##
Updated at UTC 2026-07-19T17:44:46.443475
| CVE | CVSS | EPSS | Posts | Repos | Nuclei | Updated | Description |
|---|---|---|---|---|---|---|---|
| CVE-2026-16221 | 7.5 | 0.00% | 2 | 0 | 2026-07-19T15:16:49.027000 | Impact: fast-uri versions from 2.3.1 through 4.1.0 (including the 3.x line up to | |
| CVE-2026-16228 | 7.3 | 0.41% | 1 | 0 | 2026-07-19T12:30:30 | A vulnerability was detected in SourceCodester Class and Exam Timetabling System | |
| CVE-2026-16229 | 4.3 | 0.44% | 1 | 0 | 2026-07-19T12:30:30 | A flaw has been found in itsourcecode Courier Management System up to 1.0. Affec | |
| CVE-2026-16227 | 7.3 | 0.41% | 1 | 0 | 2026-07-19T12:30:21 | A security vulnerability has been detected in SourceCodester Class and Exam Time | |
| CVE-2026-16223 | 6.3 | 0.21% | 1 | 0 | 2026-07-19T09:31:42 | A vulnerability was determined in 1Panel-dev CordysCRM up to 1.4.1. Impacted is | |
| CVE-2026-16217 | 6.3 | 0.22% | 1 | 0 | 2026-07-19T06:30:33 | A security vulnerability has been detected in guohongze adminset up to 0.61. Aff | |
| CVE-2026-16210 | 7.3 | 0.40% | 1 | 0 | 2026-07-19T04:17:04.343000 | A vulnerability was found in newpanjing simpleui 2026.01.13. This affects the fu | |
| CVE-2026-10130 | 8.2 | 0.37% | 2 | 0 | 2026-07-19T00:30:23 | QueryWeaver contains an authentication bypass vulnerability that allows unauthen | |
| CVE-2026-12228 | 8.7 | 0.26% | 2 | 0 | 2026-07-18T21:30:30 | A stored cross-site scripting (XSS) vulnerability exists in the `POST /api/promp | |
| CVE-2026-53994 | 7.5 | 0.40% | 2 | 0 | 2026-07-18T20:17:30.283000 | ProFTPD mod_sftp contains a heap-based buffer overflow reachable by an authentic | |
| CVE-2026-55518 | 9.6 | 0.33% | 1 | 0 | 2026-07-18T17:22:30 | ## Summary A critical missing authorization flaw exists in Avo's association at | |
| CVE-2026-16125 | 7.3 | 0.29% | 1 | 0 | 2026-07-18T16:17:12.873000 | A vulnerability was found in zevorn rt-claw up to 0.2.0. The affected element is | |
| CVE-2026-11826 | 8.8 | 0.42% | 2 | 0 | 2026-07-18T15:31:56 | OpenPLC_v3 contains a heap-based buffer overflow in the getData() function in we | |
| CVE-2026-9323 | 8.1 | 0.42% | 1 | 0 | 2026-07-18T15:31:56 | The urwid web display backend (urwid/display/web.py) generates web session ident | |
| CVE-2026-9147 | 7.8 | 0.15% | 2 | 0 | 2026-07-18T15:31:55 | uproot dynamically generates Python class source code from ROOT TStreamerInfo re | |
| CVE-2026-16117 | 10.0 | 0.27% | 1 | 0 | 2026-07-18T14:17:11.620000 | Impact: @fastify/http-proxy versions up to and including 11.5.0 fail to rewrite | |
| CVE-2026-16097 | 8.8 | 0.46% | 2 | 0 | 2026-07-18T12:33:18 | A vulnerability was found in Shibby Tomato 1.28. This vulnerability affects the | |
| CVE-2026-16096 | 8.8 | 0.44% | 3 | 0 | 2026-07-18T12:33:13 | A vulnerability has been found in Shibby Tomato 1.28 RT-N5x MIPSR2 Build 124. Th | |
| CVE-2026-16095 | 8.8 | 0.42% | 1 | 0 | 2026-07-18T11:16:43.833000 | A flaw has been found in Shibby Tomato 1.28 RT-N5x MIPSR2 Build 124. Affected by | |
| CVE-2026-47871 | 8.8 | 0.90% | 1 | 0 | 2026-07-18T09:32:24 | VMware Avi Load Balancer contains a directory traversal vulnerability. Flaws in | |
| CVE-2026-47869 | 8.7 | 0.68% | 1 | 0 | 2026-07-18T09:32:24 | VMware Avi Load Balancer contains a remote code execution vulnerability. A malic | |
| CVE-2026-47866 | 8.3 | 0.43% | 1 | 0 | 2026-07-18T09:32:24 | VMware Avi Load Balancer contains an authorization bypass vulnerability. A malic | |
| CVE-2026-47865 | 9.8 | 0.66% | 1 | 0 | 2026-07-18T09:32:24 | VMware Avi Load Balancer contains an authentication bypass vulnerability. A mali | |
| CVE-2026-47868 | 7.8 | 0.15% | 1 | 0 | 2026-07-18T09:32:18 | VMware Avi Load Balancer contains a local privilege escalation vulnerability. A | |
| CVE-2026-47867 | 8.7 | 0.68% | 1 | 0 | 2026-07-18T09:17:08.527000 | VMware Avi Load Balancer contains a remote code execution vulnerability. A malic | |
| CVE-2026-9198 | 9.8 | 0.35% | 1 | 0 | 2026-07-18T05:16:56.320000 | IBM Langflow OSS 1.0.0 through 1.10.0 allows unauthenticated attackers to chain | |
| CVE-2026-62228 | 8.8 | 0.26% | 2 | 0 | 2026-07-18T05:16:55.780000 | OpenClaw before 2026.6.5 contain an authorization bypass vulnerability in node e | |
| CVE-2026-44739 | 8.7 | 0.28% | 1 | 0 | 2026-07-18T00:16:47.840000 | Pimcore is an Open Source Data & Experience Management Platform. Prior to 11.5.1 | |
| CVE-2026-56740 | 7.5 | 0.51% | 1 | 0 | 2026-07-17T22:17:57.153000 | JLine is a Java library for handling console input. Prior to 3.30.14, 4.0.16, an | |
| CVE-2026-7667 | 8.8 | 0.34% | 1 | 0 | 2026-07-17T21:31:53 | IBM Langflow OSS 1.0.0 through 1.10.0 allows an authenticated attacker to create | |
| CVE-2026-8481 | 9.9 | 0.44% | 1 | 0 | 2026-07-17T21:31:53 | IBM Langflow OSS 1.0.0 through 1.10.0 contain a critical remote code execution v | |
| CVE-2026-7755 | 8.8 | 0.41% | 1 | 0 | 2026-07-17T21:31:53 | IBM Langflow OSS 1.0.0 through 1.10.0 Langflow could allow remote code execution | |
| CVE-2026-8859 | 9.9 | 0.34% | 1 | 0 | 2026-07-17T21:31:53 | IBM Langflow OSS 1.0.0 through 1.10.0 Langflow could allow an attacker to write | |
| CVE-2026-8505 | 9.8 | 0.60% | 2 | 0 | 2026-07-17T21:31:53 | IBM Langflow OSS 1.0.0 through 1.10.0 has a vulnerability in Langflow's webhook | |
| CVE-2026-14499 | 8.8 | 0.43% | 1 | 0 | 2026-07-17T21:31:52 | IBM Langflow OSS 1.0.0 through 1.10.1 Langflow could allow an authenticated user | |
| CVE-2026-13473 | 8.1 | 0.46% | 1 | 0 | 2026-07-17T21:31:52 | IBM Storage Protect Client 8.1.0.0 through 8.1.27.0, 8.1.27.1, and 8.2.0.0 throu | |
| CVE-2026-13448 | 8.1 | 0.44% | 1 | 0 | 2026-07-17T21:31:52 | IBM Langflow OSS 1.0.0 through 1.10.1 Lanflow OSS contains an unauthenticated re | |
| CVE-2026-15091 | 9.3 | 0.57% | 1 | 0 | 2026-07-17T21:31:52 | IBM Engineering AI Hub 1.0.0, 1.1.0, and 1.2.0 could allow a remote attacker to | |
| CVE-2026-48373 | 7.8 | 0.19% | 1 | 0 | 2026-07-17T21:31:52 | Acrobat Reader is affected by a Heap-based Buffer Overflow vulnerability that co | |
| CVE-2026-8476 | 9.9 | 0.47% | 1 | 0 | 2026-07-17T21:31:52 | IBM Langflow OSS 1.0.0 through 1.10.0 contain a critical remote code execution v | |
| CVE-2026-8635 | 9.9 | 0.29% | 1 | 0 | 2026-07-17T21:31:52 | IBM Langflow OSS 1.0.0 through 1.10.0 allows authenticated users to escalate pri | |
| CVE-2026-9171 | 7.5 | 0.55% | 1 | 0 | 2026-07-17T21:31:52 | IBM PowerVM Novalink are vulnerable to a denial of service, caused by sending a | |
| CVE-2026-9103 | 9.8 | 0.41% | 1 | 0 | 2026-07-17T21:31:52 | IBM Langflow OSS 1.0.0 through 1.10.0 could allow a remote attacker to gain unau | |
| CVE-2026-54159 | 10.0 | 0.75% | 1 | 0 | 2026-07-17T21:17:07.963000 | PrestaShop ps_facetedsearch is a module that adds layered navigation filters. Fr | |
| CVE-2026-50274 | 7.5 | 0.79% | 2 | 0 | 2026-07-17T21:17:07.337000 | Datadog dd-trace-go is a Go client library for Datadog application performance m | |
| CVE-2026-50271 | 7.5 | 0.79% | 1 | 0 | 2026-07-17T21:17:07.070000 | Datadog dd-trace-py is the Datadog Python APM client. Prior to 4.8.2, Datadog tr | |
| CVE-2026-13446 | 9.8 | 0.21% | 2 | 0 | 2026-07-17T21:17:05.960000 | IBM Langflow OSS 1.0.0 through 1.10.1 contains hard-coded credentials, such as a | |
| CVE-2026-13445 | 8.1 | 0.20% | 1 | 0 | 2026-07-17T21:17:05.473000 | IBM Langflow OSS 1.0.0 through 1.10.1 can allow an authenticated attacker to exp | |
| CVE-2026-8056 | 8.8 | 0.29% | 1 | 0 | 2026-07-17T20:17:30.500000 | IBM Langflow OSS 1.0.0 through 1.10.0 allows authenticated users to override com | |
| CVE-2026-7872 | 7.5 | 0.38% | 1 | 0 | 2026-07-17T20:17:30.377000 | IBM Langflow OSS 1.0.0 through 1.10.0 allows an authenticated attacker to read a | |
| CVE-2026-7754 | 7.7 | 0.22% | 1 | 0 | 2026-07-17T20:17:29.470000 | IBM Langflow OSS 1.0.0 through 1.10.0 Langflow 1.9.0 could allow server-side req | |
| CVE-2026-58195 | 8.8 | 0.46% | 1 | 0 | 2026-07-17T20:17:27.157000 | Agentic-Flow is an AI agent orchestration platform. Prior to 2.0.14, agentic-flo | |
| CVE-2026-50273 | 7.5 | 0.79% | 1 | 0 | 2026-07-17T20:17:24.220000 | Datadog .NET Tracer is a client library for Datadog APM for .NET applications. P | |
| CVE-2026-15322 | 7.5 | 0.52% | 1 | 0 | 2026-07-17T20:17:15.800000 | IBM Engineering AI Hub 1.0.0, 1.1.0, and 1.2.0 could allow a remote attacker to | |
| CVE-2026-9135 | 9.9 | 0.80% | 1 | 0 | 2026-07-17T19:17:19.390000 | IBM Langflow OSS 1.0.0 through 1.10.0 Langflow versions up to 1.9.2 (commit 9498 | |
| CVE-2026-62241 | 9.1 | 0.39% | 3 | 0 | 2026-07-17T19:17:18.647000 | clawvet self-hosted API server (apps/api) before 0.7.5 hard-codes a fallback JWT | |
| CVE-2026-62227 | 7.7 | 0.24% | 2 | 0 | 2026-07-17T19:17:18.390000 | OpenClaw 2026.4.14 before 2026.5.26 contain a server-side request forgery vulner | |
| CVE-2026-55173 | 8.1 | 3.43% | 1 | 0 | 2026-07-17T18:36:41.143000 | WWBN AVideo is an open source video platform. Versions 29.0 and below remain vul | |
| CVE-2026-44182 | 0 | 0.35% | 1 | 0 | 2026-07-17T18:35:23.877000 | Jupyter Enterprise Gateway launches remote Jupyter Notebook kernels across distr | |
| CVE-2025-60357 | 8.1 | 0.40% | 1 | 1 | 2026-07-17T18:32:30 | AhnLab EPP Management v1.0.14.32-6249 was discovered to contain a NoSQL injectio | |
| CVE-2026-13410 | 8.2 | 0.24% | 1 | 0 | 2026-07-17T18:32:29 | Dancer::Plugin::Auth::Google versions through 0.07 for Perl have TLS verificatio | |
| CVE-2026-51080 | 9.8 | 0.30% | 1 | 0 | 2026-07-17T18:32:29 | libpvestorage-perl v9.1.1 and libpve-storage-perl v8.3.7 were discovered to cont | |
| CVE-2026-57860 | 7.8 | 0.13% | 1 | 0 | 2026-07-17T18:31:35 | ForgeCode (tailcallhq/forgecode), an AI pair-programming CLI, automatically load | |
| CVE-2026-9762 | 7.8 | 0.17% | 1 | 0 | 2026-07-17T18:31:35 | IBM Db2 11.5.0 through 11.5.9, and 12.1.0 through 12.1.4 is vulnerable to remote | |
| CVE-2026-9202 | 9.8 | 0.29% | 2 | 0 | 2026-07-17T18:31:35 | IBM Langflow OSS 1.0.0 through 1.10.0 allows unauthenticated attackers to create | |
| CVE-2026-12694 | 9.1 | 0.24% | 1 | 0 | 2026-07-17T18:31:34 | Missing Authorization vulnerability in Vimesoft Inc. Enterprise Video Platform a | |
| CVE-2026-12693 | 9.4 | 0.26% | 1 | 0 | 2026-07-17T18:31:34 | Authorization bypass through User-Controlled key vulnerability in Vimesoft Inc. | |
| CVE-2026-12692 | 9.8 | 0.35% | 1 | 0 | 2026-07-17T18:31:34 | Unverified password change vulnerability in Vimesoft Inc. Enterprise Video Platf | |
| CVE-2026-12691 | 7.5 | 0.30% | 1 | 0 | 2026-07-17T18:31:34 | Missing authentication for critical function vulnerability in Vimesoft Inc. Ente | |
| CVE-2026-63101 | 7.5 | 0.30% | 1 | 0 | 2026-07-17T18:31:34 | Open Event Server through 1.19.1 contains a missing authentication vulnerability | |
| CVE-2026-8297 | 9.8 | 0.26% | 1 | 0 | 2026-07-17T17:54:18.640000 | Improper neutralization of special elements used in an SQL command ('SQL injecti | |
| CVE-2026-13352 | 8.8 | 0.57% | 1 | 0 | 2026-07-17T16:17:13.187000 | The Paid Membership Plugin, Ecommerce, User Registration Form, Login Form, User | |
| CVE-2026-62386 | 7.5 | 0.27% | 2 | 0 | 2026-07-17T15:44:29.553000 | The Grav API plugin (getgrav/grav-plugin-api) before 1.0.0-rc.16 accepts JWT acc | |
| CVE-2026-62234 | 8.1 | 0.30% | 2 | 0 | 2026-07-17T15:44:29.553000 | Grav before 2.0.4 fails to restrict cURL protocols in webhook dispatch, allowing | |
| CVE-2026-62232 | 7.4 | 0.28% | 1 | 0 | 2026-07-17T15:44:29.553000 | Grav before 2.0.4 contains a two-factor authentication bypass vulnerability in t | |
| CVE-2026-11575 | 7.5 | 0.21% | 1 | 0 | 2026-07-17T15:33:32 | The PhonePe Payment Solutions WordPress plugin before 3.1.0 does not properly ve | |
| CVE-2026-8396 | 7.5 | 0.26% | 1 | 0 | 2026-07-17T15:32:37 | Improper restriction of XML external entity reference vulnerability in Netcad So | |
| CVE-2026-7488 | 7.5 | 0.24% | 1 | 0 | 2026-07-17T15:32:37 | Insertion of sensitive information into sent data vulnerability in IKAS Technolo | |
| CVE-2026-63094 | 8.1 | 0.17% | 1 | 0 | 2026-07-17T15:32:37 | SigNoz through 0.133.0 contains an open redirect vulnerability in the SSO authen | |
| CVE-2026-63093 | 8.8 | 0.43% | 1 | 0 | 2026-07-17T15:32:37 | Cursor for Windows version 3.2.16 contains a binary planting vulnerability that | |
| CVE-2026-7189 | 7.5 | 0.24% | 1 | 0 | 2026-07-17T15:32:29 | Insertion of sensitive information into sent data vulnerability in Proliz Softwa | |
| CVE-2026-9810 | 9.8 | 0.28% | 1 | 0 | 2026-07-17T15:32:28 | The AI Copilot WordPress plugin before 1.5.4 does not bind OAuth access tokens | |
| CVE-2026-11961 | 8.1 | 0.23% | 2 | 0 | 2026-07-17T15:32:27 | The User Registration & Membership WordPress plugin before 5.2.3 does not valid | |
| CVE-2026-15982 | 9.8 | 0.29% | 2 | 0 | 2026-07-17T14:59:38.667000 | The Aimogen Pro - All-in-One AI Content Writer, Editor, ChatBot & Automation Too | |
| CVE-2026-13765 | 7.5 | 0.39% | 1 | 0 | 2026-07-17T06:31:06 | The LearnPress – WordPress LMS Plugin for Create and Sell Online Courses plugin | |
| CVE-2026-50454 | 7.8 | 0.40% | 1 | 0 | 2026-07-17T05:16:39.690000 | Relative path traversal in Windows User Interface Core allows an authorized atta | |
| CVE-2026-25089 | 9.8 | 36.13% | 4 | 2 | 2026-07-17T05:16:38.687000 | A improper neutralization of special elements used in an os command ('os command | |
| CVE-2026-53412 | 9.8 | 0.51% | 5 | 0 | 2026-07-17T00:32:18 | Improper Input Validation in Zoom Desktop Client for Windows, Zoom VDI Client fo | |
| CVE-2026-53409 | 7.8 | 0.15% | 1 | 0 | 2026-07-16T21:30:46 | Improper Privilege Management in Zoom Rooms for Windows before version 7.1.0 may | |
