 None)

EPSS: 0.03%

2 posts

N/A

thehackerwire@mastodon.social at 2026-03-22T01:40:54.000Z ##

🟠 CVE-2026-32888 - High (8.8)

Open Source Point of Sale is a web based point-of-sale application written in PHP using CodeIgniter framework. Versions contain an SQL Injection in the Items search functionality. When the custom attribute search feature is enabled (search_custom ...

🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-32888/

#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack

##

thehackerwire@mastodon.social at 2026-03-22T01:40:54.000Z ##

🟠 CVE-2026-32888 - High (8.8)

Open Source Point of Sale is a web based point-of-sale application written in PHP using CodeIgniter framework. Versions contain an SQL Injection in the Items search functionality. When the custom attribute search feature is enabled (search_custom ...

🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-32888/

#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack

##

CVE-2026-33243
(0 None)

EPSS: 0.01%

2 posts

N/A

thehackerwire@mastodon.social at 2026-03-21T23:17:02.000Z ##

🟠 CVE-2026-33243 - High (8.2)

barebox is a bootloader. In barebox from version 2016.03.0 to before version 2025.09.3 and from version 2025.10.0 to before version 2026.03.1, when creating a FIT, mkimage(1) sets the hashed-nodes property of the FIT signature node to list which n...

🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-33243/

#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack

##

thehackerwire@mastodon.social at 2026-03-21T23:17:02.000Z ##

🟠 CVE-2026-33243 - High (8.2)

barebox is a bootloader. In barebox from version 2016.03.0 to before version 2025.09.3 and from version 2025.10.0 to before version 2026.03.1, when creating a FIT, mkimage(1) sets the hashed-nodes property of the FIT signature node to list which n...

🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-33243/

#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack

##

CVE-2023-4567
(0 None)

EPSS: 0.00%

1 posts

N/A

linux@activitypub.awakari.com at 2026-03-22T09:40:34.000Z ## Ubuntu Jammy SPIP Security Vulnerability Identified as CVE-2023-4567 Jul Blobul discovered that SPIP, a website engine for publishing, is prone to a privilege escalation vulnerability. For the stab...

#Debian #Linux #Distribution #- #Security #Advisories

Origin | Interest | Match ##

CVE-2026-33250
(0 None)

Tenable research advisories: High-severity CVE-2026-33307 and CVE-2026-33308: mod_gnutls Multiple Vulnerabilities https://www.tenable.com/security/research/tra-2026-20 @tenable #infosec #vulnerability

##

CVE-2026-33308
(0 None)

EPSS: 0.00%

1 posts

N/A

AAKL@infosec.exchange at 2026-03-20T16:06:23.000Z ##

New.

Tenable research advisories: High-severity CVE-2026-33307 and CVE-2026-33308: mod_gnutls Multiple Vulnerabilities https://www.tenable.com/security/research/tra-2026-20 @tenable #infosec #vulnerability

##

CVE-2026-33075
(0 None)

EPSS: 0.03%

1 posts

N/A

offseq@infosec.exchange at 2026-03-20T10:30:29.000Z ##

🚨 CRITICAL: CVE-2026-33075 affects labring FastGPT ≤4.14.8.3. GitHub Actions workflow flaw enables attackers to run code & steal secrets, risking supply chain compromise. No patch — audit workflows & restrict secrets now! https://radar.offseq.com/threat/cve-2026-33075-cwe-494-download-of-code-without-in-52a1ff21 #OffSeq #Infosec #SupplyChain

##

CVE-2026-33024
(0 None)

thehackerwire@mastodon.social at 2026-03-19T21:00:38.000Z ##

🔴 CVE-2026-31972 - Critical (9.8)

SAMtools is a program for reading, manipulating and writing bioinformatics file formats. The `mpileup` command outputs DNA sequences that have been aligned against a known reference. On each output line it writes the reference position, optionally...

🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-31972/

#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack

##

CVE-2026-4540(7.3 HIGH)

EPSS: 0.03%

CVE-2026-4543(6.3 MEDIUM)

EPSS: 0.18%

CVE-2026-4535(8.8 HIGH)

EPSS: 0.05%

CVE-2026-4534(8.8 HIGH)

EPSS: 0.05%

CVE-2026-4533(6.3 MEDIUM)

EPSS: 0.03%

CVE-2026-3629(8.1 HIGH)

EPSS: 0.04%

CVE-2026-4529(8.8 HIGH)

EPSS: 0.04%

CVE-2026-4373(7.5 HIGH)

EPSS: 0.10%

CVE-2026-2468(7.5 HIGH)

EPSS: 0.07%

CVE-2026-3478(7.2 HIGH)

EPSS: 0.07%

CVE-2026-3334(8.8 HIGH)

EPSS: 0.03%

CVE-2026-1313(8.3 HIGH)

EPSS: 0.04%

CVE-2026-2941(8.8 HIGH)

EPSS: 0.04%

CVE-2026-4261(8.8 HIGH)

EPSS: 0.04%

CVE-2026-1800(7.5 HIGH)

EPSS: 0.07%

CVE-2026-1648(7.2 HIGH)

EPSS: 0.04%

CVE-2025-14037(8.1 HIGH)

EPSS: 0.04%

CVE-2026-32056(7.5 HIGH)

EPSS: 0.15%

CVE-2026-32064(7.7 HIGH)

EPSS: 0.04%

CVE-2026-32049(7.5 HIGH)

EPSS: 0.10%

CVE-2026-32048(7.5 HIGH)

