| CVE | CVSS | EPSS | Posts | Repos | Nuclei | Updated | Description |
|---|---|---|---|---|---|---|---|
| CVE-2026-41283 | 9.9 | 0.18% | 5 | 0 | 2026-06-04T16:21:06.820000 | OpenStack Mistral through 22.0.0 allows Arbitrary Remote Code Execution when the | |
| CVE-2026-49143 | 8.8 | 0.15% | 1 | 0 | 2026-06-04T16:10:59.820000 | BrowserStack Runner through 0.9.5 contains a remote code execution vulnerability | |
| CVE-2026-49443 | 8.8 | 0.04% | 1 | 0 | 2026-06-04T15:49:39.440000 | authentik is an open-source identity provider. Prior to versions 2025.12.6, 2026 | |
| CVE-2026-31942 | 7.1 | 0.04% | 1 | 0 | 2026-06-04T15:48:43.743000 | LibreChat is an enhanced ChatGPT clone that supports multiple AI providers. In v | |
| CVE-2026-34077 | 7.5 | 0.04% | 1 | 0 | 2026-06-04T15:43:00.950000 | React Router is a router for React. In versions 7.7.0 through 7.13.1, when using | |
| CVE-2026-33245 | 8.0 | 0.03% | 1 | 0 | 2026-06-04T15:43:00.950000 | React Router is a router for React. In versions 7.7.0 through 7.13.1, when using | |
| CVE-2026-36608 | 8.8 | 0.02% | 1 | 0 | 2026-06-04T15:41:35.193000 | Mercusys AC12G (EU) V1 router with firmware AC12G(EU)_V1_200909 allows UPnP AddP | |
| CVE-2026-36607 | 8.8 | 0.02% | 1 | 0 | 2026-06-04T15:41:35.193000 | Mercusys AC12G (EU) V1 router with firmware AC12G(EU)_V1_200909 allows unauthent | |
| CVE-2026-40108 | 0 | 0.04% | 1 | 0 | 2026-06-04T15:41:35.193000 | GLPI is a free asset and IT management software package. In versions 11.0.0 thro | |
| CVE-2026-8037 | 9.6 | 0.00% | 2 | 0 | 2026-06-04T15:35:18.623000 | OS Command Injection Remote Code Execution Vulnerability in API in Progress ADC | |
| CVE-2026-41010 | 8.2 | 0.02% | 2 | 0 | 2026-06-04T15:35:18.623000 | ReleaseJob#unpack builds job_dir = File.join(@release_dir, 'jobs', name) and job | |
| CVE-2026-7312 | 10.0 | 0.03% | 1 | 0 | 2026-06-04T15:31:35 | CWE‑522: Insufficiently Protected Credentials in web services in Progress Sitefi | |
| CVE-2026-9516 | 7.5 | 0.04% | 2 | 0 | 2026-06-04T15:21:14.080000 | Cpanel::JSON::XS versions before 4.41 for Perl allow denial of service via UTF-8 | |
| CVE-2026-8936 | 0 | 0.01% | 1 | 0 | 2026-06-04T15:21:14.080000 | Fixed a VM panic caused by unbounded recursion in the grpcfuse kernel module whe | |
| CVE-2026-10864 | 0 | 0.00% | 2 | 0 | 2026-06-04T15:19:41.920000 | A vulnerability in the MISP dashboard widgets allowed an authenticated user to m | |
| CVE-2026-35078 | 8.1 | 0.10% | 2 | 0 | 2026-06-04T15:16:58.787000 | The ugw-logstop method allows a remote attacker with user privileges to delete | |
| CVE-2026-35077 | 8.1 | 0.10% | 2 | 0 | 2026-06-04T15:16:58.787000 | The ugw-delete-file method allows a remote attacker with user privileges to del | |
| CVE-2026-35075 | 9.8 | 0.08% | 2 | 0 | 2026-06-04T15:16:58.787000 | An unauthenticated remote attacker can recover a default, hard coded password fr | |
| CVE-2026-35081 | 8.1 | 0.10% | 2 | 0 | 2026-06-04T15:16:58.787000 | The ugw-logstop method allows a remote attacker with user privileges to terminat | |
| CVE-2026-35080 | 8.1 | 0.10% | 2 | 0 | 2026-06-04T15:16:58.787000 | The ugw-restoreinfo method allows a remote attacker with user privileges to dele | |
| CVE-2026-35085 | 8.8 | 0.10% | 1 | 0 | 2026-06-04T15:16:58.787000 | A remote attacker with user privileges can exploit a stack buffer overflow in gd | |
| CVE-2025-14773 | 8.0 | 0.02% | 2 | 0 | 2026-06-04T15:13:22.717000 | Improper neutralization of input during web page generation ('cross-site scripti | |
| CVE-2026-49189 | 0 | 0.01% | 2 | 0 | 2026-06-04T15:10:32.720000 | Unchecked public access permissions on a core Broadcast Receiver allow unauthori | |
| CVE-2026-49185 | 0 | 0.05% | 2 | 0 | 2026-06-04T15:10:32.720000 | The FieldX MDM adb messaging topic passes unverified payloads directly into Runt | |
| CVE-2026-20230 | 8.6 | 0.02% | 8 | 0 | 2026-06-04T13:54:40.593000 | A vulnerability in Cisco Unified Communications Manager (Unified CM) and Cisco U | |
| CVE-2026-20175 | 6.1 | 0.02% | 1 | 0 | 2026-06-04T13:54:40.593000 | A vulnerability in Cisco Finesse could allow an unauthenticated, remote attacker | |
| CVE-2026-20233 | 6.1 | 0.02% | 1 | 0 | 2026-06-04T13:54:40.593000 | A vulnerability in the web-based user interface of Cisco Webex Meetings could ha | |
| CVE-2025-15656 | 8.8 | 0.04% | 2 | 0 | 2026-06-04T13:53:09.797000 | Incorrect Privilege Assignment vulnerability in Mojoomla School Management allow | |
| CVE-2026-10737 | 7.5 | 0.07% | 2 | 0 | 2026-06-04T13:53:09.797000 | The SP Project & Document Manager plugin for WordPress is vulnerable to unauthor | |
| CVE-2026-1829 | 8.8 | 0.22% | 1 | 0 | 2026-06-04T13:53:09.797000 | The Content Visibility for Divi Builder plugin for WordPress is vulnerable to Re | |
| CVE-2026-7313 | 8.7 | 0.03% | 1 | 0 | 2026-06-04T13:12:04.650000 | CWE‑522: Insufficiently Protected Credentials in web services in Progress Sitefi | |
| CVE-2026-7195 | 8.8 | 0.05% | 1 | 0 | 2026-06-04T12:51:51.543000 | CWE-20: Improper Input Validation in web services in Progress Sitefinity 14.1.x | |
| CVE-2026-10840 | 9.6 | 0.00% | 2 | 0 | 2026-06-04T12:30:33 | A flaw was found in the OpenShift Pipelines operator. The tekton-scheduler-roleb | |
| CVE-2026-4104 | 9.8 | 0.00% | 1 | 1 | 2026-06-04T12:30:33 | Authorization bypass through User-Controlled SQL primary key vulnerability in Ak | |
| CVE-2026-49771 | 7.6 | 0.03% | 2 | 0 | 2026-06-04T12:30:32 | Improper Neutralization of Special Elements used in an SQL Command ('SQL Injecti | |
| CVE-2026-41860 | 8.8 | 0.01% | 3 | 0 | 2026-06-04T03:30:28 | CWE-326 in BOSH allows a local attacker to steal Basic-auth credentials or redir | |
| CVE-2026-41859 | 7.8 | 0.01% | 2 | 0 | 2026-06-04T03:30:28 | A network man-in-the-middle between nats-sync and the BOSH director can steal th | |
| CVE-2026-41858 | 7.5 | 0.03% | 2 | 0 | 2026-06-04T03:30:28 | Weak Randomness / Insecure Cryptographic Primitive (CWE-338) in Get-RandomPasswo | |
| CVE-2026-41011 | 8.2 | 0.02% | 4 | 0 | 2026-06-04T03:30:28 | PackagePersister.validate_tgz builds "tar -tf #{tgz} 2>&1" where tgz = File.join | |
| CVE-2026-36576 | 9.8 | 0.26% | 1 | 0 | 2026-06-03T21:30:29 | An OS command injection vulnerability in the app.py component of openlabs docker | |
| CVE-2026-36748 | 9.0 | 0.04% | 1 | 1 | 2026-06-03T21:30:29 | RockRMS v16.13 and before v.17.7.0 is vulnerable to Cross Site Scripting (XSS) v | |
| CVE-2026-10701 | 7.5 | 0.03% | 2 | 0 | 2026-06-03T21:30:28 | Incorrect boundary conditions in the Graphics: Text component. This vulnerabilit | |
| CVE-2026-45247 | 9.8 | 6.15% | 8 | 1 | 2026-06-03T21:30:25 | Mirasvit Full Page Cache Warmer for Magento 2 before version 1.11.12 contains a | |
| CVE-2026-42342 | 7.5 | 0.05% | 1 | 0 | 2026-06-03T21:05:18 | There exists a potential DOS attack vector in React Router Framework Mode applic | |
| CVE-2026-42211 | 8.1 | 0.25% | 1 | 0 | 2026-06-03T21:03:33 | When using React Router v7 in [Framework Mode](https://reactrouter.com/start/mod | |
| CVE-2026-30652 | 8.8 | 0.19% | 2 | 0 | 2026-06-03T19:16:25.790000 | A remote buffer overflow vulnerability exists in the /cgi-bin/dido/setdo.cgi end | |
| CVE-2026-38967 | 9.8 | 0.05% | 2 | 0 | 2026-06-03T18:34:14 | CrowCpp Crow through v1.3.1 HTTP is vulnerable to response header injection via | |