| CVE-2026-39808 | 9.8 | 84.16% | 4 | 6 | template | 2026-07-16T18:32:24 | A improper neutralization of special elements used in an os command ('os command |
| CVE-2026-58644 | 9.8 | 1.47% | 7 | 0 | 2026-07-16T18:31:26 | Deserialization of untrusted data in Microsoft Office SharePoint allows an unaut | |
| CVE-2026-12525 | 8.8 | 0.24% | 1 | 0 | 2026-07-16T18:16:41.633000 | The Redux Framework WordPress plugin before 4.5.13 does not restrict which user | |
| CVE-2026-11386 | 9.0 | 0.32% | 2 | 0 | 2026-07-16T15:33:11 | An input validation and injection vulnerability exists in Canonical ubuntu-pro-c | |
| CVE-2026-63305 | 8.1 | 1.38% | 1 | 0 | 2026-07-16T15:33:11 | AVideo through 29.0 contains an OS command injection vulnerability in the ffmpeg | |
| CVE-2026-62314 | 5.8 | 0.27% | 1 | 0 | 2026-07-16T14:16:56.427000 | Anubis is a Web AI Firewall Utility that challenges users' connections in order | |
| CVE-2026-22752 | 9.6 | 0.43% | 1 | 0 | 2026-07-16T12:32:28 | Authentication bypass by primary weakness vulnerability in Spring Security Sprin | |
| CVE-2026-15013 | 9.8 | 0.30% | 1 | 0 | 2026-07-16T06:31:33 | The SAML Single Sign On – SSO Login plugin for WordPress is vulnerable to Authen | |
| CVE-2026-20298 | 5.3 | 0.22% | 1 | 0 | 2026-07-16T05:16:19.120000 | In Splunk Enterprise versions below 10.4.1, 10.2.5, 10.0.8, and 9.4.13, and Splu | |
| CVE-2026-50272 | 7.5 | 0.79% | 1 | 0 | 2026-07-15T22:58:53 | ### Impact Datadog tracing libraries that implement W3C baggage propagation pars | |
| CVE-2026-54498 | 8.7 | 0.45% | 1 | 0 | 2026-07-15T22:51:05 | ## Summary `ViewComponent::Base#around_render` can return HTML-unsafe strings t | |
| CVE-2026-15895 | 7.8 | 1.24% | 1 | 0 | 2026-07-15T21:31:26 | OS command injection in the npm package loading component in AWS jsii-diff befor | |
| CVE-2026-46817 | 9.8 | 1.04% | 4 | 2 | 2026-07-15T18:32:50 | Vulnerability in the Oracle Payments product of Oracle E-Business Suite (compone | |
| CVE-2023-4346 | 7.5 | 0.85% | 2 | 0 | 2026-07-15T18:32:50 | KNX devices that use KNX Connection Authorization and support Option 1 are, depe | |
| CVE-2026-20297 | 7.2 | 0.38% | 1 | 0 | 2026-07-15T18:32:05 | In Splunk Enterprise versions below 10.4.1, 10.2.5, 10.0.8, 9.4.13, and 9.3.14, | |
| CVE-2026-20296 | 8.3 | 0.17% | 1 | 0 | 2026-07-15T18:32:05 | In Splunk Enterprise versions below 10.4.1, 10.2.5, 10.0.8, and 9.4.13, and Splu | |
| CVE-2026-60005 | 8.2 | 0.61% | 1 | 0 | 2026-07-15T16:23:03.437000 | NGINX Plus and NGINX Open Source have a vulnerability in the ngx_http_slice_modu | |
| CVE-2026-42533 | 8.1 | 0.83% | 1 | 1 | 2026-07-15T15:33:14 | A vulnerability exists in NGINX Plus and NGINX Open Source when a map directive | |
| CVE-2026-56434 | 6.5 | 0.39% | 1 | 0 | 2026-07-15T15:33:13 | NGINX Plus and NGINX Open Source have a vulnerability in the ngx_http_ssi_module | |
| CVE-2026-48309 | 7.8 | 0.17% | 1 | 0 | 2026-07-15T13:51:52.543000 | Audition is affected by an out-of-bounds write vulnerability that could result i | |
| CVE-2026-9770 | None | 0.22% | 1 | 0 | 2026-07-15T03:33:02 | Kasa EC71 v4 and EC70 v4 firmware contains a static cryptographic private key st | |
| CVE-2026-13585 | None | 0.11% | 1 | 1 | 2026-07-15T03:33:01 | Allocation of Resources Without Limits and Throttling and Sensitive Information | |
| CVE-2026-56155 | 7.8 | 0.38% | 2 | 0 | 2026-07-14T21:32:52 | Insufficient granularity of access control in Active Directory Federation Servic | |
| CVE-2026-15409 | 10.0 | 1.27% | 3 | 5 | 2026-07-14T21:32:22 | A Server-side request forgery (SSRF) vulnerability has been identified in the SM | |
| CVE-2026-15410 | 7.2 | 1.49% | 1 | 3 | 2026-07-14T21:32:21 | Post-authentication improper control of generation of code ('Code Injection') vu | |
| CVE-2026-13001 | 9.8 | 1.08% | 1 | 2 | 2026-07-14T21:32:21 | The Podlove Podcast Publisher plugin for WordPress is vulnerable to arbitrary fi | |
| CVE-2026-56164 | 5.3 | 5.60% | 1 | 1 | 2026-07-14T21:10:41.693000 | Missing authentication for critical function in Microsoft Office SharePoint allo | |
| CVE-2026-44891 | 7.5 | 0.69% | 1 | 0 | 2026-07-14T20:16:37 | ### Summary The StompSubframeDecoder fails to limit the total number of headers | |
| CVE-2026-54052 | 9.9 | 0.39% | 2 | 0 | 2026-07-14T19:07:15 | ## Impact In multi-tenant HTTP deployments — where a single n8n-mcp server serv | |
| CVE-2026-58635 | 7.8 | 0.22% | 1 | 1 | 2026-07-14T18:32:12 | Improper neutralization of special elements used in a command ('command injectio | |
| CVE-2026-50663 | 8.8 | 0.65% | 1 | 0 | 2026-07-14T18:32:06 | Relative path traversal in Age of Empires II: Definitive Edition Game allows an | |
| CVE-2026-53565 | None | 0.10% | 1 | 0 | 2026-07-14T15:32:25 | Improper Privilege Management vulnerability in Citrix Secure Access Client for W | |
| CVE-2026-53566 | None | 0.11% | 1 | 0 | 2026-07-14T15:32:24 | Out-of-bounds read vulnerability in Citrix Citrix Secure Access Client for Windo | |
| CVE-2026-6875 | None | 0.51% | 1 | 0 | 2026-07-13T21:31:30 | ServiceNow has addressed a remote code execution vulnerability that was identifi | |
| CVE-2026-45260 | 8.1 | 0.43% | 1 | 0 | 2026-07-10T19:08:23 | ### Summary Pimcore's WebDAV asset endpoint exposes a `MOVE` operation through ` | |
| CVE-2026-45162 | 8.0 | 0.57% | 1 | 0 | 2026-07-10T19:07:30 | # GitHub Security Advisory Draft — GM-374 ## Summary Multiple locations in Pimc | |
| CVE-2026-56688 | 9.1 | 1.29% | 1 | 0 | 2026-07-10T12:31:56 | Dell PowerFlex Manager, Version prior to 5.1.0.1, contain(s) an Improper Neutral | |
| CVE-2026-15378 | 9.3 | 0.42% | 1 | 0 | 2026-07-10T12:31:55 | A flaw was found in the `guardrails-detectors` component. This vulnerability all | |
| CVE-2026-59826 | 9.1 | 0.39% | 1 | 0 | 2026-07-10T05:16:38.427000 | Metabase is an open-source business intelligence and embedded analytics tool. Fr | |
| CVE-2026-49485 | 7.5 | 0.68% | 1 | 0 | 2026-07-09T13:43:04 | # Summary All implementations of FHIRPathEngine accept arbitrary FHIRPath expres | |
| CVE-2026-54496 | 9.3 | 0.32% | 1 | 0 | 2026-07-06T21:23:42 | ### Summary A soundness vulnerability in the variable-base scalar multiplicatio | |
| CVE-2026-52746 | 7.5 | 0.68% | 1 | 0 | 2026-07-02T20:13:56 | ### Impact In JSONata `<v2.2.0`, it is possible to craft non-matching inputs to | |
| CVE-2026-45659 | 8.8 | 3.22% | 1 | 1 | 2026-07-01T21:35:53 | Deserialization of untrusted data in Microsoft Office SharePoint allows an autho | |
| CVE-2026-50151 | 7.5 | 0.48% | 1 | 0 | 2026-07-01T21:35:48 | ## Summary oras-go follows a registry-controlled `Location` header during the m | |
| CVE-2026-54458 | 9.6 | 0.30% | 2 | 0 | 2026-06-22T14:36:04 | # Unauthenticated Stored DOM XSS via `page_title` Broadcast in AVideo YPTSocket | |
| CVE-2026-43088 | 5.5 | 0.12% | 1 | 0 | 2026-06-19T15:34:14 | In the Linux kernel, the following vulnerability has been resolved: net: af_key | |
| CVE-2026-3891 | 9.8 | 2.77% | 1 | 7 | template | 2026-06-17T10:44:23.283000 | The Pix for WooCommerce plugin for WordPress is vulnerable to arbitrary file upl |
| CVE-2026-32201 | 6.5 | 21.48% | 1 | 1 | 2026-06-17T10:35:20.103000 | Improper input validation in Microsoft Office SharePoint allows an unauthorized | |
| CVE-2026-2699 | 9.8 | 49.42% | 1 | 2 | template | 2026-06-17T10:31:33.870000 | Customer Managed ShareFile Storage Zones Controller (SZC) allows an unauthentica |
| CVE-2026-48062 | 9.8 | 0.44% | 1 | 0 | 2026-06-11T17:16:09 | ### Impact The `ext_in` upload validation rule checked the MIME-derived guessed | |
| CVE-2026-44023 | 8.6 | 0.29% | 1 | 0 | 2026-06-03T21:16:26 | ### Impact In versions `>= 1.5.0, < 2.74.1`, `docling-core` did not sufficiently | |
| CVE-2026-45799 | 7.5 | 0.50% | 1 | 0 | 2026-05-19T19:54:51 | # CVE-2026-45799 ## Maintainer summary Wire's protobuf group-skipping logic di | |
| CVE-2026-46339 | 10.0 | 4.57% | 1 | 0 | template | 2026-05-19T19:22:06 | ## Summary 9router exposes two unauthenticated API endpoints that, when chained |
| CVE-2026-3220 | 8.8 | 0.32% | 1 | 4 | 2026-05-18T15:30:37 | The Autoptimize WordPress plugin before 3.1.15, Clearfy Cache WordPress plugin | |
| CVE-2025-69443 | 6.3 | 0.31% | 1 | 0 | 2026-05-15T15:31:41 | Remote Code Execution in coleam00 Archon 0.1.0. A crafted HTML page, when access | |
| CVE-2025-40949 | 9.1 | 0.67% | 1 | 0 | 2026-05-12T12:32:14 | A vulnerability has been identified in RUGGEDCOM ROX MX5000 (All versions < V2.1 | |
| CVE-2026-2701 | 9.1 | 48.81% | 1 | 0 | 2026-04-21T00:33:18 | Authenticated user can upload a malicious file to the server and execute it, whi | |
| CVE-2026-3300 | 9.8 | 40.99% | 1 | 2 | template | 2026-03-31T03:31:35 | The Everest Forms Pro plugin for WordPress is vulnerable to Remote Code Executio |
| CVE-2026-33482 | 8.1 | 2.06% | 1 | 0 | 2026-03-25T18:50:03 | ## Summary The `sanitizeFFmpegCommand()` function in `plugin/API/standAlone/fun | |
| CVE-2025-3248 | None | 99.99% | 1 | 28 | template | 2025-11-05T20:12:46 | Langflow versions prior to 1.3.0 are susceptible to code injection in the /api/v |
| CVE-2025-20204 | 4.8 | 0.31% | 1 | 0 | 2025-02-05T18:34:46 | A vulnerability in the web-based management interface of Cisco Identity Services | |
| CVE-2025-20205 | 4.8 | 0.31% | 1 | 0 | 2025-02-05T18:34:46 | A vulnerability in the web-based management interface of Cisco Identity Services | |
| CVE-2026-14266 | 0 | 0.00% | 3 | 1 | N/A | ||
| CVE-2026-63030 | 0 | 8.95% | 15 | 40 | template | N/A | |
| CVE-2026-60137 | 0 | 4.03% | 9 | 22 | N/A | ||
| CVE-2026-15631 | 0 | 0.30% | 1 | 0 | N/A | ||
| CVE-2026-16158 | 0 | 0.23% | 1 | 0 | N/A | ||
| CVE-2026-56741 | 0 | 0.52% | 1 | 0 | N/A | ||
| CVE-2026-54523 | 0 | 0.00% | 2 | 0 | N/A | ||
| CVE-2026-44436 | 0 | 0.28% | 1 | 0 | N/A | ||
| CVE-2026-39359 | 0 | 0.24% | 1 | 0 | N/A | ||
| CVE-2026-15899 | 0 | 0.00% | 1 | 0 | N/A | ||
| CVE-2026-59827 | 0 | 0.46% | 1 | 1 | N/A | ||
| CVE-2026-55445 | 0 | 0.40% | 1 | 0 | N/A | ||
| CVE-2026-55234 | 0 | 0.24% | 1 | 0 | N/A | ||
| CVE-2026-55652 | 0 | 0.36% | 1 | 0 | N/A |
updated 2026-07-19T15:16:49.027000
2 posts
🟠 CVE-2026-16221 - High (7.5)
Impact: fast-uri versions from 2.3.1 through 4.1.0 (including the 3.x line up to 3.1.3 and the 2.x line up to 2.4.2) do not treat a literal backslash character (U+005C) as an authority delimiter. Node's native WHATWG URL parser, used by fetch, und...
🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-16221/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##🟠 CVE-2026-16221 - High (7.5)
Impact: fast-uri versions from 2.3.1 through 4.1.0 (including the 3.x line up to 3.1.3 and the 2.x line up to 2.4.2) do not treat a literal backslash character (U+005C) as an authority delimiter. Node's native WHATWG URL parser, used by fetch, und...
🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-16221/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##updated 2026-07-19T12:30:30
1 posts
CVE-2026-16228: MEDIUM-severity SQL injection in SourceCodester Class and Exam Timetabling System 1.0 (/edit_schoolyr.php). Remote, unauthenticated exploitation possible. No patch — apply input validation & parameterized queries. https://radar.offseq.com/threat/cve-2026-16228-sql-injection-in-sourcecodester-class-and-exam-timetabling-system-032a2d253dffeeae #OffSeq #SQLInjection #AppSec
##updated 2026-07-19T12:30:30
1 posts
CVE-2026-16229 (MEDIUM, CVSS 5.3): XSS in itsourcecode Courier Management System v1.0 via 'page' param in /index.php. Remote exploitation possible, user interaction needed. No patch yet — use WAF and input validation. https://radar.offseq.com/threat/cve-2026-16229-cross-site-scripting-in-itsourcecode-courier-management-system-ed5bf04aced8e4b0 #OffSeq #XSS #Vuln
##updated 2026-07-19T12:30:21
1 posts
CVE-2026-16227: SQL injection in SourceCodester Class and Exam Timetabling System v1.0 (/edit_subject.php, ID param). MEDIUM severity (CVSS 6.9). No patch yet — use input validation & parameterized queries. https://radar.offseq.com/threat/cve-2026-16227-sql-injection-in-sourcecodester-class-and-exam-timetabling-system-bf78ed5f513695ba #OffSeq #SQLInjection #AppSec #Vuln
##updated 2026-07-19T09:31:42
1 posts
CVE-2026-16223: SSRF in 1Panel-dev CordysCRM 1.4.0 & 1.4.1 (MEDIUM, CVSS 5.3). Exploitable via appSecret — enables unauthorized server requests. No patch yet: restrict endpoint, monitor logs. https://radar.offseq.com/threat/cve-2026-16223-server-side-request-forgery-in-1panel-dev-cordyscrm-b282fef55db79c7d #OffSeq #SSRF #CyberSecurity #Vuln
##updated 2026-07-19T06:30:33
1 posts
guohongze adminset (v0.1 – 0.61) is vulnerable to authorization bypass (CVE-2026-16217) via delivery/deli.py. Remote exploitation is possible, exploit is public. Severity: MEDIUM. Patch unavailable. https://radar.offseq.com/threat/cve-2026-16217-authorization-bypass-in-guohongze-adminset-47f5be1f2f522b7f #OffSeq #CVE202616217 #Vuln #Infosec
##updated 2026-07-19T04:17:04.343000
1 posts
CVE-2026-16210: Medium severity vuln in newpanjing simpleui 2026.01.13 allows remote, unauthenticated actions via AjaxAdmin AJAX Endpoint. Exploit is public — no vendor fix yet. Restrict access or disable endpoint until patched. https://radar.offseq.com/threat/cve-2026-16210-missing-authentication-in-newpanjing-simpleui-9641080cfd337cea #OffSeq #Vuln #SimpleUI
##updated 2026-07-19T00:30:23
2 posts
🟠 CVE-2026-10130 - High (8.2)
QueryWeaver contains an authentication bypass vulnerability that allows unauthenticated attackers to obtain valid session tokens for existing accounts by submitting a signup request with a known victim email address. The signup route unconditional...
🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-10130/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##CVE-2026-10130 (HIGH, CVSS 8.2) in FalkorDB QueryWeaver: attackers can bypass authentication and obtain session tokens for existing accounts by submitting signup requests with known emails. Review signup flows. https://radar.offseq.com/threat/cve-2026-10130-cwe-863-incorrect-authorization-in-falkordb-queryweaver-b58c3b7d941d0845 #OffSeq #Vulnerability #FalkorDB #Infosec
##updated 2026-07-18T21:30:30
2 posts
🟠 CVE-2026-12228 - High (8.7)
A stored cross-site scripting (XSS) vulnerability exists in the `POST /api/prompts/share` endpoint of parisneo/lollms (latest version). The endpoint stores attacker-controlled `prompt_content` into `DBDirectMessage.content` without server-side san...
🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-12228/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##CVE-2026-12228: parisneo/lollms suffers HIGH severity stored XSS (CVSS 8.7) via POST /api/prompts/share. Authenticated users can execute JS in victims' browsers, risking account takeover. Patch status unknown — check vendor updates. https://radar.offseq.com/threat/cve-2026-12228-cwe-79-improper-neutralization-of-input-during-web-page-generation-cross-site-scripting-9a447d2fa5ce8bc8 #OffSeq #XSS #Vuln #InfoSec
##updated 2026-07-18T20:17:30.283000
2 posts
🟠 CVE-2026-53994 - High (7.5)
ProFTPD mod_sftp contains a heap-based buffer overflow reachable by an authenticated SFTP user. The fxp_packet_read() function accepts the attacker-supplied 32-bit big-endian SFTP packet length without a minimum sanity check. A value of 0 causes a...
🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-53994/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##CVE-2026-53994: ProFTPD mod_sftp heap buffer overflow (HIGH severity, CVSS 7.5) lets authenticated SFTP users crash session processes via crafted 0-length packets. Patch status unconfirmed — restrict SFTP access & monitor logs. https://radar.offseq.com/threat/cve-2026-53994-heap-based-buffer-overflow-in-proftpd-project-proftpd-fe4dcd4d99eab6eb #OffSeq #ProFTPD #infosec #vuln
##updated 2026-07-18T17:22:30
1 posts
🔴 CVE-2026-55518 - Critical (9.6)
Avo is a framework to create admin panels for Ruby on Rails apps. Prior to 3.32.1 and 4.0.0.beta.51, Avo's association attach workflow checks attach_? in the UI and GET /resources/:resource/:id/:related/new path, but the actual write endpoint, POS...
🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-55518/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##updated 2026-07-18T16:17:12.873000
1 posts
CVE-2026-16125 - SSRF in Zevorn rt-claw up to 0.2.0. Remote exploitation via url argument in claw_net_get/claw_net_post. CVSS 7.3. Exploit public, no patch available. Monitor or isolate affected systems. #CVE #Zevorn #infosec
##updated 2026-07-18T15:31:56
2 posts
CVE-2026-11826 | HIGH severity heap overflow in openplcproject OpenPLC_v3: Crafted HTTP POST to /modbus can crash the PLC process & corrupt config fields. No fix — migrate to v4 & restrict access. https://radar.offseq.com/threat/cve-2026-11826-heap-based-buffer-overflow-in-openplcproject-openplcv3-ec8a841c0c4e3b26 #OffSeq #ICS #Vulnerability #Infosec
##🟠 CVE-2026-11826 - High (8.8)
OpenPLC_v3 contains a heap-based buffer overflow in the getData() function in webserver/core/modbus_master.cpp. getData() reads characters between two delimiters into a caller-supplied buffer with no size parameter and no bounds check. In parseCon...
🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-11826/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##updated 2026-07-18T15:31:56
1 posts
🟠 CVE-2026-9323 - High (8.1)
The urwid web display backend (urwid/display/web.py) generates web session identifiers (urwid_id) in Screen.start() by concatenating two random.randrange(10**9) calls that use Python's Mersenne Twister PRNG, which is not cryptographically secure. ...
🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-9323/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##updated 2026-07-18T15:31:55
2 posts
🟠 CVE-2026-9147 - High (7.8)
uproot dynamically generates Python class source code from ROOT TStreamerInfo records in a file and compiles it at runtime. Some file-controlled streamer metadata fields (for example, streamer element names) are interpolated into the generated Pyt...
🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-9147/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##scikit-hep uproot has a HIGH-severity code injection flaw (CVE-2026-9147, CVSS 8.5). Malicious ROOT files can trigger arbitrary Python code execution. Avoid untrusted files until fixed. Full details: https://radar.offseq.com/threat/cve-2026-9147-improper-control-of-generation-of-code-code-injection-in-scikit-hep-uproot-a352d097ded08c6a #OffSeq #Vulnerability #Python #ThreatIntel
##updated 2026-07-18T14:17:11.620000
1 posts
🔴 CVE-2026-16117 - Critical (10)
Impact: @fastify/http-proxy versions up to and including 11.5.0 fail to rewrite the request prefix when the prefix segment is URL-encoded. Fastify's router URL-decodes paths for route matching, but request.url retains the original encoded form, an...
🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-16117/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##updated 2026-07-18T12:33:18
2 posts
CVE-2026-16097: HIGH severity stack-based buffer overflow in Shibby Tomato 1.28's Scheduler Name Handler. Remote code execution possible, no patch exists. Migrate to FreshTomato for security. Details: https://radar.offseq.com/threat/a-vulnerability-was-found-in-shibby-tomato-128-cve-2026-16097-d1363dcb6ae1c71e #OffSeq #Vulnerability #RouterSecurity #InfoSec
##🟠 CVE-2026-16097 - High (8.8)
A vulnerability was found in Shibby Tomato 1.28. This vulnerability affects the function sub_42537C of the component Scheduler Name Handler. The manipulation of the argument a1 results in stack-based buffer overflow. It is possible to launch the a...
🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-16097/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##updated 2026-07-18T12:33:13
3 posts
CVE-2026-16096: HIGH severity stack buffer overflow in Shibby Tomato 1.28 RT-N5x MIPSR2 Build 124 (/proc/webmon_recent_domains). Remote exploit possible, no official patch. Migrate to FreshTomato. https://radar.offseq.com/threat/a-vulnerability-has-been-found-in-shibby-tomato-128-rt-n5x-mipsr2-build-124-cve-2026-16096-68e7082f09658d0a #OffSeq #Vulnerability #RouterSecurity #CVE #IoT
##🟠 CVE-2026-16096 - High (8.8)
A vulnerability has been found in Shibby Tomato 1.28 RT-N5x MIPSR2 Build 124. This affects the function sub_40BB50 of the file /proc/webmon_recent_domains. The manipulation leads to stack-based buffer overflow. It is possible to initiate the attac...
🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-16096/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##CVE-2026-16096: Stack-based buffer overflow (CVSS 8.7, HIGH) in Shibby Tomato 1.28 RT-N5x MIPSR2 Build 124 (/proc/webmon_recent_domains). Remote exploit possible. Migrate to FreshTomato. https://radar.offseq.com/threat/cve-2026-16096-stack-based-buffer-overflow-in-shibby-tomato-e5419cb0350bdcaf #OffSeq #Vulnerability #Infosec
##updated 2026-07-18T11:16:43.833000
1 posts
🟠 CVE-2026-16095 - High (8.8)
A flaw has been found in Shibby Tomato 1.28 RT-N5x MIPSR2 Build 124. Affected by this issue is the function setup_conntrack of the file /sbin/rc. Executing a manipulation of the argument ct_tcp_timeout can lead to out-of-bounds write. The attack m...
🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-16095/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##updated 2026-07-18T09:32:24
1 posts
🟠 CVE-2026-47871 - High (8.8)
VMware Avi Load Balancer contains a directory traversal vulnerability. Flaws in file path validation allow malicious, authenticated network users to perform directory traversal attacks.
Affected versions:
32.1.1 (fixed in 32.1.2)
31.1.1 through 3...
🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-47871/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##updated 2026-07-18T09:32:24
1 posts
🟠 CVE-2026-47869 - High (8.7)
VMware Avi Load Balancer contains a remote code execution vulnerability. A malicious authenticated user with network access may be able to inject and execute code.
Affected versions:
32.1.1 (fixed in 32.1.2)
31.1.1 through 31.2.2 (fixed in 31.2.2...
🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-47869/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##updated 2026-07-18T09:32:24
1 posts
🟠 CVE-2026-47866 - High (8.3)
VMware Avi Load Balancer contains an authorization bypass vulnerability. A malicious actor on the network can access a limited subset of the Avi Control Plane without proper authorization.
Affected versions:
32.1.1 (fixed in 32.1.2)
31.1.1 throug...
🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-47866/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##updated 2026-07-18T09:32:24
1 posts
🔴 CVE-2026-47865 - Critical (9.8)
VMware Avi Load Balancer contains an authentication bypass vulnerability. A malicious user with network access may be able to access the Avi Control plane by bypassing the authentication mechanism.
Affected versions:
31.1.1 through 31.2.2 (fixed ...
🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-47865/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##updated 2026-07-18T09:32:18
1 posts
🟠 CVE-2026-47868 - High (7.8)
VMware Avi Load Balancer contains a local privilege escalation vulnerability. A malicious user with local access may be able to escalate their privileges to run code as root.
Affected versions:
32.1.1 (fixed in 32.1.2)
31.1.1 through 31.2.2 (fixe...
🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-47868/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##updated 2026-07-18T09:17:08.527000
1 posts
🟠 CVE-2026-47867 - High (8.7)
VMware Avi Load Balancer contains a remote code execution vulnerability. A malicious user with network access may be able to access the Avi Control plane and execute code remotely.
Affected versions:
32.1.1 (fixed in 32.1.2)
31.1.1 through 31.2.2...
🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-47867/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##updated 2026-07-18T05:16:56.320000
1 posts
🔴 CVE-2026-9198 - Critical (9.8)
IBM Langflow OSS 1.0.0 through 1.10.0 allows unauthenticated attackers to chain /api/v1/auto_login (mints SUPERUSER tokens to any network caller) with /api/v1/validate/code (executes user code via exec()) to achieve full RCE on default Langflow de...
🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-9198/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##updated 2026-07-18T05:16:55.780000
2 posts
🟠 CVE-2026-62228 - High (8.8)
OpenClaw before 2026.6.5 contain an authorization bypass vulnerability in node exec approvals that allows lower-trust callers to execute actions beyond their intended authorization by using different gateway and node environments. Attackers can ex...
🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-62228/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##🟠 CVE-2026-62228 - High (8.8)
OpenClaw before 2026.6.5 contain an authorization bypass vulnerability in node exec approvals that allows lower-trust callers to execute actions beyond their intended authorization by using different gateway and node environments. Attackers can ex...
🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-62228/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##updated 2026-07-18T00:16:47.840000
1 posts
🟠 CVE-2026-44739 - High (8.7)
Pimcore is an Open Source Data & Experience Management Platform. Prior to 11.5.17 (LTS) and 12.3.6, the columnConfigAction endpoint in bundles/CustomReportsBundle/src/Controller/Reports/CustomReportController.php passes malicious SQL configuration...
🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-44739/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##updated 2026-07-17T22:17:57.153000
1 posts
🟠 CVE-2026-56740 - High (7.5)
JLine is a Java library for handling console input. Prior to 3.30.14, 4.0.16, and 4.2.1, the JLine3 Telnet server remote-telnet module does not limit the number of environment variables a client may inject via the Telnet NEW-ENVIRON option, and Te...
🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-56740/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##updated 2026-07-17T21:31:53
1 posts
🟠 CVE-2026-7667 - High (8.8)
IBM Langflow OSS 1.0.0 through 1.10.0 allows an authenticated attacker to create a malicious flow pointing to an attacker-controlled URL that returns a specially crafted Content-Disposition header (e.g., filename="../../../target/path" ), enabling...
🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-7667/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##updated 2026-07-17T21:31:53
1 posts
🔴 CVE-2026-8481 - Critical (9.9)
IBM Langflow OSS 1.0.0 through 1.10.0 contain a critical remote code execution vulnerability in the code validation API endpoint. The POST /api/v1/validate/code endpoint accepts user-supplied Python code and executes it directly using Python's bu...
🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-8481/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##updated 2026-07-17T21:31:53
1 posts
🟠 CVE-2026-7755 - High (8.8)
IBM Langflow OSS 1.0.0 through 1.10.0 Langflow could allow remote code execution due to incomplete validation enforcement on MCP server configuration files.
🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-7755/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##updated 2026-07-17T21:31:53
1 posts
🔴 CVE-2026-8859 - Critical (9.9)
IBM Langflow OSS 1.0.0 through 1.10.0 Langflow could allow an attacker to write arbitrary files to unintended locations due to improper input validation in the APIRequest component. A path traversal vulnerability exists when the "Save to File" fea...
🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-8859/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##updated 2026-07-17T21:31:53
2 posts
🔴 CVE-2026-8505 - Critical (9.8)
IBM Langflow OSS 1.0.0 through 1.10.0 has a vulnerability in Langflow's webhook authentication logic allows unauthenticated users to trigger the execution of any flow. The system incorrectly bypasses API key validation when the WEBHOOK_AUTH_ENABLE...
🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-8505/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##CRITICAL (CVSS 9.8): CVE-2026-8505 in IBM Langflow OSS 1.0.0 – 1.10.0 enables unauthenticated RCE via default webhook auth config. Set WEBHOOK_AUTH_ENABLE=True to mitigate until official fix. Details: https://radar.offseq.com/threat/cve-2026-8505-vulnerability-in-ibm-langflow-oss-6558aceea84f8b7d #OffSeq #CVE20268505 #RCE #IBM
##updated 2026-07-17T21:31:52
1 posts
🟠 CVE-2026-14499 - High (8.8)
IBM Langflow OSS 1.0.0 through 1.10.1 Langflow could allow an authenticated user to execute arbitrary commands with elevated privileges on the system due to improper validation of user supplied input in the Python Interpreter component.
🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-14499/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##updated 2026-07-17T21:31:52
1 posts
🟠 CVE-2026-13473 - High (8.1)
IBM Storage Protect Client 8.1.0.0 through 8.1.27.0, 8.1.27.1, and 8.2.0.0 through 8.2.1.0 IBM Storage Protect is vulnerable to a heap-based buffer overflow, caused by improper bounds checking. A remote attacker could overflow a buffer and execute...
🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-13473/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##updated 2026-07-17T21:31:52
1 posts
🟠 CVE-2026-13448 - High (8.1)
IBM Langflow OSS 1.0.0 through 1.10.1 Lanflow OSS contains an unauthenticated remote code execution vulnerability in the public flow build endpoint ( /api/v1/build_public_tmp/{flow_id}/flow ). The vulnerability stems from an incomplete denylist in...
🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-13448/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##updated 2026-07-17T21:31:52
1 posts
🔴 CVE-2026-15091 - Critical (9.3)
IBM Engineering AI Hub 1.0.0, 1.1.0, and 1.2.0 could allow a remote attacker to execute arbitrary scripts due to improper neutralization of input during web page generation.
🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-15091/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##updated 2026-07-17T21:31:52
1 posts
🟠 CVE-2026-48373 - High (7.8)
Acrobat Reader is affected by a Heap-based Buffer Overflow vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious ...
🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-48373/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##updated 2026-07-17T21:31:52
1 posts
🔴 CVE-2026-8476 - Critical (9.9)
IBM Langflow OSS 1.0.0 through 1.10.0 contain a critical remote code execution vulnerability in the disk-based caching mechanism. The AsyncDiskCache class uses Python's unsafe pickle.loads() function to deserialize cached objects from disk withou...
🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-8476/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##updated 2026-07-17T21:31:52
1 posts
🔴 CVE-2026-8635 - Critical (9.9)
IBM Langflow OSS 1.0.0 through 1.10.0 allows authenticated users to escalate privileges to superuser by directly manipulating the database, execute arbitrary system commands, and achieve full system compromise with Langflow service permissions.
🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-8635/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##updated 2026-07-17T21:31:52
1 posts
🟠 CVE-2026-9171 - High (7.5)
IBM PowerVM Novalink are vulnerable to a denial of service, caused by sending a specially-crafted request. A remote attacker could exploit this vulnerability to cause the server to consume memory resources.
🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-9171/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##updated 2026-07-17T21:31:52
1 posts
🔴 CVE-2026-9103 - Critical (9.8)
IBM Langflow OSS 1.0.0 through 1.10.0 could allow a remote attacker to gain unauthorized access due to improper authentication in the /api/v1/login/auto_login endpoint. The endpoint issues long-lived superuser bearer tokens without requiring authe...
🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-9103/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##updated 2026-07-17T21:17:07.963000
1 posts
🔴 CVE-2026-54159 - Critical (10)
PrestaShop ps_facetedsearch is a module that adds layered navigation filters. From 3.0.0 until 4.0.4, the ps_facetedsearch module rebuilds selected search filters from the request URL, and the value of a slider filter, price or weight, is taken fr...
🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-54159/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##updated 2026-07-17T21:17:07.337000
2 posts
CVE-2026-50274 - High-severity DoS in Datadog dd-trace-go. Unpatched. Remote attacker can exploit missing baggage limits (CVSS 7.5). Update to 2.8.1 immediately. #CVE #Datadog #infosec
##🟠 CVE-2026-50274 - High (7.5)
Datadog dd-trace-go is a Go client library for Datadog application performance monitoring, profiling, and security monitoring. Prior to 2.8.1, Datadog tracing libraries that implement W3C baggage propagation parse incoming baggage HTTP headers wit...
🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-50274/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##updated 2026-07-17T21:17:07.070000
1 posts
🟠 CVE-2026-50271 - High (7.5)
Datadog dd-trace-py is the Datadog Python APM client. Prior to 4.8.2, Datadog tracing libraries that implement W3C baggage propagation parse incoming baggage HTTP headers without enforcing DD_TRACE_BAGGAGE_MAX_ITEMS or DD_TRACE_BAGGAGE_MAX_BYTES l...
🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-50271/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##updated 2026-07-17T21:17:05.960000
2 posts
🔴 CVE-2026-13446 - Critical (9.8)
IBM Langflow OSS 1.0.0 through 1.10.1 contains hard-coded credentials, such as a password or cryptographic key, which it uses for its own inbound authentication, outbound communication to external components, or encryption of internal data.
🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-13446/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##CVE-2026-13446: IBM Langflow OSS 1.0.0 – 1.10.1 contains hard-coded credentials (CRITICAL, CVSS 9.8). Total system compromise possible. No patch yet — restrict access, monitor activity. More: https://radar.offseq.com/threat/cve-2026-13446-cwe-798-use-of-hard-coded-credentia-e33f708cc1420dc3 #OffSeq #Vuln #Cybersecurity #IBM
##updated 2026-07-17T21:17:05.473000
1 posts
🟠 CVE-2026-13445 - High (8.1)
IBM Langflow OSS 1.0.0 through 1.10.1 can allow an authenticated attacker to exploit the SaveToFile component to read and modify another user's uploaded files by specifying absolute paths pointing to victim storage locations. In append mode, the a...
🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-13445/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##updated 2026-07-17T20:17:30.500000
1 posts
🟠 CVE-2026-8056 - High (8.8)
IBM Langflow OSS 1.0.0 through 1.10.0 allows authenticated users to override component parameters at runtime via the API. A critical security flaw exists in the parameter filtering mechanism within the `apply_tweaks()` function.
🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-8056/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##updated 2026-07-17T20:17:30.377000
1 posts
🟠 CVE-2026-7872 - High (7.5)
IBM Langflow OSS 1.0.0 through 1.10.0 allows an authenticated attacker to read arbitrary files including the JWT signing key and forge authentication tokens for any user.
🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-7872/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##updated 2026-07-17T20:17:29.470000
1 posts
🟠 CVE-2026-7754 - High (7.7)
IBM Langflow OSS 1.0.0 through 1.10.0 Langflow 1.9.0 could allow server-side request forgery (SSRF) due to insecure default configuration and incomplete enforcement of the SSRF protection mechanism.
🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-7754/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##updated 2026-07-17T20:17:27.157000
1 posts
🟠 CVE-2026-58195 - High (8.8)
Agentic-Flow is an AI agent orchestration platform. Prior to 2.0.14, agentic-flow MCP server tools in src/mcp/standalone-stdio.ts, src/mcp/fastmcp/servers/claude-flow-sdk.ts, src/mcp/fastmcp/servers/stdio-full.ts, src/mcp/fastmcp/servers/http-stre...
🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-58195/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##updated 2026-07-17T20:17:24.220000
1 posts
🟠 CVE-2026-50273 - High (7.5)
Datadog .NET Tracer is a client library for Datadog APM for .NET applications. Prior to 3.43.0, Datadog tracing libraries that implement W3C baggage propagation parse incoming baggage HTTP headers without enforcing DD_TRACE_BAGGAGE_MAX_ITEMS or DD...
🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-50273/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##updated 2026-07-17T20:17:15.800000
1 posts
🟠 CVE-2026-15322 - High (7.5)
IBM Engineering AI Hub 1.0.0, 1.1.0, and 1.2.0 could allow a remote attacker to obtain sensitive information due to the exposure of session tokens in URLs.
🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-15322/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##updated 2026-07-17T19:17:19.390000
1 posts
🔴 CVE-2026-9135 - Critical (9.9)
IBM Langflow OSS 1.0.0 through 1.10.0 Langflow versions up to 1.9.2 (commit 94981c443d4918517b9e8163d70fc598dc33a32d) contain a code injection vulnerability in the Policies component's ToolGuard integration that bypasses the allow_custom_component...
🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-9135/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##updated 2026-07-17T19:17:18.647000
3 posts
🔴 CVE-2026-62241 - Critical (9.1)
clawvet self-hosted API server (apps/api) before 0.7.5 hard-codes a fallback JWT secret ('clawvet-dev-secret-change-me') in auth.ts and ships it as the default in .env.example. Because GET /api/v1/scans returns scan records containing userId value...
🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-62241/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##🔴 CVE-2026-62241 - Critical (9.1)
clawvet self-hosted API server (apps/api) before 0.7.5 hard-codes a fallback JWT secret ('clawvet-dev-secret-change-me') in auth.ts and ships it as the default in .env.example. Because GET /api/v1/scans returns scan records containing userId value...
🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-62241/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##MohibShaikh clawvet API server <0.7.5 (CVE-2026-62241) suffers a CRITICAL flaw: hard-coded JWT secret enables unauthenticated user data access and session cookie forgery. Change secrets & limit endpoint access. https://radar.offseq.com/threat/cve-2026-62241-missing-authentication-for-critical-b8ebafbae06b4bce #OffSeq #CVE202662241 #vuln
##updated 2026-07-17T19:17:18.390000
2 posts
🟠 CVE-2026-62227 - High (7.7)
OpenClaw 2026.4.14 before 2026.5.26 contain a server-side request forgery vulnerability in browser snapshot routes that fail to validate post-navigation destinations. Attackers with lower-trust access can bypass OpenClaw policy checks to reach net...
🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-62227/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##🟠 CVE-2026-62227 - High (7.7)
OpenClaw 2026.4.14 before 2026.5.26 contain a server-side request forgery vulnerability in browser snapshot routes that fail to validate post-navigation destinations. Attackers with lower-trust access can bypass OpenClaw policy checks to reach net...
🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-62227/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##updated 2026-07-17T18:36:41.143000
1 posts
🟠 CVE-2026-55173 - High (8.1)
WWBN AVideo is an open source video platform. Versions 29.0 and below remain vulnerable to OS command injection because the fix for CVE-2026-33482 was incomplete and still does not neutralize a single & ( the shell background operator). CVE-2026-...
🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-55173/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##updated 2026-07-17T18:35:23.877000
1 posts
CVE-2026-44182: CRITICAL YAML injection in jupyter-server enterprise_gateway <3.3.0 🚨 Untrusted env vars in manifests can let attackers create/modify Kubernetes resources, incl. privileged pods. Upgrade to 3.3.0+ ASAP. https://radar.offseq.com/threat/cve-2026-44182-cwe-74-improper-neutralization-of-s-6b0aef4923a88d9e #OffSeq #CVE202644182 #Kubernetes
##updated 2026-07-17T18:32:30
1 posts
1 repos
🟠 CVE-2025-60357 - High (8.1)
AhnLab EPP Management v1.0.14.32-6249 was discovered to contain a NoSQL injection vulnerability via the eventlog/agentEvent/list endpoint.
🔗 https://www.thehackerwire.com/vulnerability/CVE-2025-60357/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##updated 2026-07-17T18:32:29
1 posts
🟠 CVE-2026-13410 - High (8.2)
Dancer::Plugin::Auth::Google versions through 0.07 for Perl have TLS verification disabled.
The default user agent is initialised with SSL_verify_mode explicitly disabled.
An attacker with network man-in-the-middle (MITM) capability between the ...
🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-13410/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##updated 2026-07-17T18:32:29
1 posts
🔴 CVE-2026-51080 - Critical (9.8)
libpvestorage-perl v9.1.1 and libpve-storage-perl v8.3.7 were discovered to contain an XML External Entity (XXE) vulnerability.
🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-51080/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##updated 2026-07-17T18:31:35
1 posts
🟠 CVE-2026-57860 - High (7.8)
ForgeCode (tailcallhq/forgecode), an AI pair-programming CLI, automatically loads and executes the MCP servers defined in a repository's .mcp.json file on startup without user confirmation. A malicious repository can supply a crafted .mcp.json who...
🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-57860/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##updated 2026-07-17T18:31:35
1 posts
🟠 CVE-2026-9762 - High (7.8)
IBM Db2 11.5.0 through 11.5.9, and 12.1.0 through 12.1.4 is vulnerable to remote code execution when jdbc url is under user control.
🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-9762/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##updated 2026-07-17T18:31:35
2 posts
🔴 CVE-2026-9202 - Critical (9.8)
IBM Langflow OSS 1.0.0 through 1.10.0 allows unauthenticated attackers to create unlimited user accounts on any Langflow instance; when NEW_USER_IS_ACTIVE=true (documented deployment option), newly created accounts are immediately active and can a...
🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-9202/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##CVE-2026-9202 - Critical RCE in IBM Langflow. Unauthenticated account creation bypass leads to RCE. CVSS 9.8. No patch available. Mitigate by disabling NEW_USER_IS_ACTIVE. #CVE #IBM #infosec
##updated 2026-07-17T18:31:34
1 posts
🔴 CVE-2026-12694 - Critical (9.1)
Missing Authorization vulnerability in Vimesoft Inc. Enterprise Video Platform allows Accessing Functionality Not Properly Constrained by ACLs.
This issue affects Enterprise Video Platform: from 3.11.0.0 before 3.25.0.
🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-12694/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##updated 2026-07-17T18:31:34
1 posts
🔴 CVE-2026-12693 - Critical (9.4)
Authorization bypass through User-Controlled key vulnerability in Vimesoft Inc. Enterprise Video Platform allows Accessing Functionality Not Properly Constrained by ACLs.
This issue affects Enterprise Video Platform: from 3.11.0.0 before 3.25.0.
🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-12693/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##updated 2026-07-17T18:31:34
1 posts
🔴 CVE-2026-12692 - Critical (9.8)
Unverified password change vulnerability in Vimesoft Inc. Enterprise Video Platform allows Authentication Bypass.
This issue affects Enterprise Video Platform: from 3.11.0.0 before 3.25.0.
🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-12692/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##updated 2026-07-17T18:31:34
1 posts
🟠 CVE-2026-12691 - High (7.5)
Missing authentication for critical function vulnerability in Vimesoft Inc. Enterprise Video Platform allows Authentication Bypass.
This issue affects Enterprise Video Platform: from 3.11.0.0 before 3.25.0.
🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-12691/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##updated 2026-07-17T18:31:34
1 posts
🟠 CVE-2026-63101 - High (7.5)
Open Event Server through 1.19.1 contains a missing authentication vulnerability that allows unauthenticated attackers to export the complete member roster of any group, including email addresses, names, join dates, and roles, by submitting reques...
🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-63101/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##updated 2026-07-17T17:54:18.640000
1 posts
🔴 CVE-2026-8297 - Critical (9.8)
Improper neutralization of special elements used in an SQL command ('SQL injection') vulnerability in Gis Informatics Engineering Consulting Laboratory R&D and Software Services Inc. GisLab Laboratory Management System allows SQL Injection.
This ...
🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-8297/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##updated 2026-07-17T16:17:13.187000
1 posts
🟠 CVE-2026-13352 - High (8.8)
The Paid Membership Plugin, Ecommerce, User Registration Form, Login Form, User Profile & Restrict Content – ProfilePress plugin for WordPress is vulnerable to Arbitrary File Upload in all versions up to, and including, 4.16.18 via the allowed_m...
🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-13352/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##updated 2026-07-17T15:44:29.553000
2 posts
🟠 CVE-2026-62386 - High (7.5)
The Grav API plugin (getgrav/grav-plugin-api) before 1.0.0-rc.16 accepts JWT access tokens through the ?token= URL query parameter on every API route (JwtAuthenticator::extractBearerToken fallback). Because tokens are embedded in URLs, they are lo...
🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-62386/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##🟠 CVE-2026-62386 - High (7.5)
The Grav API plugin (getgrav/grav-plugin-api) before 1.0.0-rc.16 accepts JWT access tokens through the ?token= URL query parameter on every API route (JwtAuthenticator::extractBearerToken fallback). Because tokens are embedded in URLs, they are lo...
🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-62386/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##updated 2026-07-17T15:44:29.553000
2 posts
🟠 CVE-2026-62234 - High (8.1)
Grav before 2.0.4 fails to restrict cURL protocols in webhook dispatch, allowing authenticated users with api.webhooks.write permission to create webhooks with file://, dict://, or gopher:// URLs. Attackers can trigger webhook events to read local...
🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-62234/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##🟠 CVE-2026-62234 - High (8.1)
Grav before 2.0.4 fails to restrict cURL protocols in webhook dispatch, allowing authenticated users with api.webhooks.write permission to create webhooks with file://, dict://, or gopher:// URLs. Attackers can trigger webhook events to read local...
🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-62234/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##updated 2026-07-17T15:44:29.553000
1 posts
CVE-2026-62232 (CRITICAL): getgrav Grav <2.0.4 has a 2FA bypass flaw — attackers knowing a user's password can overwrite the 2FA secret, reducing protection to password-only. Monitor & restrict access. Patch status pending. https://radar.offseq.com/threat/cve-2026-62232-missing-authorization-in-getgrav-gr-604d58721f0c378d #OffSeq #CVE202662232 #2FA #infosec
##updated 2026-07-17T15:33:32
1 posts
🟠 CVE-2026-11575 - High (7.5)
The PhonePe Payment Solutions WordPress plugin before 3.1.0 does not properly verify the authenticity of incoming payment callbacks: the secret used to validate the callback signature is empty on sites configured through the current setup flow, so...
🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-11575/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##updated 2026-07-17T15:32:37
1 posts
🟠 CVE-2026-8396 - High (7.5)
Improper restriction of XML external entity reference vulnerability in Netcad Software Inc. NetGIS allows Serialized Data External Linking.
This issue affects NetGIS: from 5.0.66 before 7.2.2.
🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-8396/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##updated 2026-07-17T15:32:37
1 posts
🟠 CVE-2026-7488 - High (7.5)
Insertion of sensitive information into sent data vulnerability in IKAS Technology Inc. E-Commerce allows Retrieve Embedded Sensitive Data.
This issue affects E-Commerce: through 03062026.
🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-7488/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##updated 2026-07-17T15:32:37
1 posts
🟠 CVE-2026-63094 - High (8.1)
SigNoz through 0.133.0 contains an open redirect vulnerability in the SSO authentication flow that allows unauthenticated attackers to steal session tokens from any user on instances configured with Google OAuth, SAML, or OIDC. Attackers can call ...
🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-63094/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##updated 2026-07-17T15:32:37
1 posts
🟠 CVE-2026-63093 - High (8.8)
Cursor for Windows version 3.2.16 contains a binary planting vulnerability that allows remote attackers to achieve arbitrary code execution by placing a malicious git.exe file in the repository root directory. When a developer clones and opens a c...
🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-63093/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##updated 2026-07-17T15:32:29
1 posts
🟠 CVE-2026-7189 - High (7.5)
Insertion of sensitive information into sent data vulnerability in Proliz Software Ltd. Co. Proliz's OBS allows Accessing Functionality Not Properly Constrained by ACLs.
This issue affects Proliz's OBS: before v3.6.0.
🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-7189/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##updated 2026-07-17T15:32:28
1 posts
🔴 CVE-2026-9810 - Critical (9.8)
The AI Copilot WordPress plugin before 1.5.4 does not bind OAuth access tokens to a WordPress user, and accepts any valid token as an administrator session, allowing unauthenticated attackers who complete the public OAuth flow to execute privileg...
🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-9810/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##updated 2026-07-17T15:32:27
2 posts
🟠 CVE-2026-11961 - High (8.1)
The User Registration & Membership WordPress plugin before 5.2.3 does not validate that the membership tier submitted during public registration is one of the tiers allowed by the registration form before assigning that tier's associated user rol...
🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-11961/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##CVE-2026-11961 (CRITICAL): User Registration & Membership plugin (pre-5.2.3) allows unauthenticated users to assign arbitrary membership tiers, including admin, during signup. Disable or restrict registration until fixed. https://radar.offseq.com/threat/cve-2026-11961-cwe-269-improper-privilege-manageme-20cb46cff61ded54 #OffSeq #WordPress #CVE2026
##updated 2026-07-17T14:59:38.667000
2 posts
🔴 CVE-2026-15982 - Critical (9.8)
The Aimogen Pro - All-in-One AI Content Writer, Editor, ChatBot & Automation Toolkit plugin for WordPress is vulnerable to Privilege Escalation in all versions up to, and including, 2.8.4. This is due to due to a missing capability check on the 'a...
🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-15982/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##CVE-2026-15982 | CodeRevolution Aimogen Pro (≤2.8.4) has a CRITICAL privilege escalation flaw — attackers can leverage missing capability checks to create admin accounts. Urgent patching advised. https://radar.offseq.com/threat/cve-2026-15982-cwe-269-improper-privilege-manageme-e0b1a13e8364d483 #OffSeq #WordPress #Vulnerability #Infosec
##updated 2026-07-17T06:31:06
1 posts
🟠 CVE-2026-13765 - High (7.5)
The LearnPress – WordPress LMS Plugin for Create and Sell Online Courses plugin for WordPress is vulnerable to Sensitive Information Exposure in all versions up to, and including, 4.4.1 via the check_answer. This makes it possible for unauthenti...
🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-13765/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##updated 2026-07-17T05:16:39.690000
1 posts
Windows AppResolver LPE: From AppContainer to SYSTEM. PoC linked to CVE-2026-50454 https://davidcarliez.github.io/blog/windows-appresolver-lpe-to-system/
##updated 2026-07-17T05:16:38.687000
4 posts
2 repos
Broadcom has new advisories addressing two high-severity vulnerabilities that were fist published on the 15th https://support.broadcom.com/web/ecx/security-advisory
Cisco:
Medium Severity: CVE-2025-20204and CVE-2025-20205 Cisco Identity Services Engine Stored Cross-Site Scripting Vulnerabilities https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-ise-xss-42tgsdMG @TalosSecurity
And if you missed this yesterday, CISA added two Fortinet vulnerabilities to the catalogue:
CISA:
CVE-2026-39808: Fortinet FortiSandbox OS Command Injection Vulnerability https://www.cve.org/CVERecord?id=CVE-2026-39808
CVE-2026-25089: Fortinet FortiSandbox OS Command Injection Vulnerability https://www.cve.org/CVERecord?id=CVE-2026-25089
And a Microsoft vulnerability:
CISA: CVE-2026-58644: Microsoft SharePoint Deserialization of Untrusted Data Vulnerability https://www.cve.org/CVERecord?id=CVE-2026-58644 #Microsoft #CISA #Fortinet #infosec #vulnerability #Cisco #Broadcom
##CISA KEV catalog adds three actively exploited flaws: FortiSandbox CVE-2026-25089, CVE-2026-39808, and SharePoint CVE-2026-58644. Patch by July 19.
#CISA #KEV #Fortinet #FortiSandbox #SharePoint #CVE202658644 #ActivelyExploited #CyberSecurity
##🚨 [CISA-2026:0716] CISA Adds 3 Known Exploited Vulnerabilities to Catalog (https://secdb.nttzen.cloud/security-advisory/detail/CISA-2026:0716)
CISA has added 3 new vulnerabilities to its Known Exploited Vulnerabilities Catalog, based on evidence of active exploitation. These types of vulnerabilities are a frequent attack vector for malicious cyber actors and pose significant risk to the federal enterprise.
⚠️ CVE-2026-25089 (https://secdb.nttzen.cloud/cve/detail/CVE-2026-25089)
- Name: Fortinet FortiSandbox OS Command Injection Vulnerability
- Action: Apply mitigations in accordance with vendor instructions, ensuring compliance with CISA’s BOD 26-04 Prioritizing Security Updates Based on Risk (see URL in Notes) guidance and CISA’s “Forensics Triage Requirements” (see URL in Notes). Follow applicable BOD 26-04 guidance for cloud services or discontinue use of the product if mitigations are unavailable. Stakeholders are responsible for evaluating each asset's internet exposure and ensuring adherence to BOD 26-04 patching guidelines.
- Known To Be Used in Ransomware Campaigns? Unknown
- Vendor: Fortinet
- Product: FortiSandbox
- Notes: https://fortiguard.fortinet.com/psirt/FG-IR-26-141 ; BOD 26-04: https://www.cisa.gov/news-events/directives/bod-26-04-prioritizing-security-updates-based-risk ; Forensics Triage Requirements: https://www.cisa.gov/news-events/directives/bod-26-04-implementation-guidance-prioritizing-security-updates-based-risk ; https://nvd.nist.gov/vuln/detail/CVE-2026-25089
⚠️ CVE-2026-39808 (https://secdb.nttzen.cloud/cve/detail/CVE-2026-39808)
- Name: Fortinet FortiSandbox OS Command Injection Vulnerability
- Action: Apply mitigations in accordance with vendor instructions, ensuring compliance with CISA’s BOD 26-04 Prioritizing Security Updates Based on Risk (see URL in Notes) guidance and CISA’s “Forensics Triage Requirements” (see URL in Notes). Follow applicable BOD 26-04 guidance for cloud services or discontinue use of the product if mitigations are unavailable. Stakeholders are responsible for evaluating each asset's internet exposure and ensuring adherence to BOD 26-04 patching guidelines.
- Known To Be Used in Ransomware Campaigns? Unknown
- Vendor: Fortinet
- Product: FortiSandbox
- Notes: https://fortiguard.fortinet.com/psirt/FG-IR-26-100 ; BOD 26-04: https://www.cisa.gov/news-events/directives/bod-26-04-prioritizing-security-updates-based-risk ; Forensics Triage Requirements: https://www.cisa.gov/news-events/directives/bod-26-04-implementation-guidance-prioritizing-security-updates-based-risk ; https://nvd.nist.gov/vuln/detail/CVE-2026-39808
⚠️ CVE-2026-58644 (https://secdb.nttzen.cloud/cve/detail/CVE-2026-58644)
- Name: Microsoft SharePoint Deserialization of Untrusted Data Vulnerability
- Action: Apply mitigations in accordance with vendor instructions, ensuring compliance with CISA’s BOD 26-04 Prioritizing Security Updates Based on Risk (see URL in Notes) guidance and CISA’s “Forensics Triage Requirements” (see URL in Notes). Follow applicable BOD 26-04 guidance for cloud services or discontinue use of the product if mitigations are unavailable. Stakeholders are responsible for evaluating each asset's internet exposure and ensuring adherence to BOD 26-04 patching guidelines.
- Known To Be Used in Ransomware Campaigns? Unknown
- Vendor: Microsoft
- Product: SharePoint
- Notes: https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-58644 ; BOD 26-04: https://www.cisa.gov/news-events/directives/bod-26-04-prioritizing-security-updates-based-risk ; Forensics Triage Requirements: https://www.cisa.gov/news-events/directives/bod-26-04-implementation-guidance-prioritizing-security-updates-based-risk ; https://nvd.nist.gov/vuln/detail/CVE-2026-58644
#ZEN #SecDB #InfoSec #CVE #CISA_KEV #cisa_20260716 #cisa20260716 #cve_2026_25089 #cve_2026_39808 #cve_2026_58644 #cve202625089 #cve202639808 #cve202658644
##CVE ID: CVE-2026-25089
Vendor: Fortinet
Product: FortiSandbox
Date Added: 2026-07-16
CVE URL: https://nvd.nist.gov/vuln/detail/CVE-2026-25089
updated 2026-07-17T00:32:18
5 posts
A Zoom critical vulnerability (CVE-2026-53412, CVSS 9.8) lets attackers hijack accounts on Windows with no user interaction. Update your client now.
#Zoom #CVE202653412 #Vulnerability #CyberSecurity #Windows #AccountTakeover
https://securityexpress.info/cve-2026-53412-zoom/?utm_source=mastodon&utm_medium=jetpack_social
##Zoom Patches Critical Windows Flaw Enabling Account Takeover
Zoom has released security updates to fix CVE-2026-53412, a critical Improper Input Validation vulnerability affecting its Windows software, which...
🔗️ [Thecyberexpress] https://link.is.it/17cS6R
##"Zoom is warning of a critical vulnerability in its desktop client and software development kit for Windows that could be exploited by an unauthenticated party to hijack accounts.
Discovered internally, the security issue is tracked as CVE-2026-53412 and received a severity score of 9.8 out of 10.
In an advisory this week, the messaging platform says that the flaw affects Zoom Workplace for Windows before version 7.0.0, the Windows VDI Client before versions 7.0.10, 6.6.15, and 6.5.18, and the Meeting SDK for Windows before version 7.0.0."
##Zoom Fixes CVE-2026-53412, a Critical Account Takeover Bug
https://securityaffairs.com/195454/security/zoom-fixes-cve-2026-53412-a-critical-account-takeover-bug.html
「Zoomがアカウント乗っ取りの重大な脆弱性について警告 」: #BLEEPINGCOMPUTER
「Zoomは、Windows向けデスクトップクライアントおよびソフトウェア開発キットに重大な脆弱性が存在すると警告している。この脆弱性を悪用すれば、認証されていない第三者がアカウントを乗っ取る可能性がある。
社内で発見されたこのセキュリティ問題は、CVE-2026-53412として追跡されており、深刻度スコアは10点満点中9.8点と評価されています。
今週発表された勧告によると、この脆弱性は、Windows版Zoom Workplaceのバージョン7.0.0未満、Windows VDI Clientのバージョン7.0.10未満、6.6.15未満、6.5.18未満、およびWindows版Meeting SDKのバージョン7.0.0未満に影響するとのことです。 」
##updated 2026-07-16T21:30:46
1 posts
🟠 CVE-2026-53409 - High (7.8)
Improper Privilege Management in Zoom Rooms for Windows before version 7.1.0 may allow an authenticated user to conduct an escalation of privilege via local access.
🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-53409/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##updated 2026-07-16T18:32:24
4 posts
6 repos
https://github.com/0xBlackash/CVE-2026-39808
https://github.com/samu-delucas/CVE-2026-39808
https://github.com/HORKimhab/CVE-2026-39808
https://github.com/Lechansky/CVE-2026-39808
https://github.com/error-inside/CVE-2026-39808
https://github.com/ynsmroztas/FortiSandbox-RCE-Exploit-CVE-2026-39808
Broadcom has new advisories addressing two high-severity vulnerabilities that were fist published on the 15th https://support.broadcom.com/web/ecx/security-advisory
Cisco:
Medium Severity: CVE-2025-20204and CVE-2025-20205 Cisco Identity Services Engine Stored Cross-Site Scripting Vulnerabilities https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-ise-xss-42tgsdMG @TalosSecurity
And if you missed this yesterday, CISA added two Fortinet vulnerabilities to the catalogue:
CISA:
CVE-2026-39808: Fortinet FortiSandbox OS Command Injection Vulnerability https://www.cve.org/CVERecord?id=CVE-2026-39808
CVE-2026-25089: Fortinet FortiSandbox OS Command Injection Vulnerability https://www.cve.org/CVERecord?id=CVE-2026-25089
And a Microsoft vulnerability:
CISA: CVE-2026-58644: Microsoft SharePoint Deserialization of Untrusted Data Vulnerability https://www.cve.org/CVERecord?id=CVE-2026-58644 #Microsoft #CISA #Fortinet #infosec #vulnerability #Cisco #Broadcom
##CISA KEV catalog adds three actively exploited flaws: FortiSandbox CVE-2026-25089, CVE-2026-39808, and SharePoint CVE-2026-58644. Patch by July 19.
#CISA #KEV #Fortinet #FortiSandbox #SharePoint #CVE202658644 #ActivelyExploited #CyberSecurity
##🚨 [CISA-2026:0716] CISA Adds 3 Known Exploited Vulnerabilities to Catalog (https://secdb.nttzen.cloud/security-advisory/detail/CISA-2026:0716)
CISA has added 3 new vulnerabilities to its Known Exploited Vulnerabilities Catalog, based on evidence of active exploitation. These types of vulnerabilities are a frequent attack vector for malicious cyber actors and pose significant risk to the federal enterprise.
⚠️ CVE-2026-25089 (https://secdb.nttzen.cloud/cve/detail/CVE-2026-25089)
- Name: Fortinet FortiSandbox OS Command Injection Vulnerability
- Action: Apply mitigations in accordance with vendor instructions, ensuring compliance with CISA’s BOD 26-04 Prioritizing Security Updates Based on Risk (see URL in Notes) guidance and CISA’s “Forensics Triage Requirements” (see URL in Notes). Follow applicable BOD 26-04 guidance for cloud services or discontinue use of the product if mitigations are unavailable. Stakeholders are responsible for evaluating each asset's internet exposure and ensuring adherence to BOD 26-04 patching guidelines.
- Known To Be Used in Ransomware Campaigns? Unknown
- Vendor: Fortinet
- Product: FortiSandbox
- Notes: https://fortiguard.fortinet.com/psirt/FG-IR-26-141 ; BOD 26-04: https://www.cisa.gov/news-events/directives/bod-26-04-prioritizing-security-updates-based-risk ; Forensics Triage Requirements: https://www.cisa.gov/news-events/directives/bod-26-04-implementation-guidance-prioritizing-security-updates-based-risk ; https://nvd.nist.gov/vuln/detail/CVE-2026-25089
⚠️ CVE-2026-39808 (https://secdb.nttzen.cloud/cve/detail/CVE-2026-39808)
- Name: Fortinet FortiSandbox OS Command Injection Vulnerability
- Action: Apply mitigations in accordance with vendor instructions, ensuring compliance with CISA’s BOD 26-04 Prioritizing Security Updates Based on Risk (see URL in Notes) guidance and CISA’s “Forensics Triage Requirements” (see URL in Notes). Follow applicable BOD 26-04 guidance for cloud services or discontinue use of the product if mitigations are unavailable. Stakeholders are responsible for evaluating each asset's internet exposure and ensuring adherence to BOD 26-04 patching guidelines.
- Known To Be Used in Ransomware Campaigns? Unknown
- Vendor: Fortinet
- Product: FortiSandbox
- Notes: https://fortiguard.fortinet.com/psirt/FG-IR-26-100 ; BOD 26-04: https://www.cisa.gov/news-events/directives/bod-26-04-prioritizing-security-updates-based-risk ; Forensics Triage Requirements: https://www.cisa.gov/news-events/directives/bod-26-04-implementation-guidance-prioritizing-security-updates-based-risk ; https://nvd.nist.gov/vuln/detail/CVE-2026-39808
⚠️ CVE-2026-58644 (https://secdb.nttzen.cloud/cve/detail/CVE-2026-58644)
- Name: Microsoft SharePoint Deserialization of Untrusted Data Vulnerability
- Action: Apply mitigations in accordance with vendor instructions, ensuring compliance with CISA’s BOD 26-04 Prioritizing Security Updates Based on Risk (see URL in Notes) guidance and CISA’s “Forensics Triage Requirements” (see URL in Notes). Follow applicable BOD 26-04 guidance for cloud services or discontinue use of the product if mitigations are unavailable. Stakeholders are responsible for evaluating each asset's internet exposure and ensuring adherence to BOD 26-04 patching guidelines.
- Known To Be Used in Ransomware Campaigns? Unknown
- Vendor: Microsoft
- Product: SharePoint
- Notes: https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-58644 ; BOD 26-04: https://www.cisa.gov/news-events/directives/bod-26-04-prioritizing-security-updates-based-risk ; Forensics Triage Requirements: https://www.cisa.gov/news-events/directives/bod-26-04-implementation-guidance-prioritizing-security-updates-based-risk ; https://nvd.nist.gov/vuln/detail/CVE-2026-58644
#ZEN #SecDB #InfoSec #CVE #CISA_KEV #cisa_20260716 #cisa20260716 #cve_2026_25089 #cve_2026_39808 #cve_2026_58644 #cve202625089 #cve202639808 #cve202658644
##CVE ID: CVE-2026-39808
Vendor: Fortinet
Product: FortiSandbox
Date Added: 2026-07-16
CVE URL: https://nvd.nist.gov/vuln/detail/CVE-2026-39808
updated 2026-07-16T18:31:26
7 posts
⚠️ CRITICAL: Fresh SharePoint Vulnerability Exploited Soon After Disclosure
Microsoft SharePoint RCE vulnerability CVE-2026-58644 (CVSS 9.8) is actively exploited in the wild following July 2026 Patch Tuesday disclosure. Authenticated attackers with Site Owner privileges can execute arbitrary code via deserialization flaws. All organizations running affected SharePoint ver…
##Latest 24-hour summary:
Geopolitical: US strikes Iran for a sixth night, escalating conflict and impacting the Strait of Hormuz.
Technology: IBM unveils a sub-1nm chip, Japan achieves 6G, and AI chip demand surges amidst a deepening tech selloff.
Cybersecurity: CISA warns of an actively exploited SharePoint RCE zero-day (CVE-2026-58644), urging immediate patching. New BL4CK SP1D3R ransomware threats are also detected.
Broadcom has new advisories addressing two high-severity vulnerabilities that were fist published on the 15th https://support.broadcom.com/web/ecx/security-advisory
Cisco:
Medium Severity: CVE-2025-20204and CVE-2025-20205 Cisco Identity Services Engine Stored Cross-Site Scripting Vulnerabilities https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-ise-xss-42tgsdMG @TalosSecurity
And if you missed this yesterday, CISA added two Fortinet vulnerabilities to the catalogue:
CISA:
CVE-2026-39808: Fortinet FortiSandbox OS Command Injection Vulnerability https://www.cve.org/CVERecord?id=CVE-2026-39808
CVE-2026-25089: Fortinet FortiSandbox OS Command Injection Vulnerability https://www.cve.org/CVERecord?id=CVE-2026-25089
And a Microsoft vulnerability:
CISA: CVE-2026-58644: Microsoft SharePoint Deserialization of Untrusted Data Vulnerability https://www.cve.org/CVERecord?id=CVE-2026-58644 #Microsoft #CISA #Fortinet #infosec #vulnerability #Cisco #Broadcom
##CVE-2026-58644: CRITICAL RCE in Microsoft SharePoint enables remote, authenticated Site Owners to execute code via deserialization. Exploited in the wild — patch now (July 2026 updates). Details: https://radar.offseq.com/threat/fresh-sharepoint-vulnerability-exploited-soon-afte-951942a1c69ed88b #OffSeq #SharePoint #Vuln #KEV #Infosec
##CISA KEV catalog adds three actively exploited flaws: FortiSandbox CVE-2026-25089, CVE-2026-39808, and SharePoint CVE-2026-58644. Patch by July 19.