EPSS: 0.04%

CVE-2026-32055(7.6 HIGH)

EPSS: 0.06%

CVE-2026-32051(8.8 HIGH)

EPSS: 0.06%

CVE-2026-32042(8.8 HIGH)

EPSS: 0.10%

CVE-2026-25192(9.4 CRITICAL)

EPSS: 0.13%

CVE-2026-29796(9.4 CRITICAL)

EPSS: 0.10%

CVE-2026-32666(7.5 HIGH)

EPSS: 0.04%

CVE-2026-23536(7.5 HIGH)

EPSS: 0.07%

CVE-2026-33010(8.1 HIGH)

EPSS: 0.03%

CVE-2026-25086(7.7 HIGH)

EPSS: 0.01%

CVE-2026-24060(9.1 CRITICAL)

EPSS: 0.02%

CVE-2026-33226(8.7 HIGH)

EPSS: 0.01%

CVE-2026-33186(9.1 CRITICAL)

EPSS: 0.01%

CVE-2026-31904(7.5 HIGH)

EPSS: 0.08%

CVE-2026-31903(7.5 HIGH)

EPSS: 0.07%

CVE-2026-3584(9.8 CRITICAL)

EPSS: 0.22%

CVE-2026-32013(8.8 HIGH)

EPSS: 0.08%

CVE-2026-32749(7.6 HIGH)

EPSS: 0.04%

CVE-2025-54068(9.8 CRITICAL)

EPSS: 48.85%

CVE-2025-32432(10.0 CRITICAL)

EPSS: 89.44%

CVE-2026-4540
(7.3 HIGH)

CVE-2026-4543
(6.3 MEDIUM)

CVE-2026-4535
(8.8 HIGH)

CVE-2026-4534
(8.8 HIGH)

CVE-2026-4533
(6.3 MEDIUM)

CVE-2026-3629
(8.1 HIGH)

CVE-2026-4529
(8.8 HIGH)

CVE-2026-4373
(7.5 HIGH)

CVE-2026-2468
(7.5 HIGH)

CVE-2026-3478
(7.2 HIGH)

CVE-2026-3334
(8.8 HIGH)

CVE-2026-1313
(8.3 HIGH)

CVE-2026-2941
(8.8 HIGH)

CVE-2026-4261
(8.8 HIGH)

CVE-2026-1800
(7.5 HIGH)

CVE-2026-1648
(7.2 HIGH)

CVE-2025-14037
(8.1 HIGH)

CVE-2026-32056
(7.5 HIGH)

CVE-2026-32064
(7.7 HIGH)

CVE-2026-32049
(7.5 HIGH)

CVE-2026-32048
(7.5 HIGH)

CVE-2026-32055
(7.6 HIGH)

CVE-2026-32051
(8.8 HIGH)

CVE-2026-32042
(8.8 HIGH)

CVE-2026-25192
(9.4 CRITICAL)

CVE-2026-29796
(9.4 CRITICAL)

CVE-2026-32666
(7.5 HIGH)

CVE-2026-23536
(7.5 HIGH)

CVE-2026-33010
(8.1 HIGH)

CVE-2026-25086
(7.7 HIGH)

CVE-2026-24060
(9.1 CRITICAL)

CVE-2026-33226
(8.7 HIGH)

CVE-2026-33186
(9.1 CRITICAL)

CVE-2026-31904
(7.5 HIGH)

CVE-2026-31903
(7.5 HIGH)

CVE-2026-3584
(9.8 CRITICAL)

CVE-2026-32013
(8.8 HIGH)

CVE-2026-32749
(7.6 HIGH)

CVE-2025-54068
(9.8 CRITICAL)

CVE-2025-32432
(10.0 CRITICAL)

CVE-2026-33057
(9.8 CRITICAL)

CVE-2026-33054
(10.0 CRITICAL)

CVE-2026-33043
(8.1 HIGH)

CVE-2026-33039
(8.6 HIGH)

CVE-2026-33038
(8.1 HIGH)

CVE-2026-33012
(7.5 HIGH)

CVE-2026-32940
(9.3 CRITICAL)

CVE-2026-32938
(9.9 CRITICAL)

CVE-2026-32767
(9.8 CRITICAL)

CVE-2026-33154
(7.5 HIGH)

CVE-2026-33142
(8.1 HIGH)

CVE-2026-32025
(7.5 HIGH)

CVE-2026-32014
(8.0 HIGH)

CVE-2026-22172
(10.0 CRITICAL)

CVE-2026-33476
(7.5 HIGH)

CVE-2026-22731
(8.2 HIGH)

CVE-2026-33128
(7.5 HIGH)

CVE-2026-33134
(9.3 CRITICAL)

CVE-2026-33135
(9.3 CRITICAL)

CVE-2026-32318
(7.6 HIGH)

CVE-2025-31277
(8.8 HIGH)

CVE-2026-4452
(8.8 HIGH)

CVE-2025-43520
(5.5 MEDIUM)

CVE-2026-4491
(8.8 HIGH)

CVE-2026-4493
(8.8 HIGH)

CVE-2026-32989
(8.8 HIGH)

CVE-2026-4489
(8.8 HIGH)

CVE-2026-4464
(8.8 HIGH)

CVE-2025-43510
(7.8 HIGH)

CVE-2026-4492
(8.8 HIGH)

CVE-2026-4458
(8.8 HIGH)

CVE-2026-4460
(8.8 HIGH)

CVE-2026-4490
(8.8 HIGH)

CVE-2026-4488
(8.8 HIGH)