| CVE-2026-42504 | 7.5 | 0.04% | 2 | 0 | 2026-06-03T18:34:14 | Decoding a maliciously-crafted MIME header containing many invalid encoded-words | |
| CVE-2026-30650 | 8.8 | 0.39% | 2 | 0 | 2026-06-03T18:33:08 | A post-authentication remote buffer overflow vulnerability exists in the /cgi-bi | |
| CVE-2026-37228 | 7.5 | 0.19% | 1 | 0 | 2026-06-03T17:16:35.563000 | FlexRIC v2.0.0 contains a reachable assertion in e2ap_recv_sctp_msg() (src/lib/e | |
| CVE-2026-37229 | 7.5 | 0.14% | 1 | 0 | 2026-06-03T17:16:30.170000 | FlexRIC v2.0.0 contains a reachable assertion in e2ap_create_pdu() triggered whe | |
| CVE-2026-5241 | 8.0 | 0.07% | 1 | 0 | 2026-06-03T15:30:55 | A vulnerability in the LightGlue model loading path of huggingface/transformers | |
| CVE-2026-35083 | 8.8 | 0.10% | 2 | 0 | 2026-06-03T15:30:54 | A remote attacker with user privileges can exploit a stack buffer overflow to ga | |
| CVE-2026-35082 | 8.8 | 0.14% | 2 | 0 | 2026-06-03T15:30:54 | The ugw-logread method allows a remote attacker with user privileges to access a | |
| CVE-2026-35084 | 8.8 | 0.10% | 1 | 0 | 2026-06-03T15:30:54 | A remote attacker with user privileges can exploit a stack buffer overflow in da | |
| CVE-2026-35076 | 8.1 | 0.10% | 2 | 0 | 2026-06-03T15:30:49 | The bac-scanresult method allows a remote attacker with user privileges to delet | |
| CVE-2026-35079 | 8.1 | 0.10% | 1 | 0 | 2026-06-03T15:30:42 | The ugw-restore method allows a remote attacker with user privileges to delete a | |
| CVE-2026-0096 | 7.8 | 0.01% | 1 | 0 | 2026-06-03T13:41:57.493000 | In getAppLabel of ForgetDeviceDialogFragment.java, there is a possible trick the | |
| CVE-2026-28580 | 7.8 | 0.01% | 1 | 0 | 2026-06-03T13:35:12.330000 | In multiple functions, there is a possible desync in persistence due to an incor | |
| CVE-2025-14771 | 9.9 | 0.04% | 2 | 0 | 2026-06-03T12:30:33 | Files or directories accessible to external parties vulnerability in ABB T-MAC P | |
| CVE-2025-14772 | 8.8 | 0.04% | 2 | 0 | 2026-06-03T12:30:33 | Authorization bypass through User-Controlled key vulnerability in ABB T-MAC Plus | |
| CVE-2026-47065 | 9.8 | 0.05% | 2 | 0 | 2026-06-03T12:30:33 | ZDRES-232: resolveProxyClass Not Overridden - acceptMatchers Filter Bypass via j | |
| CVE-2026-41032 | 7.5 | 0.03% | 2 | 0 | 2026-06-03T12:30:33 | It is possible for an unauthenticated adjacent attacker to download log files of | |
| CVE-2025-15655 | 7.6 | 0.03% | 2 | 0 | 2026-06-03T12:30:33 | Improper Neutralization of Special Elements used in an SQL Command ('SQL Injecti | |
| CVE-2026-4035 | 9.1 | 0.28% | 3 | 0 | 2026-06-03T09:30:38 | A vulnerability in mlflow/mlflow versions prior to 3.11.0 allows for the resolut | |
| CVE-2026-50031 | 7.5 | 0.04% | 1 | 0 | 2026-06-03T06:31:36 | ipmi-oem in FreeIPMI before 1.6.18 has exploitable buffer overflows on response | |
| CVE-2026-10629 | 9.1 | 0.01% | 2 | 0 | 2026-06-02T21:31:46 | SIP signaling stack in Verizon IMS (unspecified version) implements SIP signalin | |
| CVE-2026-10622 | 8.2 | 0.05% | 1 | 0 | 2026-06-02T21:31:45 | Improper Authentication in REST API in Collibra Agent, allows a remote unauthent | |
| CVE-2026-10621 | 7.5 | 0.04% | 1 | 0 | 2026-06-02T21:31:45 | Path traversal in restore handler in Collibra Agent, allows an attacker to write | |
| CVE-2026-28299 | 8.2 | 0.06% | 2 | 0 | 2026-06-02T21:30:50 | SolarWinds Web Help Desk is found to be affected by a denial-of-service vulnerab | |
| CVE-2026-49120 | 8.5 | 0.03% | 1 | 0 | 2026-06-02T21:30:50 | Medplum before 5.1.14 contains a server-side request forgery vulnerability in th | |
| CVE-2026-5076 | 9.8 | 0.04% | 1 | 1 | 2026-06-02T20:56:20.057000 | The ARMember Premium plugin for WordPress is vulnerable to an insecure password | |
| CVE-2026-5073 | 7.5 | 0.06% | 1 | 0 | 2026-06-02T20:56:20.057000 | The ARMember Premium plugin for WordPress is vulnerable to SQL Injection via the | |
| CVE-2025-48595 | 8.4 | 0.40% | 16 | 1 | 2026-06-02T20:19:29.653000 | In multiple locations, there is a possible way to achieve code execution due to | |
| CVE-2026-0611 | 9.8 | 0.19% | 1 | 0 | 2026-06-02T20:16:31.633000 | Spacelabs Healthcare Sentinel versions 10.5.x and higher and 11.x.x before 11.6. | |
| CVE-2026-37226 | 7.5 | 0.21% | 1 | 0 | 2026-06-02T18:32:35 | FlexRIC v2.0.0 crashes when the iApp receives an E42_RIC_SUBSCRIPTION_REQUEST re | |
| CVE-2026-40715 | 7.8 | 0.01% | 1 | 0 | 2026-06-02T18:31:43 | Dell ThinOS 10, versions prior to ThinOS10 2602_10.0765, contain an Improper Acc | |
| CVE-2026-40619 | 7.8 | 0.01% | 1 | 0 | 2026-06-02T18:31:38 | A high security vulnerability affecting Security Center main server installation | |
| CVE-2026-24237 | 7.8 | 0.07% | 1 | 0 | 2026-06-02T18:31:38 | NVIDIA NVTabular contains a vulnerability where an attacker could cause improper | |
| CVE-2026-40780 | 7.5 | 0.04% | 1 | 0 | 2026-06-02T18:31:32 | Authentication Bypass Using an Alternate Path or Channel vulnerability in Liquid | |
| CVE-2026-42670 | 7.5 | 0.03% | 1 | 0 | 2026-06-02T18:31:31 | Missing Authorization vulnerability in Etoile Web Design Incorporated Five Star | |
| CVE-2026-24221 | 7.8 | 0.07% | 1 | 0 | 2026-06-02T17:19:15.030000 | NVIDIA NVTabular contains a vulnerability where an attacker could cause improper | |
| CVE-2026-10591 | 8.8 | 0.07% | 1 | 0 | 2026-06-02T17:18:50.850000 | Insufficient access control restrictions in the file write tool in Amazon Kiro I | |
| CVE-2026-47117 | 9.8 | 0.24% | 1 | 0 | 2026-06-02T17:18:19.573000 | OpenMed before 1.5.2 contains a remote code execution vulnerability in the PII p | |
| CVE-2026-45553 | 7.5 | 0.03% | 1 | 0 | 2026-06-02T17:15:44.040000 | NiceGUI is a Python-based UI framework. Prior to version 3.12.0, ui.restructured | |
| CVE-2026-39553 | 8.1 | 0.11% | 1 | 0 | 2026-06-02T15:32:20 | Improper Control of Filename for Include/Require Statement in PHP Program ('PHP | |
| CVE-2026-39552 | 8.1 | 0.11% | 1 | 0 | 2026-06-02T15:32:20 | Improper Control of Filename for Include/Require Statement in PHP Program ('PHP | |
| CVE-2026-7201 | 8.8 | 0.04% | 1 | 0 | 2026-06-02T15:32:20 | CWE-639: Authorization Bypass Through User-Controlled Key in web services in Pro | |
| CVE-2026-7198 | 9.8 | 0.08% | 1 | 0 | 2026-06-02T15:32:20 | CWE-284: Improper Access Control in web services in Progress Sitefinity 15.4.862 | |
| CVE-2025-68886 | 8.1 | 0.11% | 1 | 0 | 2026-06-02T15:32:12 | Improper Control of Filename for Include/Require Statement in PHP Program ('PHP | |
| CVE-2025-58707 | 8.1 | 0.11% | 1 | 0 | 2026-06-02T15:32:11 | Improper Control of Filename for Include/Require Statement in PHP Program ('PHP | |
| CVE-2026-10510 | 6.1 | 0.03% | 1 | 0 | 2026-06-02T15:32:07 | Cross-Site Scripting (XSS) in GeniexWebView component in Transsion AI Assistant | |
| CVE-2025-58897 | 8.1 | 0.11% | 1 | 0 | 2026-06-02T14:43:49.920000 | Improper Control of Filename for Include/Require Statement in PHP Program ('PHP | |
| CVE-2025-69369 | 8.1 | 0.11% | 1 | 0 | 2026-06-02T14:43:49.920000 | Improper Control of Filename for Include/Require Statement in PHP Program ('PHP | |
| CVE-2026-39555 | 8.1 | 0.04% | 1 | 0 | 2026-06-02T14:43:49.920000 | Deserialization of Untrusted Data vulnerability in Elated-Themes Askka allows Ob | |