#CISA #KEV #Fortinet #FortiSandbox #SharePoint #CVE202658644 #ActivelyExploited #CyberSecurity
##🚨 [CISA-2026:0716] CISA Adds 3 Known Exploited Vulnerabilities to Catalog (https://secdb.nttzen.cloud/security-advisory/detail/CISA-2026:0716)
CISA has added 3 new vulnerabilities to its Known Exploited Vulnerabilities Catalog, based on evidence of active exploitation. These types of vulnerabilities are a frequent attack vector for malicious cyber actors and pose significant risk to the federal enterprise.
⚠️ CVE-2026-25089 (https://secdb.nttzen.cloud/cve/detail/CVE-2026-25089)
- Name: Fortinet FortiSandbox OS Command Injection Vulnerability
- Action: Apply mitigations in accordance with vendor instructions, ensuring compliance with CISA’s BOD 26-04 Prioritizing Security Updates Based on Risk (see URL in Notes) guidance and CISA’s “Forensics Triage Requirements” (see URL in Notes). Follow applicable BOD 26-04 guidance for cloud services or discontinue use of the product if mitigations are unavailable. Stakeholders are responsible for evaluating each asset's internet exposure and ensuring adherence to BOD 26-04 patching guidelines.
- Known To Be Used in Ransomware Campaigns? Unknown
- Vendor: Fortinet
- Product: FortiSandbox
- Notes: https://fortiguard.fortinet.com/psirt/FG-IR-26-141 ; BOD 26-04: https://www.cisa.gov/news-events/directives/bod-26-04-prioritizing-security-updates-based-risk ; Forensics Triage Requirements: https://www.cisa.gov/news-events/directives/bod-26-04-implementation-guidance-prioritizing-security-updates-based-risk ; https://nvd.nist.gov/vuln/detail/CVE-2026-25089
⚠️ CVE-2026-39808 (https://secdb.nttzen.cloud/cve/detail/CVE-2026-39808)
- Name: Fortinet FortiSandbox OS Command Injection Vulnerability
- Action: Apply mitigations in accordance with vendor instructions, ensuring compliance with CISA’s BOD 26-04 Prioritizing Security Updates Based on Risk (see URL in Notes) guidance and CISA’s “Forensics Triage Requirements” (see URL in Notes). Follow applicable BOD 26-04 guidance for cloud services or discontinue use of the product if mitigations are unavailable. Stakeholders are responsible for evaluating each asset's internet exposure and ensuring adherence to BOD 26-04 patching guidelines.
- Known To Be Used in Ransomware Campaigns? Unknown
- Vendor: Fortinet
- Product: FortiSandbox
- Notes: https://fortiguard.fortinet.com/psirt/FG-IR-26-100 ; BOD 26-04: https://www.cisa.gov/news-events/directives/bod-26-04-prioritizing-security-updates-based-risk ; Forensics Triage Requirements: https://www.cisa.gov/news-events/directives/bod-26-04-implementation-guidance-prioritizing-security-updates-based-risk ; https://nvd.nist.gov/vuln/detail/CVE-2026-39808
⚠️ CVE-2026-58644 (https://secdb.nttzen.cloud/cve/detail/CVE-2026-58644)
- Name: Microsoft SharePoint Deserialization of Untrusted Data Vulnerability
- Action: Apply mitigations in accordance with vendor instructions, ensuring compliance with CISA’s BOD 26-04 Prioritizing Security Updates Based on Risk (see URL in Notes) guidance and CISA’s “Forensics Triage Requirements” (see URL in Notes). Follow applicable BOD 26-04 guidance for cloud services or discontinue use of the product if mitigations are unavailable. Stakeholders are responsible for evaluating each asset's internet exposure and ensuring adherence to BOD 26-04 patching guidelines.
- Known To Be Used in Ransomware Campaigns? Unknown
- Vendor: Microsoft
- Product: SharePoint
- Notes: https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-58644 ; BOD 26-04: https://www.cisa.gov/news-events/directives/bod-26-04-prioritizing-security-updates-based-risk ; Forensics Triage Requirements: https://www.cisa.gov/news-events/directives/bod-26-04-implementation-guidance-prioritizing-security-updates-based-risk ; https://nvd.nist.gov/vuln/detail/CVE-2026-58644
#ZEN #SecDB #InfoSec #CVE #CISA_KEV #cisa_20260716 #cisa20260716 #cve_2026_25089 #cve_2026_39808 #cve_2026_58644 #cve202625089 #cve202639808 #cve202658644
##CVE ID: CVE-2026-58644
Vendor: Microsoft
Product: SharePoint
Date Added: 2026-07-16
CVE URL: https://nvd.nist.gov/vuln/detail/CVE-2026-58644
updated 2026-07-16T18:16:41.633000
1 posts
CVE-2026-12525: Redux Framework <4.5.13 (WordPress) allows Subscribers to escalate to Admin by abusing the user-profile extension. Severity: CRITICAL. Disable the feature or restrict editing until a patch lands. https://radar.offseq.com/threat/cve-2026-12525-cwe-269-improper-privilege-manageme-e022e7bb11713010 #OffSeq #WordPress #CVE202612525 #PrivilegeEscalation
##updated 2026-07-16T15:33:11
2 posts
Ubuntu Pro Client vulnerability CVE-2026-11386 (CVSS 9.0) lets a spoofed contract server inject APT sources and run code with root privileges.
#Ubuntu #UbuntuPro #CVE202611386 #Canonical #RCE #Linux #CyberSecurity
##CRITICAL vuln in ubuntu-pro-client <37.2ubuntu~22.04.1: contract server manipulation can inject malicious APT config & install arbitrary packages as root. Preinstalled on Ubuntu Pro images. Patch status TBD. Details: https://radar.offseq.com/threat/ubuntu-cve-2026-11386-a076c116b384b281 #OffSeq #Ubuntu #LinuxSec #Vulnerability
##updated 2026-07-16T15:33:11
1 posts
CRITICAL: CVE-2026-63305 impacts WWBN AVideo ≤29.0. OS command injection in ffmpeg.json.php allows arbitrary command execution as the web-server user. No patch yet — restrict access & monitor logs. Details: https://radar.offseq.com/threat/cve-2026-63305-improper-neutralization-of-special--2152563144062b29 #OffSeq #Vuln #WWBN #CVE202663305
##updated 2026-07-16T14:16:56.427000
1 posts
Anubis is busted (CVE-2026-62314) and FWIW it rly doesn't stop the AI bots even when not busted — https://vulnerability.circl.lu/vuln/CVE-2026-62314
##updated 2026-07-16T12:32:28
1 posts
CVE-2026-22752: CRITICAL auth bypass in Spring Authorization Server (CVSS 9.6). Low-priv attackers can fully compromise confidentiality & integrity. No patch or workaround — monitor vendor updates. https://radar.offseq.com/threat/cve-2026-22752-vulnerability-in-spring-security-sp-73162920d784b7e4 #OffSeq #SpringSecurity #CVE202622752 #infosec
##updated 2026-07-16T06:31:33
1 posts
CVE-2026-15013 | CRITICAL vuln in cyberlord92 SAML SSO Login (≤5.4.3): Signature verification flaw enables authentication bypass & admin account takeover. Disable plugin until patched. https://radar.offseq.com/threat/cve-2026-15013-cwe-347-improper-verification-of-cr-9c8a5e33bdf9b83d #OffSeq #WordPress #CVE202615013 #SAML #Vuln
##updated 2026-07-16T05:16:19.120000
1 posts
Splunk patched three Splunk Enterprise vulnerabilities: CVE-2026-20296 CSRF, CVE-2026-20297 path traversal, and CVE-2026-20298 credential exposure.
##updated 2026-07-15T22:58:53
1 posts
🟠 CVE-2026-50272 - High (7.5)
dd-trace is the Datadog APM client for Node.js. Prior to 5.100.0, W3C baggage propagation in packages/dd-trace/src/baggage.js and packages/dd-trace/src/opentracing/propagation/text_map.js parsed incoming baggage HTTP headers without enforcing DD_T...
🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-50272/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##updated 2026-07-15T22:51:05
1 posts
🟠 CVE-2026-54498 - High (8.7)
view_component is a framework for building reusable, testable, and encapsulated view components in Ruby on Rails. From 4.0.0 until 4.12.0, ViewComponent::Base#around_render can return HTML-unsafe strings that bypass the escaping behavior applied t...
🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-54498/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##updated 2026-07-15T21:31:26
1 posts
CVE-2026-15895: OS command injection in jsii-diff in AWS jsii
Bulletin ID: 2026-057-AWS Scope: AWS Content Type: Important (requires attention) Publication Date: 07/15/2026 12:00 PM PDT
Description:
jsii-diff is a command line tool to compare the API differences between two jsii assemblies...
https://aws.amazon.com/security/security-bulletins/rss/2026-057-aws/
##updated 2026-07-15T18:32:50
4 posts
2 repos
Critical Alert: CVE-2026-46817 is being actively exploited against Oracle E-Business Suite. An unauthenticated attacker can achieve full takeover of the Payments module via HTTP. Get the forensic detection queries and hardening protocols in our latest TSUITE brief. Protect the perimeter. https://thecybermind.co/g325
##⚠️ CRITICAL ALERT: CVE-2026-46817 allows unauthenticated takeover of Oracle E-Business Suite. With active exploitation verified, your perimeter is at risk. Get the forensic indicators, detection queries, and hardening playbooks you need to secure your infrastructure. https://thecybermind.co/k8ae
##Oracle E-Business Suite flaw (CVE-2026-46817, CRITICAL) enables unauthenticated takeover of Oracle Payments via HTTP. Exploited in the wild — patches available since May 2026. CISA requires federal patching by 7/18/26. Details: https://radar.offseq.com/threat/cisa-orders-feds-to-patch-actively-exploited-oracl-9835f0a6d8af730f #OffSeq #Oracle #Infosec #CVE202646817
##CISA KEV catalog now lists CVE-2026-46817, a critical Oracle E-Business Suite flaw, and CVE-2023-4346 in KNX devices. Both are exploited in the wild.
##updated 2026-07-15T18:32:50
2 posts
🚨 ALERT: CVE-2023-4346 allows attackers to purge and lock KNX industrial control devices. If you manage building automation, your perimeter is at risk. Get the forensic indicators and hardening playbooks you need to secure your assets. https://thecybermind.co/m6eo
##CISA KEV catalog now lists CVE-2026-46817, a critical Oracle E-Business Suite flaw, and CVE-2023-4346 in KNX devices. Both are exploited in the wild.
##updated 2026-07-15T18:32:05
1 posts
Splunk patched three Splunk Enterprise vulnerabilities: CVE-2026-20296 CSRF, CVE-2026-20297 path traversal, and CVE-2026-20298 credential exposure.
##updated 2026-07-15T18:32:05
1 posts
Splunk patched three Splunk Enterprise vulnerabilities: CVE-2026-20296 CSRF, CVE-2026-20297 path traversal, and CVE-2026-20298 credential exposure.
##updated 2026-07-15T16:23:03.437000
1 posts
F5 patched the NGINX code execution flaw CVE-2026-42533, along with CVE-2026-60005 and CVE-2026-56434. Update NGINX Plus and Open Source builds now.
##updated 2026-07-15T15:33:14
1 posts
1 repos
https://github.com/0xCyberstan/CVE-2026-42533-Config-Scanner
F5 patched the NGINX code execution flaw CVE-2026-42533, along with CVE-2026-60005 and CVE-2026-56434. Update NGINX Plus and Open Source builds now.
##updated 2026-07-15T15:33:13
1 posts
F5 patched the NGINX code execution flaw CVE-2026-42533, along with CVE-2026-60005 and CVE-2026-56434. Update NGINX Plus and Open Source builds now.
##updated 2026-07-15T13:51:52.543000
1 posts
#CVE-2026-48309 - #Adobe #Audition Out Of Bounds Write #Vulnerability
##updated 2026-07-15T03:33:02
1 posts
TP-Link Kasa vulnerability CVE-2026-9770 (CVSS 8.6) lets local attackers intercept admin credentials on EC70 and EC71 cameras. Update firmware now.
##updated 2026-07-15T03:33:01
1 posts
1 repos
ASUS bsitf.sys (CVE-2026-13585): Arbitrary Physical Memory Mapping via Unvalidated IOCTL https://blog.ahmadz.ai/asus_bsitf_0_day_poc/
##updated 2026-07-14T21:32:52
2 posts
Active exploitation of CVE-2026-56155 in Microsoft ADFS puts your identity perimeter at risk. Our latest TSUITE brief delivers the forensic indicators, detection queries, and compensating controls needed to neutralize this privilege escalation threat. Secure your architecture today. https://thecybermind.co/al3f
##Regarding CVE-2026-56155, the in-the-wild ADFS vulnerability - the July patch just released does not fix the vulnerability.
Instead it adds an audit log. The changes to harden the service and enforce protection will only apply with October 2026’s update applied.
##updated 2026-07-14T21:32:22
3 posts
5 repos
https://github.com/remmons-r7/rapid7-CVE-2026-15409
https://github.com/MrRawBit/SonicWall-SMA1000-Zero-Day-IoC-Check
https://github.com/HORKimhab/CVE-2026-15409
⚠️ CRITICAL: Two SonicWall SMA 1000 Zero-Days Exploited, One Could Enable Admin Commands
Two zero-day vulnerabilities in SonicWall SMA 1000 appliances are actively exploited in the wild. CVE-2026-15409 is an SSRF flaw, while CVE-2026-15410 allows unauthenticated attackers to execute arbitrary commands as admin. Organizations using these devices face immediate risk of full appliance com…
##‼️ CVE-2026-15409: PoC exploit for CVE-2026-15409 that achieves non-root remote code execution on SonicWall SMA 1000 appliances.
##SonicWall SMA1000 vulnerability CVE-2026-15409 (CVSS 10.0) is exploited in the wild. Public PoC enables remote code execution patch now.
#SonicWall #SMA1000 #CVE202615409 #RCE #ZeroDay #CyberSecurity
##updated 2026-07-14T21:32:21
1 posts
3 repos
https://github.com/MrRawBit/SonicWall-SMA1000-Zero-Day-IoC-Check
⚠️ CRITICAL: Two SonicWall SMA 1000 Zero-Days Exploited, One Could Enable Admin Commands
Two zero-day vulnerabilities in SonicWall SMA 1000 appliances are actively exploited in the wild. CVE-2026-15409 is an SSRF flaw, while CVE-2026-15410 allows unauthenticated attackers to execute arbitrary commands as admin. Organizations using these devices face immediate risk of full appliance com…
##updated 2026-07-14T21:32:21
1 posts
2 repos
@brettagoge Ich hoffe du hast brav ein Backup.
Hier war ein Stelle von letzter Woche:
##updated 2026-07-14T21:10:41.693000
1 posts
1 repos
Symantec, posted yesterday: Spirals: New Stealthy Ransomware Deployed Against Asian IT Company https://www.security.com/threat-intelligence/ransomware-spirals-extortion
Also from yesterday:
Tenable: CVE-2026-32201, CVE-2026-45659, CVE-2026-56164: Frequently Asked Questions About Active Exploitation of Microsoft SharePoint Server Vulnerabilities https://www.tenable.com/blog/cve-2026-32201-cve-2026-45659-cve-2026-56164-faq-sharepoint-server-exploitation #threatresearch #Microsoft #ransomware #infosec #SharePoint
##updated 2026-07-14T20:16:37
1 posts
🟠 CVE-2026-44891 - High (7.5)
Netty is a network application framework for development of protocol servers and clients. Prior to 4.1.136.Final and 4.2.16.Final, io.netty.handler.codec.stomp.StompSubframeDecoder fails to limit the total number of headers or their cumulative siz...
🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-44891/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##updated 2026-07-14T19:07:15
2 posts
CVE-2026-54052: CRITICAL auth bypass in czlonkowski n8n-mcp <2.56.1. Multi-tenant HTTP mode allows tenants to access/delete others’ sensitive workflow backups. Patch to 2.56.1 ASAP. https://radar.offseq.com/threat/cve-2026-54052-cwe-639-authorization-bypass-throug-04ca76ef25ff4df2 #OffSeq #CVE #infosec #vuln
##🔴 CVE-2026-54052 - Critical (9.9)
n8n-MCP is an MCP server that provides AI assistants access to n8n node documentation, properties, and operations. Prior to 2.56.1, in HTTP mode with multi-tenancy enabled through ENABLE_MULTI_TENANT=true, n8n-mcp's local workflow version history ...
🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-54052/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##updated 2026-07-14T18:32:12
1 posts
1 repos
‼️ CVE-2026-58635: Windows Narrator Braille Local Privilege Escalation
##updated 2026-07-14T18:32:06
1 posts
Age of Empires II : une faille permettait de prendre le contrôle d’un PC via une partie multijoueur https://www.it-connect.fr/age-of-empires-ii-faille-rce-cve-2026-50663/ #ActuCybersécurité #Cybersécurité #Vulnérabilité #Microsoft
##updated 2026-07-14T15:32:25
1 posts
Citrix patched CVE-2026-53565, a Citrix Secure Access vulnerability letting local users gain SYSTEM, plus the CVE-2026-53566 out-of-bounds read bug.
#Citrix #CVE202653565 #PrivilegeEscalation #Vulnerability #Windows
##updated 2026-07-14T15:32:24
1 posts
Citrix patched CVE-2026-53565, a Citrix Secure Access vulnerability letting local users gain SYSTEM, plus the CVE-2026-53566 out-of-bounds read bug.