| CVE-2026-8293 | 7.5 | 0.07% | 1 | 0 | 2026-06-02T14:43:49.920000 | The Really Simple Security WordPress plugin before 9.5.10.1 does not enforce th | |
| CVE-2026-34906 | 0 | 0.29% | 1 | 0 | 2026-06-02T13:54:55.990000 | Server-Side Template Injection (SSTI) in Wirtualna Uczelnia allows an unauthenti | |
| CVE-2025-53209 | 9.8 | 0.02% | 2 | 0 | 2026-06-02T13:03:31.153000 | Incorrect Privilege Assignment vulnerability in Themeisle Masteriyo LMS PRO allo | |
| CVE-2026-39551 | 8.1 | 0.04% | 1 | 0 | 2026-06-02T13:03:31.153000 | Deserialization of Untrusted Data vulnerability in Elated-Themes Töbel allows Ob | |
| CVE-2026-42684 | 9.3 | 0.03% | 1 | 0 | 2026-06-02T12:31:33 | Improper Neutralization of Special Elements used in an SQL Command ('SQL Injecti | |
| CVE-2025-53345 | 8.8 | 0.06% | 2 | 0 | 2026-06-02T12:31:32 | Missing Authorization vulnerability leading to code execution after installing m | |
| CVE-2025-58705 | 8.1 | 0.11% | 2 | 0 | 2026-06-02T12:31:32 | Improper Control of Filename for Include/Require Statement in PHP Program ('PHP | |
| CVE-2025-58024 | 7.5 | 0.07% | 2 | 0 | 2026-06-02T12:31:32 | Improper Control of Filename for Include/Require Statement in PHP Program ('PHP | |
| CVE-2025-53440 | 8.1 | 0.11% | 1 | 0 | 2026-06-02T12:31:32 | Improper Control of Filename for Include/Require Statement in PHP Program ('PHP | |
| CVE-2026-42669 | 7.5 | 0.03% | 1 | 0 | 2026-06-02T12:31:32 | Missing Authorization vulnerability in EventPrime allows Exploiting Incorrectly | |
| CVE-2026-39550 | 8.1 | 0.04% | 1 | 0 | 2026-06-02T12:31:32 | Deserialization of Untrusted Data vulnerability in Elated-Themes Aperitif allows | |
| CVE-2026-5422 | 6.8 | 0.03% | 2 | 0 | 2026-06-02T12:31:26 | A path traversal vulnerability exists in jupyter-server version 2.17.0 due to an | |
| CVE-2026-3514 | 7.5 | 0.08% | 2 | 0 | 2026-06-02T09:36:21 | In version 3.6.19 of prefecthq/prefect, an authentication bypass vulnerability e | |
| CVE-2026-8206 | 9.8 | 0.12% | 5 | 2 | 2026-06-02T06:30:33 | The Kirki – Freeform Page Builder, Website Builder & Customizer plugin for WordP | |
| CVE-2026-25260 | 7.8 | 0.01% | 1 | 0 | 2026-06-02T00:32:06 | Memory Corruption when accessing shared buffers without validation of concurrent | |
| CVE-2026-28577 | 7.8 | 0.01% | 1 | 0 | 2026-06-02T00:32:06 | In addWindow of WindowManagerService.java, there is a possible tapjacking issue | |
| CVE-2026-0097 | 8.0 | 0.01% | 1 | 0 | 2026-06-02T00:32:05 | In multiple locations, there is a possible way to bypass user interaction when p | |
| CVE-2026-0095 | 8.0 | 0.01% | 1 | 0 | 2026-06-02T00:32:05 | In l2c_fcr_clone_buf of l2c_fcr.cc, there is a possible way to trigger controlle | |
| CVE-2026-46243 | 7.8 | 0.02% | 4 | 4 | 2026-06-01T21:16:46.090000 | In the Linux kernel, the following vulnerability has been resolved: smb: client | |
| CVE-2024-21182 | 7.5 | 89.65% | 2 | 3 | 2026-06-01T19:32:02.173000 | Vulnerability in the Oracle WebLogic Server product of Oracle Fusion Middleware | |
| CVE-2026-0826 | 0 | 0.21% | 3 | 0 | 2026-06-01T17:07:57.203000 | In certain scenarios when the admin has enabled Interactive Connectivity Establi | |
| CVE-2026-0257 | 9.1 | 46.45% | 2 | 8 | template | 2026-05-29T21:32:21 | Authentication bypass vulnerabilities in the GlobalProtect portal and gateway of |
| CVE-2026-47201 | 8.5 | 0.06% | 1 | 0 | 2026-05-29T20:25:49 | ### Summary authentik's SAML Source ACS endpoint is vulnerable to XML Signatu | |
| CVE-2026-8732 | 9.8 | 0.10% | 6 | 7 | 2026-05-29T07:20:15 | The WP Maps Pro plugin for WordPress is vulnerable to Privilege Escalation via A | |
| CVE-2026-4390 | 5.4 | 0.04% | 1 | 1 | 2026-05-27T18:31:49 | A weakness has been identified in TeamSpeak 3 Server up to 3.13.7. This affects | |
| CVE-2026-3375 | 7.2 | 0.09% | 2 | 1 | 2026-05-27T14:50:47.627000 | The LiteSpeed Cache plugin for WordPress is vulnerable to Stored Cross-Site Scri | |
| CVE-2026-48131 | 8.1 | 0.02% | 1 | 0 | 2026-05-26T19:09:11.220000 | The VPN service may mishandle an unexpected IKE fragment value received on the I | |
| CVE-2026-48132 | 8.1 | 0.07% | 1 | 0 | 2026-05-26T15:32:16 | The Security Gateway does not correctly validate a length value in certain IKE p | |
| CVE-2026-26980 | 9.4 | 56.66% | 1 | 5 | template | 2026-05-26T15:16:24.310000 | Ghost is a Node.js content management system. Versions 3.24.0 through 6.19.0 all |
| CVE-2026-8631 | 9.8 | 0.02% | 1 | 0 | 2026-05-21T18:58:41.297000 | A potential security vulnerability has been identified in the HP Linux Imaging a | |
| CVE-2026-42074 | None | 0.05% | 2 | 0 | 2026-05-20T17:51:47 | ### Summary The `dangerouslyDisableSandbox` parameter is exposed as part of the | |
| CVE-2026-45686 | 7.5 | 0.05% | 1 | 0 | 2026-05-18T20:21:54 | ### Summary A remotely reachable integer overflow in OBI's memcached text proto | |
| CVE-2026-45685 | 7.5 | 0.24% | 1 | 0 | 2026-05-18T20:20:05 | ### Summary Malformed MongoDB wire messages can trigger uncaught panics in the | |
| CVE-2026-45678 | 7.5 | 0.08% | 1 | 0 | 2026-05-18T17:56:30 | ### Summary The Postgres protocol parser assumes `BIND` message payloads contai | |
| CVE-2026-41089 | 9.8 | 0.10% | 17 | 8 | 2026-05-15T15:42:17.907000 | Stack-based buffer overflow in Windows Netlogon allows an unauthorized attacker | |
| CVE-2026-42945 | 8.1 | 0.90% | 2 | 40 | 2026-05-14T21:30:40 | NGINX Plus and NGINX Open Source have a vulnerability in the ngx_http_rewrite_mo | |
| CVE-2026-8181 | 9.8 | 4.73% | 3 | 10 | template | 2026-05-14T06:31:40 | The Burst Statistics – Privacy-Friendly WordPress Analytics (Google Analytics Al |
| CVE-2026-0265 | 0 | 0.05% | 2 | 2 | 2026-05-13T18:17:47.830000 | An authentication bypass vulnerability in Palo Alto Networks PAN-OS® software en | |
| CVE-2026-0263 | 0 | 0.08% | 2 | 0 | 2026-05-13T18:17:47.830000 | A buffer overflow vulnerability in the IKEv2 processing of Palo Alto Networks PA | |
| CVE-2026-0264 | 0 | 0.10% | 2 | 0 | 2026-05-13T18:17:47.830000 | A buffer overflow vulnerability in the DNS proxy and DNS Server features of Palo | |
| CVE-2026-41940 | 9.8 | 90.76% | 2 | 68 | template | 2026-05-04T18:09:42.300000 | cPanel and WHM versions after 11.40 contain an authentication bypass vulnerabili |
| CVE-2026-31525 | 7.8 | 0.01% | 1 | 1 | 2026-04-28T18:30:31 | In the Linux kernel, the following vulnerability has been resolved: bpf: Fix un | |
| CVE-2026-3300 | 9.8 | 0.31% | 1 | 0 | 2026-04-24T18:11:16.583000 | The Everest Forms Pro plugin for WordPress is vulnerable to Remote Code Executio | |
| CVE-2026-33691 | 6.8 | 0.03% | 2 | 0 | 2026-04-18T20:16:29.633000 | The OWASP core rule set (CRS) is a set of generic attack detection rules for use | |
| CVE-2026-40933 | 9.9 | 0.07% | 1 | 0 | 2026-04-16T21:18:18 | ### Summary Due to unsafe serialization of stdio commands in the MCP adapter, an | |
| CVE-2026-3055 | 9.8 | 89.79% | 1 | 5 | template | 2026-03-31T15:31:53 | Insufficient input validation in NetScaler ADC and NetScaler Gateway when config |
| CVE-2026-22557 | 10.0 | 0.03% | 1 | 4 | 2026-03-19T15:31:22 | A malicious actor with access to the network could exploit a Path Traversal vuln | |
| CVE-2025-8088 | 8.8 | 10.66% | 2 | 32 | 2025-10-30T15:50:59.680000 | A path traversal vulnerability affecting the Windows version of WinRAR allows th | |
| CVE-2025-59489 | 8.4 | 0.02% | 1 | 3 | 2025-10-03T18:31:26 | Unity Editor 2019.1 through 6000.3 could allow remote attackers to exploit file | |
| CVE-2026-49975 | 0 | 0.00% | 3 | 2 | N/A | ||
| CVE-2026-23479 | 0 | 0.10% | 4 | 1 | N/A | ||
| CVE-2026-45323 | 0 | 0.05% | 1 | 0 | N/A | ||
| CVE-2021-27137 | 0 | 0.00% | 2 | 0 | N/A | ||
| CVE-2026-40290 | 0 | 0.01% | 2 | 0 | N/A | ||
| CVE-2022-0492 | 0 | 28.97% | 4 | 8 | N/A | ||
| CVE-2026-35482 | 0 | 0.04% | 2 | 0 | N/A | ||
| CVE-2026-32625 | 0 | 0.03% | 2 | 0 | N/A | ||
| CVE-2026-49448 | 0 | 0.04% | 2 | 0 | N/A | ||
| CVE-2026-42849 | 0 | 0.01% | 1 | 0 | N/A | ||
| CVE-2026-46376 | 0 | 0.08% | 1 | 1 | N/A |
updated 2026-06-04T16:21:06.820000
5 posts
🚨 CRITICAL: CVE-2026-41283 in OpenStack Mistral (v20.0.0 – 22.0.0) allows remote code execution via exposed API. No patch yet. Restrict API to trusted users & monitor closely. Full system compromise possible. https://radar.offseq.com/threat/cve-2026-41283-cwe-863-incorrect-authorization-in--186d9351 #OffSeq #OpenStack #Vuln #CloudSec
##CVE-2026-41283 - Critical RCE in OpenStack Mistral. API exposure allows code exec & credential exfiltration. CVSS 9.9. No patch yet - restrict API access immediately. #CVE #OpenStack #infosec
##🔴 CVE-2026-41283 - Critical (9.9)
OpenStack Mistral through 22.0.0 allows Arbitrary Remote Code Execution when the API is exposed. There are endpoints that allow code execution, which can lead to exfiltration of service credentials.
🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-41283/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##🚨 CRITICAL: CVE-2026-41283 in OpenStack Mistral (v20.0.0 – 22.0.0) allows remote code execution via exposed API. No patch yet. Restrict API to trusted users & monitor closely. Full system compromise possible. https://radar.offseq.com/threat/cve-2026-41283-cwe-863-incorrect-authorization-in--186d9351 #OffSeq #OpenStack #Vuln #CloudSec
##🔴 CVE-2026-41283 - Critical (9.9)
OpenStack Mistral through 22.0.0 allows Arbitrary Remote Code Execution when the API is exposed. There are endpoints that allow code execution, which can lead to exfiltration of service credentials.
🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-41283/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##updated 2026-06-04T16:10:59.820000
1 posts
🟠 CVE-2026-49143 - High (8.8)
BrowserStack Runner through 0.9.5 contains a remote code execution vulnerability in the /_log HTTP handler that allows unauthenticated network-adjacent attackers to execute arbitrary code by submitting crafted JSON request bodies to the handler, w...
🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-49143/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##updated 2026-06-04T15:49:39.440000
1 posts
🟠 CVE-2026-49443 - High (8.8)
authentik is an open-source identity provider. Prior to versions 2025.12.6, 2026.2.4, and 2026.5.1, an attacker with the ability to change a source connection, and an account in one of the configured sources can log into any account. This issue ha...
🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-49443/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##updated 2026-06-04T15:48:43.743000
1 posts
⚠️ CVE-2026-31942: HIGH severity in LibreChat < 0.8.3-rc1. Authenticated users can overwrite others’ API key configs via IDOR in /api/keys. Patch is live (0.8.3-rc1), vendor manages remediation for cloud. More: https://radar.offseq.com/threat/cve-2026-31942-cwe-862-missing-authorization-in-da-025369dc #OffSeq #LibreChat #InfoSec #CVE
##updated 2026-06-04T15:43:00.950000
1 posts
🟠 CVE-2026-34077 - High (7.5)
React Router is a router for React. In versions 7.7.0 through 7.13.1, when using React Router's unstable React Server Components (RSC) APIs, there is a potential client-side Cross-Site Scripting (XSS) vulnerability in the RSC redirect handling if ...
🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-34077/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##updated 2026-06-04T15:43:00.950000
1 posts
🟠 CVE-2026-33245 - High (8)
React Router is a router for React. In versions 7.7.0 through 7.13.1, when using React Router's unstable React Server Components (RSC) APIs, there is a potential client-side Cross-Site Scripting (XSS) vulnerability in the RSC redirect handling if ...
🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-33245/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##updated 2026-06-04T15:41:35.193000
1 posts
🟠 CVE-2026-36608 - High (8.8)
Mercusys AC12G (EU) V1 router with firmware AC12G(EU)_V1_200909 allows UPnP AddPortMapping to forward external ports to the router's own admin interface by accepting its own IP (192.168.1.1) or localhost (127.0.0.1) as InternalClient. An unauthent...
🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-36608/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##updated 2026-06-04T15:41:35.193000
1 posts
🟠 CVE-2026-36607 - High (8.8)
Mercusys AC12G (EU) V1 router with firmware AC12G(EU)_V1_200909 allows unauthenticated brute-force attacks via the TDDP password change endpoint (code=10), which lacks the rate limiting applied to the login endpoint (code=7). An attacker on the ad...
🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-36607/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##updated 2026-06-04T15:41:35.193000
1 posts
⚠️ HIGH severity: CVE-2026-40108 impacts GLPI (11.0.0 – 11.0.6). Privileged technicians can inject XSS via ITIL cost fields. Upgrade to 11.0.7 to fix. No active exploits, but patching is critical. https://radar.offseq.com/threat/cve-2026-40108-cwe-79-improper-neutralization-of-i-b1d24331 #OffSeq #CVE202640108 #XSS #GLPI
##updated 2026-06-04T15:35:18.623000
2 posts
Progress LoadMaster is up there with Ivanti now.
##Progress LoadMaster is up there with Ivanti now.
##updated 2026-06-04T15:35:18.623000
2 posts
🟠 CVE-2026-41010 - High (8.2)
ReleaseJob#unpack builds job_dir = File.join(@release_dir, 'jobs', name) and job_tgz = File.join(@release_dir, 'jobs', "#{name}.tgz") where name returns @job_meta['name'], a value taken verbatim from the jobs: array of the attacker-supplied releas...
🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-41010/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##🟠 CVE-2026-41010 - High (8.2)
ReleaseJob#unpack builds job_dir = File.join(@release_dir, 'jobs', name) and job_tgz = File.join(@release_dir, 'jobs', "#{name}.tgz") where name returns @job_meta['name'], a value taken verbatim from the jobs: array of the attacker-supplied releas...
🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-41010/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##updated 2026-06-04T15:31:35
1 posts
🔴 CVE-2026-7312 - Critical (10)
CWE‑522: Insufficiently Protected Credentials in web services in Progress Sitefinity version from 14.0.7700 to 14.4.8152, and 15.0.8200 to 15.0.8234, and 15.1.8300 to 15.1.8335, 15.2.8400 to 15.2.8441, 15.3.8500 to 15.3.8531, and 15.4.8600 to 15...
🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-7312/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##updated 2026-06-04T15:21:14.080000
2 posts
🟠 CVE-2026-9516 - High (7.5)
Cpanel::JSON::XS versions before 4.41 for Perl allow denial of service via UTF-8 BOM prefixed input when a decode filter callback throws.