#Citrix #CVE202653565 #PrivilegeEscalation #Vulnerability #Windows
##updated 2026-07-13T21:31:30
1 posts
Active Exploitation and Public PoC Disclosed for CVE-2026-6875 ServiceNow Sandbox Escape Remote Code Execution
##updated 2026-07-10T19:08:23
1 posts
🟠 CVE-2026-45260 - High (8.1)
Pimcore is an Open Source Data & Experience Management Platform. Prior to 11.5.17 (LTS) and 12.3.7, Pimcore's WebDAV asset endpoint exposes a MOVE operation through /asset/webdav{path} without an authentication plugin in bundles/CoreBundle/src/Con...
🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-45260/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##updated 2026-07-10T19:07:30
1 posts
🟠 CVE-2026-45162 - High (8)
Pimcore is an Open Source Data & Experience Management Platform. Prior to 11.5.17 (LTS) and 12.3.7, multiple Pimcore locations call PHP's unserialize() on data from database columns and filesystem files without the allowed_classes restriction, inc...
🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-45162/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##updated 2026-07-10T12:31:56
1 posts
Dell patched CVE-2026-56688, a PowerFlex command execution bug. This OS command injection flaw lets a privileged attacker run code as root.
##updated 2026-07-10T12:31:55
1 posts
CVE-2026-15378 is a blind SSRF in Red Hat OpenShift AI. The guardrails-detectors flaw exposes cloud credentials and Kubernetes secrets.
##updated 2026-07-10T05:16:38.427000
1 posts
Metabase patched CVE-2026-59827 (CVSS 9.9) and CVE-2026-59826 (CVSS 9.1). These flaws enable remote code execution via unsafe H2 deserialization.
##updated 2026-07-09T13:43:04
1 posts
🟠 CVE-2026-49485 - High (7.5)
HAPI FHIR is a complete implementation of the HL7 FHIR standard for healthcare interoperability in Java. Prior to 6.9.9 and 6.9.4.2, all implementations of FHIRPathEngine accept arbitrary FHIRPath expressions and evaluate them without input valida...
🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-49485/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##updated 2026-07-06T21:23:42
1 posts
🔴 CVE-2026-54496 - Critical (9.3)
ZEBRA is a Zcash node written entirely in Rust. Prior to zebrad 5.0.0, halo2_gadgets 0.5.0, orchard 0.14.0, zcash_primitives 0.28.0, and zcashd 6.20.0, the variable-base scalar multiplication gadget in halo2_gadgets/src/ecc/chip/mul/incomplete.rs ...
🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-54496/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##updated 2026-07-02T20:13:56
1 posts
🟠 CVE-2026-52746 - High (7.5)
JSONata is a JSON query and transformation language. Prior to 2.2.0, malicious non-matching inputs to the $toMillis function can cause superlinear backtracking in the ISO-8601 validation regex, leading to denial of service in applications that eva...
🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-52746/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##updated 2026-07-01T21:35:53
1 posts
1 repos
Symantec, posted yesterday: Spirals: New Stealthy Ransomware Deployed Against Asian IT Company https://www.security.com/threat-intelligence/ransomware-spirals-extortion
Also from yesterday:
Tenable: CVE-2026-32201, CVE-2026-45659, CVE-2026-56164: Frequently Asked Questions About Active Exploitation of Microsoft SharePoint Server Vulnerabilities https://www.tenable.com/blog/cve-2026-32201-cve-2026-45659-cve-2026-56164-faq-sharepoint-server-exploitation #threatresearch #Microsoft #ransomware #infosec #SharePoint
##updated 2026-07-01T21:35:48
1 posts
🟠 CVE-2026-50151 - High (7.5)
oras-go is a Go library for managing OCI artifacts. Prior to 2.6.1, registry/remote/repository.go in blobStore.completePushAfterInitialPost follows a registry-controlled Location header during monolithic blob upload and reuses the Authorization he...
🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-50151/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##updated 2026-06-22T14:36:04
2 posts
CVE-2026-54458 (CRITICAL, CVSS 9.6): WWBN AVideo (<29.0) suffers stored DOM XSS in YPTSocket plugin. Unauthenticated attackers can hijack admin sessions. Patch now — upgrade to v29.0. https://radar.offseq.com/threat/cve-2026-54458-cwe-79-improper-neutralization-of-i-57743e6d03256988 #OffSeq #XSS #WWBNA Video #infosec
##🔴 CVE-2026-54458 - Critical (9.6)
WWBN AVideo is an open source video platform. Versions prior to 29.0 contain a stored DOM Cross-Site Scripting vulnerability in the YPTSocket plugin. Any unauthenticated remote attacker can execute arbitrary JavaScript in the authenticated origin ...
🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-54458/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##updated 2026-06-19T15:34:14
1 posts
@kevin L4? Apple would like a word. About secure enclaves. Now, Mr Torvalds, about that PF_KEY CVE... https://dailycve.com/linux-kernel-uninitialized-memory-disclosure-cve-2026-43088-medium/
##updated 2026-06-17T10:44:23.283000
1 posts
7 repos
https://github.com/joshuavanderpoll/CVE-2026-3891
https://github.com/m4sh-wacker/CVE-2026-3891-Pix-for-WooCommerce-Plugin-Exploit
https://github.com/Nxploited/CVE-2026-3891
https://github.com/AnggaTechI/Mass-Scanner-CVE-2026-3891
https://github.com/willygailo/CVE-2026-3891-Linux
‼️ CVE-2026-3891: A critical Unauthenticated Arbitrary File Upload vulnerability found in the Pix for WooCommerce WordPress plugin in versions up to and including 1.5.0.
PoC: https://github.com/m4sh-wacker/CVE-2026-3891-Pix-for-WooCommerce-Plugin-Exploit
##updated 2026-06-17T10:35:20.103000
1 posts
1 repos
Symantec, posted yesterday: Spirals: New Stealthy Ransomware Deployed Against Asian IT Company https://www.security.com/threat-intelligence/ransomware-spirals-extortion
Also from yesterday:
Tenable: CVE-2026-32201, CVE-2026-45659, CVE-2026-56164: Frequently Asked Questions About Active Exploitation of Microsoft SharePoint Server Vulnerabilities https://www.tenable.com/blog/cve-2026-32201-cve-2026-45659-cve-2026-56164-faq-sharepoint-server-exploitation #threatresearch #Microsoft #ransomware #infosec #SharePoint
##updated 2026-06-17T10:31:33.870000
1 posts
2 repos
https://github.com/watchtowrlabs/watchTowr-vs-Progress-ShareFile-CVE-2026-2699
🏆 New Achievement! Storage Zone, No Ozone!
Tonight's broadcast is brought to you by Deferred Patch Tuesdays — "Why upgrade today when v5.11 is running just fine?" Progress Software discovered two critical zero-days, CVE-2026-2699 and CVE-2026-2701, lurking in ShareFile Storage Zones Controller v5.x. Unauthenticated. Remote. Full system compromise. So catastrophic that customer-managed Storage Zone Controllers had to be emergency-shutdown entirely. (1/2)
##updated 2026-06-11T17:16:09
1 posts
🔴 CVE-2026-48062 - Critical (9.8)
CodeIgniter is a PHP full-stack web framework. Prior to 4.7.3, the ext_in upload validation rule in system/Validation/StrictRules/FileRules.php checked the MIME-derived guessed extension instead of the client-provided filename extension. As a resu...
🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-48062/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##updated 2026-06-03T21:16:26
1 posts
🟠 CVE-2026-44023 - High (8.6)
Docling Core defines core data types and transformations for the document processing application Docling. In versions 1.5.0 and above, prior to 2.74.1, docling-core did not sufficiently restrict remote request destinations and could resolve a serv...
🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-44023/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##updated 2026-05-19T19:54:51
1 posts
🟠 CVE-2026-45799 - High (7.5)
Wire provides gRPC and protocol buffers for Android, Kotlin, Swift, and Java. Prior to 6.3.0 and 7.0.0-alpha03, ByteArrayProtoReader32.skipGroup() and ProtoReader.skipGroup() in wire-runtime do not validate that a LENGTH_DELIMITED field length is ...
🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-45799/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##updated 2026-05-19T19:22:06
1 posts
CRITICAL: CVE-2026-46339 impacts decolua 9Router (<0.4.37). OS command injection via exposed API lets unauth attackers gain full control. Patch to 0.4.37 now! https://radar.offseq.com/threat/cve-2026-46339-cwe-78-improper-neutralization-of-s-96ae550cea593bb1 #OffSeq #CVE202646339 #infosec #security
##updated 2026-05-18T15:30:37
1 posts
4 repos
https://github.com/cloud2783/CVE-2026-32202
https://github.com/B1tBit/CVE-2026-32201-exploit
Symantec, posted yesterday: Spirals: New Stealthy Ransomware Deployed Against Asian IT Company https://www.security.com/threat-intelligence/ransomware-spirals-extortion
Also from yesterday:
Tenable: CVE-2026-32201, CVE-2026-45659, CVE-2026-56164: Frequently Asked Questions About Active Exploitation of Microsoft SharePoint Server Vulnerabilities https://www.tenable.com/blog/cve-2026-32201-cve-2026-45659-cve-2026-56164-faq-sharepoint-server-exploitation #threatresearch #Microsoft #ransomware #infosec #SharePoint
##updated 2026-05-15T15:31:41
1 posts
Archon OS Vulnerability Exposes AI API Keys to Web-To-Client Attacks
Archon OS versions up to 0.3.11 are vulnerable to a web-to-client attack (CVE-2025-69443) that allows malicious websites to steal AI API keys and run commands on local systems. The flaw exists because the backend port lacks authentication and CORS protections. There is no patch as of reporting.
**If you use Archon OS, know that any website you visit can silently steal your AI API keys and data from it, and there's no patch yet. Remove your API keys from Archon now. Bind port 8181 to localhost only, block outside access with your firewall, and don't run Archon when browsing untrusted websites.**
#cybersecurity #infosec #advisory #vulnerability
https://beyondmachines.net/event_details/archon-os-vulnerability-exposes-ai-api-keys-to-web-to-client-attacks-o-j-c-7-f/gD2P6Ple2L
updated 2026-05-12T12:32:14
1 posts
🏆 New Achievement! Rooted in Operational Technology!
PATCH NOTES v0.0.0 — KNOWN ISSUES: Siemens ROX II OT switches ship with a three-vulnerability zero-day chain, including CVE-2025-40949, that grants attackers persistent root access. This feature was not intentional. Unit 42 and Siemens have jointly confirmed it exists anyway.
ADDED: Full root on your industrial network by people who are not you. FIXED: Nothing, until you manually update to firmware V2.17.1. (1/2)
##updated 2026-04-21T00:33:18
1 posts
🏆 New Achievement! Storage Zone, No Ozone!
Tonight's broadcast is brought to you by Deferred Patch Tuesdays — "Why upgrade today when v5.11 is running just fine?" Progress Software discovered two critical zero-days, CVE-2026-2699 and CVE-2026-2701, lurking in ShareFile Storage Zones Controller v5.x. Unauthenticated. Remote. Full system compromise. So catastrophic that customer-managed Storage Zone Controllers had to be emergency-shutdown entirely. (1/2)
##updated 2026-03-31T03:31:35
1 posts
2 repos
Krytyczna podatność RCE we wtyczce Everest Forms Pro (WordPress)
Badacze bezpieczeństwa z Wordfence ujawnili krytyczną podatność Remote Code Execution we wtyczce Everest Forms Pro przeznaczonej dla WordPressa. Luka ma być wciąż wykorzystywana do ataków na strony korzystające z tego rozszerzenia. Podatność dotyczy wszystkich wersji przed 1.9.13 i otrzymała ocenę 9.8 (krytyczna) w skali CVSS. TLDR: Podatność (CVE-2026-3300) pozwala nieuwierzytelnionemu...
#WBiegu #Podatność #Rce #Wordpress #Wtyczki
https://sekurak.pl/krytyczna-podatnosc-rce-we-wtyczce-everest-forms-pro-wordpress/
##updated 2026-03-25T18:50:03
1 posts
🟠 CVE-2026-55173 - High (8.1)
WWBN AVideo is an open source video platform. Versions 29.0 and below remain vulnerable to OS command injection because the fix for CVE-2026-33482 was incomplete and still does not neutralize a single & ( the shell background operator). CVE-2026-...
🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-55173/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##updated 2025-11-05T20:12:46
1 posts
28 repos
https://github.com/vigilante-1337/CVE-2025-3248
https://github.com/imbas007/CVE-2025-3248
https://github.com/b0ySie7e/CVE-2025-3248-POC
https://github.com/0xgh057r3c0n/CVE-2025-3248
https://github.com/r0otk3r/CVE-2025-3248
https://github.com/wand3rlust/CVE-2025-3248
https://github.com/xuemian168/CVE-2025-3248
https://github.com/zapstiko/CVE-2025-3248
https://github.com/tiemio/RCE-CVE-2025-3248
https://github.com/EQSTLab/CVE-2025-3248
https://github.com/dennisec/CVE-2025-3248
https://github.com/Kiraly07/Demo_CVE-2025-3248
https://github.com/nebari-playground/langflow-cve-2025-3248
https://github.com/verylazytech/CVE-2025-3248
https://github.com/12-test-12/CVE-2025-3248
https://github.com/drackyjr/cve-2025-3248-exploit
https://github.com/PuddinCat/CVE-2025-3248-POC
https://github.com/ynsmroztas/CVE-2025-3248-Langflow-RCE
https://github.com/ill-deed/Langflow-CVE-2025-3248-Multi-target
https://github.com/peiqiF4ck/WebFrameworkTools-5.5-enhance
https://github.com/get-xor/coreweave-demo-2026-05
https://github.com/0-d3y/langflow-rce-exploit
https://github.com/bambooqj/cve-2025-3248
https://github.com/Praison001/CVE-2025-3248
https://github.com/dennisec/Mass-CVE-2025-3248
https://github.com/min8282/CVE-2025-3248
New from RelayShield: four #AIsecurity checks for agents built with smolagents, published as an MCP server on @huggingface.
- MCP server reputation check before your agent connects
- Prompt-injection pattern detection on ingested content
- Tech-stack CVE monitoring (covers agent frameworks themselves — Langflow's CVE-2025-3248 was the initial-access vector in the first documented autonomous-agent ransomware op)
- Bulk identity-risk scoring
Self-serve, pay-per-call, no subscription.
https://huggingface.co/blog/relayshieldadmin/smolagents-agent-security-tools
##updated 2025-02-05T18:34:46
1 posts
Broadcom has new advisories addressing two high-severity vulnerabilities that were fist published on the 15th https://support.broadcom.com/web/ecx/security-advisory
Cisco:
Medium Severity: CVE-2025-20204and CVE-2025-20205 Cisco Identity Services Engine Stored Cross-Site Scripting Vulnerabilities https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-ise-xss-42tgsdMG @TalosSecurity
And if you missed this yesterday, CISA added two Fortinet vulnerabilities to the catalogue:
CISA:
CVE-2026-39808: Fortinet FortiSandbox OS Command Injection Vulnerability https://www.cve.org/CVERecord?id=CVE-2026-39808
CVE-2026-25089: Fortinet FortiSandbox OS Command Injection Vulnerability https://www.cve.org/CVERecord?id=CVE-2026-25089
And a Microsoft vulnerability:
CISA: CVE-2026-58644: Microsoft SharePoint Deserialization of Untrusted Data Vulnerability https://www.cve.org/CVERecord?id=CVE-2026-58644 #Microsoft #CISA #Fortinet #infosec #vulnerability #Cisco #Broadcom
##updated 2025-02-05T18:34:46
1 posts
Broadcom has new advisories addressing two high-severity vulnerabilities that were fist published on the 15th https://support.broadcom.com/web/ecx/security-advisory
Cisco:
Medium Severity: CVE-2025-20204and CVE-2025-20205 Cisco Identity Services Engine Stored Cross-Site Scripting Vulnerabilities https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-ise-xss-42tgsdMG @TalosSecurity
And if you missed this yesterday, CISA added two Fortinet vulnerabilities to the catalogue:
CISA:
CVE-2026-39808: Fortinet FortiSandbox OS Command Injection Vulnerability https://www.cve.org/CVERecord?id=CVE-2026-39808
CVE-2026-25089: Fortinet FortiSandbox OS Command Injection Vulnerability https://www.cve.org/CVERecord?id=CVE-2026-25089
And a Microsoft vulnerability:
CISA: CVE-2026-58644: Microsoft SharePoint Deserialization of Untrusted Data Vulnerability https://www.cve.org/CVERecord?id=CVE-2026-58644 #Microsoft #CISA #Fortinet #infosec #vulnerability #Cisco #Broadcom
##https://www.wacoca.com/news/2887343/ 7-Zip 26.01以下にリモートコード実行の脆弱性『CVE-2026-14266』。26.02以降へアップデートを | ニッチなPCゲーマーの環境構築Z #Science&Technology #ScienceNews #TechnologyNews #テクノロジー #科学 #科学&テクノロジー
##7-Zip Patches Remote Code Execution Vulnerability in XZ Decompression Logic
7-Zip version 26.02 patched a high-severity remote code execution vulnerability (CVE-2026-14266) caused by a heap-based buffer overflow in its XZ decompression logic. Attackers can exploit this flaw via malicious archives to take control of user systems. Manual updates are required as the software lacks auto-update features.