To skip a leading 3-byte UTF-8 BOM, decode_json() advances the input scalar's string pointer past the mark w...
🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-9516/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##🟠 CVE-2026-9516 - High (7.5)
Cpanel::JSON::XS versions before 4.41 for Perl allow denial of service via UTF-8 BOM prefixed input when a decode filter callback throws.
To skip a leading 3-byte UTF-8 BOM, decode_json() advances the input scalar's string pointer past the mark w...
🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-9516/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##updated 2026-06-04T15:21:14.080000
1 posts
🚩 CVE-2026-8936: Docker Desktop 4.33.0 has a HIGH-severity vuln in grpcfuse (CWE-674) — uncontrolled recursion can cause VM panic if containers create deeply nested dirs. Upgrade to 4.76.0! https://radar.offseq.com/threat/cve-2026-8936-cwe-674-uncontrolled-recursion-in-do-fc846554 #OffSeq #Docker #InfoSec
##updated 2026-06-04T15:19:41.920000
2 posts
https://nvd.nist.gov/vuln/detail/CVE-2026-10864
A vulnerability in the MISP dashboard widgets allowed an authenticated user to manipulate the fields option and influence which fields were returned by the New Users and New Organisations widgets. In some cases, requesting a field set that became empty after validation or redaction could cause the underlying query to fall back to returning unintended model fields. For the New Users widget, this could allow a non-site-admin user to obtain user e-mail addresses even when user e-mail disclosure was disabled by configuration. For the New Organisations widget, crafted field selection could similarly result in unintended organisation fields being included in the dashboard response. The issue was caused by applying field filtering and redaction in a way that could leave the selected field list empty. The patch ensures that the allowed field list is built safely, that restricted fields such as user e-mail addresses are removed before user-supplied field selection is processed, and that an empty field selection falls back only to the permitted default fields. Impact: An authenticated low-privileged user with access to the affected dashboard widgets may be able to disclose restricted user or organisation metadata, including user e-mail addresses depending on configuration.
Edit: More MISP advisories. The CVEs are new, at least. Not sure about the advisories.
##https://nvd.nist.gov/vuln/detail/CVE-2026-10864
A vulnerability in the MISP dashboard widgets allowed an authenticated user to manipulate the fields option and influence which fields were returned by the New Users and New Organisations widgets. In some cases, requesting a field set that became empty after validation or redaction could cause the underlying query to fall back to returning unintended model fields. For the New Users widget, this could allow a non-site-admin user to obtain user e-mail addresses even when user e-mail disclosure was disabled by configuration. For the New Organisations widget, crafted field selection could similarly result in unintended organisation fields being included in the dashboard response. The issue was caused by applying field filtering and redaction in a way that could leave the selected field list empty. The patch ensures that the allowed field list is built safely, that restricted fields such as user e-mail addresses are removed before user-supplied field selection is processed, and that an empty field selection falls back only to the permitted default fields. Impact: An authenticated low-privileged user with access to the affected dashboard widgets may be able to disclose restricted user or organisation metadata, including user e-mail addresses depending on configuration.
Edit: More MISP advisories. The CVEs are new, at least. Not sure about the advisories.
##updated 2026-06-04T15:16:58.787000
2 posts
🟠 CVE-2026-35078 - High (8.1)
The ugw-logstop method allows a remote attacker with user privileges to delete arbitrary local files due to insufficient validation of user-controlled input.
🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-35078/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##🟠 CVE-2026-35078 - High (8.1)
The ugw-logstop method allows a remote attacker with user privileges to delete arbitrary local files due to insufficient validation of user-controlled input.
🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-35078/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##updated 2026-06-04T15:16:58.787000
2 posts
🟠 CVE-2026-35077 - High (8.1)
The ugw-delete-file method allows a remote attacker with user privileges to delete arbitrary local files due to insufficient validation of user-controlled input.
🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-35077/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##🟠 CVE-2026-35077 - High (8.1)
The ugw-delete-file method allows a remote attacker with user privileges to delete arbitrary local files due to insufficient validation of user-controlled input.
🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-35077/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##updated 2026-06-04T15:16:58.787000
2 posts
🔴 CVE-2026-35075 - Critical (9.8)
An unauthenticated remote attacker can recover a default, hard coded password from a firmware image and thus gain full access to all affected devices.
🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-35075/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##🔴 CVE-2026-35075 - Critical (9.8)
An unauthenticated remote attacker can recover a default, hard coded password from a firmware image and thus gain full access to all affected devices.
🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-35075/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##updated 2026-06-04T15:16:58.787000
2 posts
🟠 CVE-2026-35081 - High (8.1)
The ugw-logstop method allows a remote attacker with user privileges to terminate arbitrary processes due to insufficient validation of user-supplied input.
🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-35081/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##🟠 CVE-2026-35081 - High (8.1)
The ugw-logstop method allows a remote attacker with user privileges to terminate arbitrary processes due to insufficient validation of user-supplied input.
🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-35081/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##updated 2026-06-04T15:16:58.787000
2 posts
🟠 CVE-2026-35080 - High (8.1)
The ugw-restoreinfo method allows a remote attacker with user privileges to delete arbitrary local files due to insufficient validation of user-controlled input.
🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-35080/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##🟠 CVE-2026-35080 - High (8.1)
The ugw-restoreinfo method allows a remote attacker with user privileges to delete arbitrary local files due to insufficient validation of user-controlled input.
🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-35080/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##updated 2026-06-04T15:16:58.787000
1 posts
🟠 CVE-2026-35085 - High (8.8)
A remote attacker with user privileges can exploit a stack buffer overflow in gdv-serverconfig to gain full system access as root.
🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-35085/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##updated 2026-06-04T15:13:22.717000
2 posts
🟠 CVE-2025-14773 - High (8)
Improper neutralization of input during web page generation ('cross-site scripting') vulnerability in ABB T-MAC Plus.
This issue affects T-MAC Plus: 4.0-24.
🔗 https://www.thehackerwire.com/vulnerability/CVE-2025-14773/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##🟠 CVE-2025-14773 - High (8)
Improper neutralization of input during web page generation ('cross-site scripting') vulnerability in ABB T-MAC Plus.
This issue affects T-MAC Plus: 4.0-24.
🔗 https://www.thehackerwire.com/vulnerability/CVE-2025-14773/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##updated 2026-06-04T15:10:32.720000
2 posts
HIGH severity: CVE-2026-49189 in Acer Connect M6E 5G WiFi Router lets unauthorized local apps invoke admin ops via improper privilege management. No patch yet — restrict local access & monitor for updates. Details: https://radar.offseq.com/threat/cve-2026-49189-cwe-269-improper-privilege-manageme-7d497fd8 #OffSeq #Acer #Vuln #Cybersecurity
##HIGH severity: CVE-2026-49189 in Acer Connect M6E 5G WiFi Router lets unauthorized local apps invoke admin ops via improper privilege management. No patch yet — restrict local access & monitor for updates. Details: https://radar.offseq.com/threat/cve-2026-49189-cwe-269-improper-privilege-manageme-7d497fd8 #OffSeq #Acer #Vuln #Cybersecurity
##updated 2026-06-04T15:10:32.720000
2 posts
⚠️ CVE-2026-49185: Acer Connect M6E 5G WiFi Router has a CRITICAL OS command injection bug (CVSS 10). Remote, unauthenticated exploitation possible. No patch available — limit exposure & monitor vendor updates. https://radar.offseq.com/threat/cve-2026-49185-cwe-78-improper-neutralization-of-s-b208b2de #OffSeq #CVE202649185 #Infosec #Vuln
##⚠️ CVE-2026-49185: Acer Connect M6E 5G WiFi Router has a CRITICAL OS command injection bug (CVSS 10). Remote, unauthenticated exploitation possible. No patch available — limit exposure & monitor vendor updates. https://radar.offseq.com/threat/cve-2026-49185-cwe-78-improper-neutralization-of-s-b208b2de #OffSeq #CVE202649185 #Infosec #Vuln
##updated 2026-06-04T13:54:40.593000
8 posts
Cisco Fixes Unified CM Flaw as Exploit Code Goes Public
Cisco has patched a critical vulnerability in its Unified Communications Manager, known as CVE-2026-20230, which could allow hackers to write arbitrary files to the server's operating system and potentially escalate privileges to root. With proof-of-concept exploit code now public, the threat level has significantly increased.