**Update 7-Zip manually to version 26.02 ASAP by downloading it from the official website (7-zip.org), since 7-Zip cannot update itself. Until you've updated, don't open archive files from emails or unknown sources, as one malicious file is enough to let attackers take over your session.**
#cybersecurity #infosec #advisory #vulnerability
https://beyondmachines.net/event_details/7-zip-patches-remote-code-execution-vulnerability-in-xz-decompression-logic-w-w-b-v-7/gD2P6Ple2L
7-Zip vulnerability CVE-2026-14266 (CVSS 7.0) allows remote code execution via crafted XZ data. Update to 7-Zip 26.02. No exploitation confirmed.
#7Zip #CVE202614266 #RCE #BufferOverflow #ZDI #CyberSecurity
##15 posts
40 repos
https://github.com/tcyph3r/wp2shell-cve-2026-63030-root-cause
https://github.com/own2pwn-fr/wp2shell-detect
https://github.com/mhtsec/CVE-2026-63030
https://github.com/gbrsh/CVE-2026-63030
https://github.com/InstaWP/wp2shell-scan
https://github.com/0xh7ml/CVE-2026-63030
https://github.com/ikow/wp2shell
https://github.com/HackingLZ/wp2shell_stock_chain
https://github.com/codeb0ssx/Ultimate-wp2shell
https://github.com/mverschu/CVE-2026-63030
https://github.com/bahartanir/wp2shell-scanner
https://github.com/c0gnit00/Wp2Shell
https://github.com/0xsha/wp2shell
https://github.com/4B3R4M4-607D/CVE-2026-63030-POC
https://github.com/eyesecurity/wp2shell-compromise-scanner-plugin
https://github.com/JohenLastGen-JLG/wp2shell
https://github.com/Icex0/wp2shell-poc
https://github.com/ebrasha/abdal-cve-2026-63030
https://github.com/h4cd0c/wp2shell
https://github.com/J4ck3LSyN-Gen2/CVE-2026-63030-wp2r00t
https://github.com/mrx-arafat/CVE-2026-63030-POC
https://github.com/ChiefYoru/CVE-2026-63030_PoC
https://github.com/attackercan/wp2shell-poc2
https://github.com/dinosn/wp2shell-lab
https://github.com/securelayer7/WordPresShell
https://github.com/Senanfurkan/wordpress-cve-2026-63030
https://github.com/yoerivegt/wp2shell-poc
https://github.com/Lutfifakee-Project/wp2shell
https://github.com/47Cid/wp2shell-lab
https://github.com/0xWhoknows/wp2shell
https://github.com/ZephrFish/wp2shell-scanner
https://github.com/kulichr/wp2shell
https://github.com/ekomsSavior/wp2shell
https://github.com/0xBlackash/CVE-2026-63030
https://github.com/zi3lak/wp2shell_scanner
https://github.com/CybersecSpirit/CVE-2026-63030
https://github.com/zeroc00I/CVE-2026-63030
https://github.com/fullhunt/wp2shell-scan
wp2shell (CVE-2026-63030) update: public working exploit now available for the WordPress core pre-auth RCE https://ransomnews.com/wp2shell-wordpress-core-rce-2026/
##🤯 wp2shell (CVE-2026-63030): Pre-Auth #RCE Chain in #WordPress Core
“WordPress patched it in 6.9.5 and 7.0.2, touching three files and sixteen lines. This post covers what broke, why the bugs connect, and what teams running WordPress need to do.”
https://fullhunt.io/blog/2026/07/17/wp2shell-wordpress-core-pre-auth-rce-cve-2026-63030.html
##⚠️ CRITICAL: WordPress Core "wp2shell" RCE flaws get public exploits, patch now
Critical unauthenticated RCE vulnerabilities in WordPress Core (CVE-2026-63030, CVE-2026-60137) are actively exploited via public PoCs. The wp2shell attack chains REST API and SQL injection flaws to achieve code execution on default installations of WordPress 6.9.x and 7.0.x. All affected WordPress…
##‼️ CVE-2026-63030: wp2shell, a critical remote code execution vulnerability in WordPress core
Credit: @hash_kitten // @assetnote
PoC: https://x.com/DarkWebInformer/status/2078251636623851682
##wp2shell (CVE-2026-63030): Pre-Auth RCE Chain in WordPress Core - Analysis and Open-Source Scanner https://fullhunt.io/blog/2026/07/17/wp2shell-wordpress-core-pre-auth-rce-cve-2026-63030.html
##WordPress Core "wp2shell" CRITICAL RCE chain (CVE-2026-63030 & CVE-2026-60137) actively exploited. Affects 6.9.0 – 6.9.4 & 7.0.0 – 7.0.1. Public PoCs out. Patch to 6.9.5/7.0.2 ASAP. Block REST API endpoints as temp mitigation. https://radar.offseq.com/threat/wordpress-core-wp2shell-rce-flaws-get-public-exploits-patch-now-99579d9a7c571599 #OffSeq #WordPress #RCE #Vuln
##Update your WordPress to 7.0.2/6.9.5, it's important
ETA: the above text is not a call for CMS evangelists, just fucking don't thanks
##🚨 wp2shell affects multiple vulnerabilities (CVE-2026-63030, CVE-2026-60137).
- CVE-2026-63030 (HIGH) - WordPress < 7.0.2 - REST API batch-route confusion and SQL injection issue leading to Remote Code Execution
- CVE-2026-60137 (CRITICAL) - WordPress < 7.0.2 - Facilitated SQL Injection via author__not_in in WP_Query
Running WordPress? Check your versions and patch to 6.8.6 / 6.9.5 / 7.0.2. If you can't patch immediately, apply the mitigations in the meantime.
ℹ️ Additional information on ZEN SecDB
https://secdb.nttzen.cloud/updates/a5a57351-ee12-401e-89a9-eca20d3ba7af/wp2shell-vulnerability
#infosec #wordpress #rce #sqlinjection #cve202663030 #cve202660137
#nttdata #zen #secdb #vulnerability_intelligence
🔴 CVE-2026-63030 - Critical (9.8)
WordPress 6.9.x before 6.9.5 and 7.0.x before 7.0.2 is affected by a REST API batch endpoint route confusion issue which, combined with the author__not_in WP_Query SQL Injection (CVE-2026-60137), could allow an attacker to perform SQL Injection an...
🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-63030/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
###WordPress admins - we got you covered! 🫡 → We've just shipped detection for #wp2shell through our Network Scanner. ⚡️ The fastest way to use it is to:
◉ run a single-CVE scan for CVE-2026-63030 - which also covers CVE-2026-60137 - the SQL injection flaw that chains to give attackers RCE
◉ Based on your scan results, either patch or confirm you're already on 6.8.6, 6.9.5, or 7.0.2.
◉ Re-scan to confirm remediation and rule out residual exposure across your other assets.
Remember: updating your main install doesn't cover *every* WP instance you own. Using Pentest-Tools.com means you can expand visibility across your wider attack surface, not just the site you remember exists.
Technical CVE details below. ↘︎↘︎↘︎
See why an estimated 500+ million websites running WP are vulnerable to this critical vulnerability: https://pentest-tools.com/vulnerabilities-exploits/wordpress-core-69-701-pre-auth-blind-sql-injection-batch-route-confusion_29451
##🏆 New Achievement! wp2Shell We Have A Problem!
QUEST UPDATE — PREREQUISITE FAILED: "Have A Website That Isn't On Fire." WordPress Core carries CVE-2026-63030, a critical unauthenticated remote code execution flaw haunting versions 6.9.0 through 6.9.4 and 7.0.0 through 7.0.1. No login required. No credentials to steal. The attacker just knocks and your site answers. A companion SQL injection, CVE-2026-60137, is also along for the ride, because one cursed artifact is never enough. (1/2)
##wp2shell (CVE-2026-63030 + CVE-2026-60137): Independent Root Cause Analysis https://github.com/tcyph3r/wp2shell-cve-2026-63030-root-cause
##WordPress pre-auth RCE CVE-2026-63030 chains a REST batch bug with SQL injection. Details and a public PoC are out. Update to WordPress 7.0.2 now.
#WordPress #PreAuthRCE #CVE202663030 #SQLInjection #wp2shell #WebSecurity #InfoSec
##‼️🚨 CVE-2026-63030 // wp2shell-poc: Proof-of-concept for an unauthenticated SQL injection in WordPress core that chains to remote code execution, via REST batch route confusion.
##@shellsharks New fodder for vulnerability.garden: wp2shell is CVE-2026-63030 / https://github.com/WordPress/wordpress-develop/security/advisories/GHSA-ff9f-jf42-662q
##9 posts
22 repos
https://github.com/own2pwn-fr/wp2shell-detect
https://github.com/ebrasha/abdal-cve-2026-60137
https://github.com/ikow/wp2shell
https://github.com/HackingLZ/wp2shell_stock_chain
https://github.com/codeb0ssx/Ultimate-wp2shell
https://github.com/bahartanir/wp2shell-scanner
https://github.com/0xsha/wp2shell
https://github.com/eyesecurity/wp2shell-compromise-scanner-plugin
https://github.com/JohenLastGen-JLG/wp2shell
https://github.com/Icex0/wp2shell-poc
https://github.com/h4cd0c/wp2shell
https://github.com/dinosn/wp2shell-lab
https://github.com/securelayer7/WordPresShell
https://github.com/Senanfurkan/wordpress-cve-2026-63030
https://github.com/yoerivegt/wp2shell-poc
https://github.com/47Cid/wp2shell-lab
https://github.com/0xWhoknows/wp2shell
https://github.com/kulichr/wp2shell
https://github.com/ekomsSavior/wp2shell
https://github.com/zi3lak/wp2shell_scanner
⚠️ CRITICAL: WordPress Core "wp2shell" RCE flaws get public exploits, patch now
Critical unauthenticated RCE vulnerabilities in WordPress Core (CVE-2026-63030, CVE-2026-60137) are actively exploited via public PoCs. The wp2shell attack chains REST API and SQL injection flaws to achieve code execution on default installations of WordPress 6.9.x and 7.0.x. All affected WordPress…
##WordPress Core "wp2shell" CRITICAL RCE chain (CVE-2026-63030 & CVE-2026-60137) actively exploited. Affects 6.9.0 – 6.9.4 & 7.0.0 – 7.0.1. Public PoCs out. Patch to 6.9.5/7.0.2 ASAP. Block REST API endpoints as temp mitigation. https://radar.offseq.com/threat/wordpress-core-wp2shell-rce-flaws-get-public-exploits-patch-now-99579d9a7c571599 #OffSeq #WordPress #RCE #Vuln
##Update your WordPress to 7.0.2/6.9.5, it's important
ETA: the above text is not a call for CMS evangelists, just fucking don't thanks
##🚨 wp2shell affects multiple vulnerabilities (CVE-2026-63030, CVE-2026-60137).
- CVE-2026-63030 (HIGH) - WordPress < 7.0.2 - REST API batch-route confusion and SQL injection issue leading to Remote Code Execution
- CVE-2026-60137 (CRITICAL) - WordPress < 7.0.2 - Facilitated SQL Injection via author__not_in in WP_Query
Running WordPress? Check your versions and patch to 6.8.6 / 6.9.5 / 7.0.2. If you can't patch immediately, apply the mitigations in the meantime.
ℹ️ Additional information on ZEN SecDB
https://secdb.nttzen.cloud/updates/a5a57351-ee12-401e-89a9-eca20d3ba7af/wp2shell-vulnerability
#infosec #wordpress #rce #sqlinjection #cve202663030 #cve202660137
#nttdata #zen #secdb #vulnerability_intelligence
🔴 CVE-2026-63030 - Critical (9.8)
WordPress 6.9.x before 6.9.5 and 7.0.x before 7.0.2 is affected by a REST API batch endpoint route confusion issue which, combined with the author__not_in WP_Query SQL Injection (CVE-2026-60137), could allow an attacker to perform SQL Injection an...
🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-63030/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
###WordPress admins - we got you covered! 🫡 → We've just shipped detection for #wp2shell through our Network Scanner. ⚡️ The fastest way to use it is to:
◉ run a single-CVE scan for CVE-2026-63030 - which also covers CVE-2026-60137 - the SQL injection flaw that chains to give attackers RCE
◉ Based on your scan results, either patch or confirm you're already on 6.8.6, 6.9.5, or 7.0.2.
◉ Re-scan to confirm remediation and rule out residual exposure across your other assets.
Remember: updating your main install doesn't cover *every* WP instance you own. Using Pentest-Tools.com means you can expand visibility across your wider attack surface, not just the site you remember exists.
Technical CVE details below. ↘︎↘︎↘︎
See why an estimated 500+ million websites running WP are vulnerable to this critical vulnerability: https://pentest-tools.com/vulnerabilities-exploits/wordpress-core-69-701-pre-auth-blind-sql-injection-batch-route-confusion_29451
##🏆 New Achievement! wp2Shell We Have A Problem!
QUEST UPDATE — PREREQUISITE FAILED: "Have A Website That Isn't On Fire." WordPress Core carries CVE-2026-63030, a critical unauthenticated remote code execution flaw haunting versions 6.9.0 through 6.9.4 and 7.0.0 through 7.0.1. No login required. No credentials to steal. The attacker just knocks and your site answers. A companion SQL injection, CVE-2026-60137, is also along for the ride, because one cursed artifact is never enough. (1/2)
##wp2shell (CVE-2026-63030 + CVE-2026-60137): Independent Root Cause Analysis https://github.com/tcyph3r/wp2shell-cve-2026-63030-root-cause
##「WordPressコアに新たなwp2shellの脆弱性が発見され、認証されていない攻撃者がコードを実行できるようになった。 」: #TheHackerNews
「匿名HTTPリクエストによって、WordPressサイト上でコードを実行できる脆弱性が発見されました。このバグはコア部分に存在するため、プラグインを一切インストールしていない状態でも悪用可能です。WordPressが6.9.5と7.0.2をリリースし、自動更新システムによる強制更新機能を有効にした金曜日までは、6.9および7.0バージョンのすべてのサイトが影響を受けていました。
wp2shell は1つのバグではなく、2つのバグから成り立っており、どちらにもCVE IDが付与されています。CVE -2026-63030 はREST APIのバッチルーティングの混同に関する脆弱性、 CVE-2026-60137 はWordPressコアにおけるSQLインジェクションの脆弱性です。 」
https://thehackernews.com/2026/07/new-wp2shell-wordpress-core-flaw-lets.html
##🟠 CVE-2026-15631 - High (8.7)
Impact: @fastify/http-proxy versions from 9.4.0 up to and including 11.5.0 fail to validate the resolved WebSocket destination path against the configured rewrite prefix. The WebSocket routing path in WebSocketProxy.findUpstream resolves the desti...
🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-15631/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##🟠 CVE-2026-16158 - High (8.7)
Impact: @fastify/reply-from versions from 8.3.1 up to but not including 12.6.4 build the internal URL cache key by concatenating the destination and source path without a delimiter. Different destination and source pairs can therefore produce the ...
🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-16158/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##🟠 CVE-2026-56741 - High (7.5)
JLine is a Java library for handling console input. Prior to 3.30.14, 4.0.16, and 4.2.1, the JLine3 Telnet server remote-telnet module does not apply an upper bound to terminal dimensions received via the Telnet NAWS option, and TelnetIO.handleNAW...
🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-56741/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##‼️ New Dark Web Informer Blog Post!
Title: One Namespace String to kube-system: Cross-Namespace Privilege Escalation in Kyverno (CVE-2026-54523)
💥 Get early visibility into underground claims, including unblurred screenshots, before they turn into headlines: https://darkwebinformer.com/pricing
##Kyverno vulnerability CVE-2026-54523 (CVSS 9.6) is public with PoC exploit code. It lets a tenant gain admin in any namespace. Update to v1.18.2.
#Kyverno #CVE202654523 #PrivilegeEscalation #Kubernetes #CyberSecurity
https://securityonline.info/kyverno-cve-2026-54523/?utm_source=mastodon&utm_medium=jetpack_social
##CVE-2026-44436 - High-severity DoS in Quicly (H2O HTTP server). Connection ID handling flaw can corrupt state. CVSS 7.5. No patch available yet. Monitor for updates. #CVE #infosec #cybersecurity
##Wake up, babe, new ../ in Wazuh just dropped ... https://db.gcve.eu/vuln/cve-2026-39359
##Chrome security update 150.0.7871.128 patches 7 flaws, including three critical use-after-free bugs in CameraCapture, GPU, and Network. Update now.
#Chrome #GoogleChrome #CVE202615899 #UseAfterFree #BrowserSecurity #Chromium #CyberSecurity
##Metabase patched CVE-2026-59827 (CVSS 9.9) and CVE-2026-59826 (CVSS 9.1). These flaws enable remote code execution via unsafe H2 deserialization.
##CVE-2026-55445: Qinglong <2.20.1 has a CRITICAL improper authentication bug (CVSS 9.3). Attackers can reset admin credentials on initialized systems via /open/user/init. Upgrade to 2.20.1 ASAP. https://radar.offseq.com/threat/cve-2026-55445-cwe-287-improper-authentication-in--3a378a9a77ee78d0 #OffSeq #CVE202655445 #Vuln #Qinglong
##🟠 CVE-2026-55234 - High (8.5)
Wekan is open source kanban built with Meteor. Prior to 9.37, Wekan DDP update allow rules in server/permissions/cards.js, server/permissions/lists.js, and server/permissions/swimlanes.js authorize against the stored source boardId and do not vali...
🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-55234/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##🔴 CVE-2026-55652 - Critical (9.8)
Wekan is open source kanban built with Meteor. Prior to 9.46, header-login with HEADER_LOGIN_TRUSTED_IPS uses getRequestIp() in server/lib/headerLoginAuth.js to trust the client-supplied X-Forwarded-For header before the real socket address, allow...
🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-55652/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##