#Cisco #UnifiedCm #Cve202620230 #ServersideRequestForgery #Ssrf
##CVE-2026-20230: Critical Cisco Unified CM SSRF Flaw Exposes Enterprises to Root-Level Takeover via Public Exploit Code + Video
Breaking Security Reality: A Hidden Door Inside Enterprise Voice Infrastructure A newly disclosed vulnerability in Cisco Unified Communications Manager (Unified CM) has sent a sharp warning across enterprise security teams worldwide. Identified as CVE-2026-20230, this critical Server-Side Request Forgery (SSRF) flaw carries a CVSS score of 8.6…
##⚠️ CRITICAL: Cisco Unified CM/SME hit by SSRF vuln (CVE-2026-20230). Unauthenticated remote attackers can write files & escalate to root if WebDialer is enabled. Patch to 14SU6 ASAP. PoC out, no active exploitation. https://radar.offseq.com/threat/cisco-warns-of-available-poc-for-critical-unified--c947124b #OffSeq #Cisco #SSRF #Vuln
##CVE-2026-20230 - SSRF in Cisco Unified CM & Unified CM SME. Improper HTTP input validation. CVSS 8.6. Unpatched. No workaround available. Monitor for updates. #CVE #Cisco #infosec
##⚠️ CRITICAL: Cisco Unified CM/SME hit by SSRF vuln (CVE-2026-20230). Unauthenticated remote attackers can write files & escalate to root if WebDialer is enabled. Patch to 14SU6 ASAP. PoC out, no active exploitation. https://radar.offseq.com/threat/cisco-warns-of-available-poc-for-critical-unified--c947124b #OffSeq #Cisco #SSRF #Vuln
##CVE-2026-20230 - SSRF in Cisco Unified CM & Unified CM SME. Improper HTTP input validation. CVSS 8.6. Unpatched. No workaround available. Monitor for updates. #CVE #Cisco #infosec
##🟠 CVE-2026-20230 - High (8.6)
A vulnerability in Cisco Unified Communications Manager (Unified CM) and Cisco Unified Communications Manager Session Management Edition (Unified CM SME) could allow an unauthenticated, remote attacker to conduct server-side request forgery (SSRF)...
🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-20230/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##There are two updates from Broadcom for critical vulnerabilities: https://support.broadcom.com/web/ecx/security-advisory
- Mainframe Application Tuner 12.0.04 Vulnerability in REST API and GUI and a vulnerability in the OM Spool Web Interface
Cisco has three, one of them critical:
CRITICAL: CVE-2026-20230: Cisco Unified Communications Manager Server-Side Request Forgery Vulnerability https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-cucm-ssrf-cXPnHcW
MEDIUM: CVE-2026-20233: Cisco Webex Meetings Cross-Site Scripting Vulnerability https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-webex-xss-jw3NeQzS
MEDIUM: CVE-2026-20175: Cisco Finesse Remote File Inclusion Vulnerability https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-finesse-rfi-gwpkdc89 @TalosSecurity #infosec #Broadcom #vulnerability #Cisco
##updated 2026-06-04T13:54:40.593000
1 posts
There are two updates from Broadcom for critical vulnerabilities: https://support.broadcom.com/web/ecx/security-advisory
- Mainframe Application Tuner 12.0.04 Vulnerability in REST API and GUI and a vulnerability in the OM Spool Web Interface
Cisco has three, one of them critical:
CRITICAL: CVE-2026-20230: Cisco Unified Communications Manager Server-Side Request Forgery Vulnerability https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-cucm-ssrf-cXPnHcW
MEDIUM: CVE-2026-20233: Cisco Webex Meetings Cross-Site Scripting Vulnerability https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-webex-xss-jw3NeQzS
MEDIUM: CVE-2026-20175: Cisco Finesse Remote File Inclusion Vulnerability https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-finesse-rfi-gwpkdc89 @TalosSecurity #infosec #Broadcom #vulnerability #Cisco
##updated 2026-06-04T13:54:40.593000
1 posts
There are two updates from Broadcom for critical vulnerabilities: https://support.broadcom.com/web/ecx/security-advisory
- Mainframe Application Tuner 12.0.04 Vulnerability in REST API and GUI and a vulnerability in the OM Spool Web Interface
Cisco has three, one of them critical:
CRITICAL: CVE-2026-20230: Cisco Unified Communications Manager Server-Side Request Forgery Vulnerability https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-cucm-ssrf-cXPnHcW
MEDIUM: CVE-2026-20233: Cisco Webex Meetings Cross-Site Scripting Vulnerability https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-webex-xss-jw3NeQzS
MEDIUM: CVE-2026-20175: Cisco Finesse Remote File Inclusion Vulnerability https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-finesse-rfi-gwpkdc89 @TalosSecurity #infosec #Broadcom #vulnerability #Cisco
##updated 2026-06-04T13:53:09.797000
2 posts
🟠 CVE-2025-15656 - High (8.8)
Incorrect Privilege Assignment vulnerability in Mojoomla School Management allows Privilege Escalation.
This issue affects School Management: from n/a through 93.2.0.
🔗 https://www.thehackerwire.com/vulnerability/CVE-2025-15656/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##🟠 CVE-2025-15656 - High (8.8)
Incorrect Privilege Assignment vulnerability in Mojoomla School Management allows Privilege Escalation.
This issue affects School Management: from n/a through 93.2.0.
🔗 https://www.thehackerwire.com/vulnerability/CVE-2025-15656/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##updated 2026-06-04T13:53:09.797000
2 posts
🟠 CVE-2026-10737 - High (7.5)
The SP Project & Document Manager plugin for WordPress is vulnerable to unauthorized access due to a missing capability check on the view_file function in all versions up to, and including, 4.71. This makes it possible for unauthenticated attacker...
🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-10737/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##🟠 CVE-2026-10737 - High (7.5)
The SP Project & Document Manager plugin for WordPress is vulnerable to unauthorized access due to a missing capability check on the view_file function in all versions up to, and including, 4.71. This makes it possible for unauthenticated attacker...
🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-10737/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##updated 2026-06-04T13:53:09.797000
1 posts
🟠 CVE-2026-1829 - High (8.8)
The Content Visibility for Divi Builder plugin for WordPress is vulnerable to Remote Code Execution in all versions up to, and including, 4.02 via the 'et_pb_text' shortcode 'cvdb_content_visibility_check' parameter. This makes it possible for aut...
🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-1829/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##updated 2026-06-04T13:12:04.650000
1 posts
🟠 CVE-2026-7313 - High (8.7)
CWE‑522: Insufficiently Protected Credentials in web services in Progress Sitefinity version from 8.0.5700 to 13.3.7652 allows a remote authenticated attacker to obtain plain-text credentials used connect to Sitefinity Insight service. Successfu...
🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-7313/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##updated 2026-06-04T12:51:51.543000
1 posts
🟠 CVE-2026-7195 - High (8.8)
CWE-20: Improper Input Validation in web services in Progress Sitefinity 14.1.x through 14.3.x, 14.4.x before 14.4.8152, 15.0.x before 15.0.8234, 15.1.x before 15.1.8335, 15.2.x before 15.2.8441, 15.3.x before 15.3.8531, and 15.4.x before 15.4.863...
🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-7195/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##updated 2026-06-04T12:30:33
2 posts
https://access.redhat.com/security/cve/cve-2026-10840
##A flaw was found in the OpenShift Pipelines operator. The tekton-scheduler-rolebinding ClusterRoleBinding grants the system:authenticated group write access to Kueue and cert-manager custom resources via the tekton-scheduler-role ClusterRole. When Kueue or cert-manager CRDs are present on the cluster, any authenticated user can disrupt workload scheduling, tamper with scheduling priorities, delete other tenants' Workload objects, or induce cert-manager to overwrite TLS Secrets including the default ingress controller certificate.
https://access.redhat.com/security/cve/cve-2026-10840
##A flaw was found in the OpenShift Pipelines operator. The tekton-scheduler-rolebinding ClusterRoleBinding grants the system:authenticated group write access to Kueue and cert-manager custom resources via the tekton-scheduler-role ClusterRole. When Kueue or cert-manager CRDs are present on the cluster, any authenticated user can disrupt workload scheduling, tamper with scheduling priorities, delete other tenants' Workload objects, or induce cert-manager to overwrite TLS Secrets including the default ingress controller certificate.
updated 2026-06-04T12:30:33
1 posts
1 repos
CVE-2026-4104 - Critical SQLi in TeknoPass by Akmer Informatics. Authorization bypass via user-controlled SQL primary key. CVSS 9.8. No patch available. Block access or isolate affected systems immediately. #CVE #infosec #cybersecurity
##updated 2026-06-04T12:30:32
2 posts
🟠 CVE-2026-49771 - High (7.6)
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in 10Web Photo Gallery by 10Web allows Blind SQL Injection.
This issue affects Photo Gallery by 10Web: from n/a through 1.8.41.
🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-49771/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##🟠 CVE-2026-49771 - High (7.6)
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in 10Web Photo Gallery by 10Web allows Blind SQL Injection.
This issue affects Photo Gallery by 10Web: from n/a through 1.8.41.
🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-49771/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##updated 2026-06-04T03:30:28
3 posts
CVE-2026-41860 - Supply chain MITM in BOSH (CWE-326). Hard-coded SSL verify none allows credential theft and token hijacking. CVSS 8.8. No patch yet for all versions before v282.1.9. Update to v282.1.9+ immediately. #CVE #BOSH #infosec
##🟠 CVE-2026-41860 - High (8.8)
CWE-326 in BOSH allows a local attacker to steal Basic-auth credentials or redirect UAA token requests via MITM. HttpRequestHelper#create_async_endpoint and #send_http_get_request_synchronous hard-code OpenSSL::SSL::VERIFY_NONE, enabling an attack...
🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-41860/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##🟠 CVE-2026-41860 - High (8.8)
CWE-326 in BOSH allows a local attacker to steal Basic-auth credentials or redirect UAA token requests via MITM. HttpRequestHelper#create_async_endpoint and #send_http_get_request_synchronous hard-code OpenSSL::SSL::VERIFY_NONE, enabling an attack...
🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-41860/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##updated 2026-06-04T03:30:28
2 posts
🟠 CVE-2026-41859 - High (7.8)
A network man-in-the-middle between nats-sync and the BOSH director can steal the director credentials (Basic auth header or UAA client secret) and can tamper with the VM list that is written into the NATS authorization file. Stolen credentials gr...
🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-41859/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##🟠 CVE-2026-41859 - High (7.8)
A network man-in-the-middle between nats-sync and the BOSH director can steal the director credentials (Basic auth header or UAA client secret) and can tamper with the VM list that is written into the NATS authorization file. Stolen credentials gr...
🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-41859/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##updated 2026-06-04T03:30:28
2 posts
🟠 CVE-2026-41858 - High (7.5)
Weak Randomness / Insecure Cryptographic Primitive (CWE-338) in Get-RandomPassword in BOSH-Ecosystem / windows-utilities-release allows a network attacker to estimate VM boot time and reconstruct a small candidate list to recover the Administrator...
🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-41858/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##🟠 CVE-2026-41858 - High (7.5)
Weak Randomness / Insecure Cryptographic Primitive (CWE-338) in Get-RandomPassword in BOSH-Ecosystem / windows-utilities-release allows a network attacker to estimate VM boot time and reconstruct a small candidate list to recover the Administrator...
🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-41858/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##updated 2026-06-04T03:30:28
4 posts
🟠 CVE-2026-41011 - High (8.2)
PackagePersister.validate_tgz builds "tar -tf #{tgz} 2>&1" where tgz = File.join(release_dir, 'packages', "#{name}.tgz") and name = package_meta['name'] comes directly from release.MF inside the uploaded tarball. The string is passed to Bosh::Comm...
🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-41011/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##⚠️ CVE-2026-41011 (HIGH, 8.7): OS command injection in Cloud Foundry BOSH < v282.1.12 lets attackers execute arbitrary commands via package name input. Upgrade ASAP! Details: https://radar.offseq.com/threat/cve-2026-41011-cwe-78-improper-neutralization-of-s-1c5e8b82 #OffSeq #CloudFoundry #Infosec
##🟠 CVE-2026-41011 - High (8.2)
PackagePersister.validate_tgz builds "tar -tf #{tgz} 2>&1" where tgz = File.join(release_dir, 'packages', "#{name}.tgz") and name = package_meta['name'] comes directly from release.MF inside the uploaded tarball. The string is passed to Bosh::Comm...
🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-41011/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##⚠️ CVE-2026-41011 (HIGH, 8.7): OS command injection in Cloud Foundry BOSH < v282.1.12 lets attackers execute arbitrary commands via package name input. Upgrade ASAP! Details: https://radar.offseq.com/threat/cve-2026-41011-cwe-78-improper-neutralization-of-s-1c5e8b82 #OffSeq #CloudFoundry #Infosec
##updated 2026-06-03T21:30:29
1 posts
🔴 CVE-2026-36576 - Critical (9.8)
An OS command injection vulnerability in the app.py component of openlabs docker-wkhtmltopdf-aas up to commit 9f50579 allows attackers to execute arbitrary commands via a crafted POST request.
🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-36576/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##updated 2026-06-03T21:30:29
1 posts
1 repos
🔴 CVE-2026-36748 - Critical (9)
RockRMS v16.13 and before v.17.7.0 is vulnerable to Cross Site Scripting (XSS) via Social Media links in user profile.
🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-36748/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##updated 2026-06-03T21:30:28
2 posts
🟠 CVE-2026-10701 - High (7.5)
Incorrect boundary conditions in the Graphics: Text component. This vulnerability was fixed in Firefox 151.0.3.
🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-10701/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##🟠 CVE-2026-10701 - High (7.5)
Incorrect boundary conditions in the Graphics: Text component. This vulnerability was fixed in Firefox 151.0.3.
🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-10701/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##updated 2026-06-03T21:30:25
8 posts
1 repos
CISA Warns of Exploited Magento Extension Flaw
A critical flaw in the Mirasvit Full Page Cache Warmer Magento extension, tracked as CVE-2026-45247, has been exploited by hackers, allowing them to execute remote code without authentication. This vulnerability, rated 9.8 on the CVSS scale, enables attackers to wreak havoc by supplying a malicious PHP object in the CacheWarmer…
#MagentoExtensionFlaw #Cve202645247 #DeserializationVulnerability #RemoteCodeExecution #Cisa
##CISA Adds Exploited Magento RCE Flaw CVE-2026-45247 to KEV Catalog
**Critical Alert:** A severe vulnerability (CVE-2026-45247) has been identified and requires immediate attention from security teams worldwide.
## The Details
Resources: https://securitycyber.uk | https://www.hackthebox.com
##CISA stuft Magento-Lücke CVE-2026-45247 als aktiv ausgenutzt ein
Für Shop-Betreiber, die den Patch noch nicht eingespielt haben, zählt jetzt jede Stunde.
https://www.all-about-security.de/cisa-stuft-magento-luecke-cve-2026-45247-als-aktiv-ausgenutzt-ein/
##CISA Adds Exploited Magento RCE Flaw CVE-2026-45247 to KEV Catalog
**Critical Alert:** A severe vulnerability (CVE-2026-45247) has been identified and requires immediate attention from security teams worldwide.
## The Details
Resources: https://securitycyber.uk | https://www.hackthebox.com
##🚨 [CISA-2026:0603] CISA Adds One Known Exploited Vulnerability to Catalog (https://secdb.nttzen.cloud/security-advisory/detail/CISA-2026:0603)
CISA has added one new vulnerability to its Known Exploited Vulnerabilities Catalog, based on evidence of active exploitation. These types of vulnerabilities are a frequent attack vector for malicious cyber actors and pose significant risk to the federal enterprise.
⚠️ CVE-2026-45247 (https://secdb.nttzen.cloud/cve/detail/CVE-2026-45247)
- Name: Mirasvit Full Page Cache Warmer Deserialization of Untrusted Data Vulnerability
- Action: Apply mitigations per vendor instructions, follow applicable BOD 22-01 guidance for cloud services, or discontinue use of the product if mitigations are unavailable.
- Known To Be Used in Ransomware Campaigns? Unknown
- Vendor: Mirasvit
- Product: Mirasvit Full Page Cache Warmer
- Notes: https://mirasvit.com/package/changelog/?package=mirasvit/module-cache-warmer ; https://nvd.nist.gov/vuln/detail/CVE-2026-45247
#ZEN #SecDB #InfoSec #CVE #CISA_KEV #cisa_20260603 #cisa20260603 #cve_2026_45247 #cve202645247
##🏛️ Mirasvit Full Page Cache Warmer Vulnerability Added to Catalog
📝 CVE-2026-45247 vulnerability added to CISA's KEV Catalog, posing significant risks.
📰 Alerts
##CVE ID: CVE-2026-45247
Vendor: Mirasvit
Product: Mirasvit Full Page Cache Warmer
Date Added: 2026-06-03
CVE URL: https://nvd.nist.gov/vuln/detail/CVE-2026-45247
CISA has added to the KEV catalogue.
- CVE-2026-45247: Mirasvit Full Page Cache Warmer Deserialization of Untrusted Data Vulnerability https://www.cve.org/CVERecord?id=CVE-2026-45247 #CISA #infosec #vulnerability
##updated 2026-06-03T21:05:18
1 posts
🟠 CVE-2026-42342 - High (7.5)
React Router is a router for React. In versions 7.0.0 through 7.14.x of react-router and versions 2.10.0 through 2.17.4 of @remix-run/server-runtime, certain crafted requests can consume disproportionate server resources via unbounded path expansi...
🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-42342/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##updated 2026-06-03T21:03:33
1 posts
🟠 CVE-2026-42211 - High (8.1)
React Router is a router for React. In versions 7.0.0 through 7.14.1, when using Framework Mode, a combination of steps could potentially allow unauthorized remote code execution (RCE) through external requests. This attack requires the applicatio...
🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-42211/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##updated 2026-06-03T19:16:25.790000
2 posts
🟠 CVE-2026-30652 - High (8.8)
A remote buffer overflow vulnerability exists in the /cgi-bin/dido/setdo.cgi endpoint of the admin interface of Vivotek FD8136 cameras running firmware version FD8136-VVTK-0300a. This flaw allows an authenticated attacker to execute arbitrary code...
🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-30652/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##🟠 CVE-2026-30652 - High (8.8)
A remote buffer overflow vulnerability exists in the /cgi-bin/dido/setdo.cgi endpoint of the admin interface of Vivotek FD8136 cameras running firmware version FD8136-VVTK-0300a. This flaw allows an authenticated attacker to execute arbitrary code...
🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-30652/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##updated 2026-06-03T18:34:14
2 posts
🔴 CVE-2026-38967 - Critical (9.8)
CrowCpp Crow through v1.3.1 HTTP is vulnerable to response header injection via unvalidated response header values.
🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-38967/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##🔴 CVE-2026-38967 - Critical (9.8)
CrowCpp Crow through v1.3.1 HTTP is vulnerable to response header injection via unvalidated response header values.
🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-38967/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##updated 2026-06-03T18:34:14
2 posts
🟠 CVE-2026-42504 - High (7.5)
Decoding a maliciously-crafted MIME header containing many invalid encoded-words can consume excessive CPU.
🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-42504/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##🟠 CVE-2026-42504 - High (7.5)
Decoding a maliciously-crafted MIME header containing many invalid encoded-words can consume excessive CPU.
🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-42504/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##updated 2026-06-03T18:33:08
2 posts
🟠 CVE-2026-30650 - High (8.8)
A post-authentication remote buffer overflow vulnerability exists in the /cgi-bin/admin/eventtask.cgi endpoint of the admin interface of Vivotek FD8136 cameras running firmware version FD8136-VVTK-0300a. This flaw allows an authenticated attacker ...
🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-30650/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##🟠 CVE-2026-30650 - High (8.8)
A post-authentication remote buffer overflow vulnerability exists in the /cgi-bin/admin/eventtask.cgi endpoint of the admin interface of Vivotek FD8136 cameras running firmware version FD8136-VVTK-0300a. This flaw allows an authenticated attacker ...
🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-30650/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##updated 2026-06-03T17:16:35.563000
1 posts
🟠 CVE-2026-37228 - High (7.5)
FlexRIC v2.0.0 contains a reachable assertion in e2ap_recv_sctp_msg() (src/lib/ep/e2ap_ep.c). The function allocates a fixed 32KB receive buffer and enforces assert(rc < len) on the sctp_recvmsg() return value. A remote unauthenticated attacker ca...
🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-37228/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##updated 2026-06-03T17:16:30.170000
1 posts
🟠 CVE-2026-37229 - High (7.5)
FlexRIC v2.0.0 contains a reachable assertion in e2ap_create_pdu() triggered when ASN.1 PER decoding fails. A remote unauthenticated attacker can send any non-PER byte sequence (e.g., a single 0x00 byte) over SCTP to the near-RT RIC (port 36421) o...
🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-37229/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##updated 2026-06-03T15:30:55
1 posts
🟠 CVE-2026-5241 - High (8)
A vulnerability in the LightGlue model loading path of huggingface/transformers version 5.2.0 allows an attacker-controlled model repository to execute arbitrary code during model initialization. The issue arises because the `trust_remote_code` pa...
🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-5241/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##updated 2026-06-03T15:30:54
2 posts
🟠 CVE-2026-35083 - High (8.8)
A remote attacker with user privileges can exploit a stack buffer overflow to gain full system access as root.
🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-35083/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##🟠 CVE-2026-35083 - High (8.8)
A remote attacker with user privileges can exploit a stack buffer overflow to gain full system access as root.
🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-35083/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##updated 2026-06-03T15:30:54
2 posts
🟠 CVE-2026-35082 - High (8.8)
The ugw-logread method allows a remote attacker with user privileges to access arbitrary local files due to insufficient validation of user-supplied input.
🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-35082/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##🟠 CVE-2026-35082 - High (8.8)
The ugw-logread method allows a remote attacker with user privileges to access arbitrary local files due to insufficient validation of user-supplied input.
🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-35082/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##updated 2026-06-03T15:30:54
1 posts
🟠 CVE-2026-35084 - High (8.8)
A remote attacker with user privileges can exploit a stack buffer overflow in dali-devconfig to gain full system access as root.
🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-35084/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##updated 2026-06-03T15:30:49
2 posts
🟠 CVE-2026-35076 - High (8.1)
The bac-scanresult method allows a remote attacker with user privileges to delete arbitrary local files due to insufficient validation of user-controlled input.
🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-35076/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##🟠 CVE-2026-35076 - High (8.1)
The bac-scanresult method allows a remote attacker with user privileges to delete arbitrary local files due to insufficient validation of user-controlled input.
🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-35076/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##updated 2026-06-03T15:30:42
1 posts
🟠 CVE-2026-35079 - High (8.1)
The ugw-restore method allows a remote attacker with user privileges to delete arbitrary local files due to insufficient validation of user-controlled input.
🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-35079/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##updated 2026-06-03T13:41:57.493000
1 posts
🟠 CVE-2026-0096 - High (7.8)
In getAppLabel of ForgetDeviceDialogFragment.java, there is a possible trick the user into forgetting a device due to misleading or insufficient UI. This could lead to local escalation of privilege with no additional execution privileges needed. U...
🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-0096/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##updated 2026-06-03T13:35:12.330000
1 posts
🟠 CVE-2026-28580 - High (7.8)
In multiple functions, there is a possible desync in persistence due to an incorrect bounds check. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.
🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-28580/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##updated 2026-06-03T12:30:33
2 posts
🔴 CVE-2025-14771 - Critical (9.9)
Files or directories accessible to external parties vulnerability in ABB T-MAC Plus.
This issue affects T-MAC Plus: 4.0-24.
🔗 https://www.thehackerwire.com/vulnerability/CVE-2025-14771/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##🔴 CVE-2025-14771 - Critical (9.9)
Files or directories accessible to external parties vulnerability in ABB T-MAC Plus.
This issue affects T-MAC Plus: 4.0-24.
🔗 https://www.thehackerwire.com/vulnerability/CVE-2025-14771/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##updated 2026-06-03T12:30:33
2 posts
🟠 CVE-2025-14772 - High (8.8)
Authorization bypass through User-Controlled key vulnerability in ABB T-MAC Plus.
This issue affects T-MAC Plus: 4.0-24.
🔗 https://www.thehackerwire.com/vulnerability/CVE-2025-14772/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##🟠 CVE-2025-14772 - High (8.8)
Authorization bypass through User-Controlled key vulnerability in ABB T-MAC Plus.
This issue affects T-MAC Plus: 4.0-24.
🔗 https://www.thehackerwire.com/vulnerability/CVE-2025-14772/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##updated 2026-06-03T12:30:33
2 posts
🔴 CVE-2026-47065 - Critical (9.8)
ZDRES-232: resolveProxyClass Not Overridden - acceptMatchers Filter Bypass via java.lang.reflect.Proxy
Assessment: Fully addressed.
When the serialised stream contains a TC_PROXYCLASSDESC (the marker
for a java.lang.reflect.Proxy ), JDK’s O...
🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-47065/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##🔴 CVE-2026-47065 - Critical (9.8)
ZDRES-232: resolveProxyClass Not Overridden - acceptMatchers Filter Bypass via java.lang.reflect.Proxy
Assessment: Fully addressed.
When the serialised stream contains a TC_PROXYCLASSDESC (the marker
for a java.lang.reflect.Proxy ), JDK’s O...
🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-47065/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##updated 2026-06-03T12:30:33
2 posts
🟠 CVE-2026-41032 - High (7.5)
It is possible for an unauthenticated adjacent attacker to download log files of the controller, which may disclose some restricted information.
🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-41032/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##🟠 CVE-2026-41032 - High (7.5)
It is possible for an unauthenticated adjacent attacker to download log files of the controller, which may disclose some restricted information.
🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-41032/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##updated 2026-06-03T12:30:33
2 posts
🟠 CVE-2025-15655 - High (7.6)
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Mojoomla School Management allows SQL Injection.
This issue affects School Management: from n/a through 93.2.0.
🔗 https://www.thehackerwire.com/vulnerability/CVE-2025-15655/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##🟠 CVE-2025-15655 - High (7.6)
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Mojoomla School Management allows SQL Injection.
This issue affects School Management: from n/a through 93.2.0.
🔗 https://www.thehackerwire.com/vulnerability/CVE-2025-15655/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##updated 2026-06-03T09:30:38
3 posts
🔴 CVE-2026-4035 - Critical (9.1)
A vulnerability in mlflow/mlflow versions prior to 3.11.0 allows for the resolution of environment variables in AI Gateway secrets, which can be exploited to exfiltrate sensitive server-side environment credentials to an attacker-controlled endpoi...
🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-4035/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##🔴 CVE-2026-4035 - Critical (9.1)
A vulnerability in mlflow/mlflow versions prior to 3.11.0 allows for the resolution of environment variables in AI Gateway secrets, which can be exploited to exfiltrate sensitive server-side environment credentials to an attacker-controlled endpoi...
🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-4035/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##⚠️ CRITICAL: CVE-2026-4035 in mlflow/mlflow (<3.11.0) allows exfiltration of sensitive env creds via AI Gateway secrets. Impacts cloud artifact keys — risk of artifact poisoning & code exec. Update to 3.11.0. Details: https://radar.offseq.com/threat/cve-2026-4035-cwe-201-insertion-of-sensitive-infor-704b6815 #OffSeq #CVE20264035 #CloudSec
##updated 2026-06-03T06:31:36
1 posts
🟠 CVE-2026-50031 - High (7.5)
ipmi-oem in FreeIPMI before 1.16.18 has exploitable buffer overflows on response messages. The Intelligent Platform Management Interface (IPMI) specification defines a set of interfaces for platform management. It is implemented by a large number ...
🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-50031/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##updated 2026-06-02T21:31:46
2 posts
🔴 CVE-2026-10629 - Critical (9.1)
SIP signaling stack in Verizon IMS (unspecified version) implements SIP signaling without IPsec integrity protection (missing Security-Client/Security-Server headers and ESP traffic), which allows an on-path attacker to compromise confidentiality,...
🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-10629/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##:dumpster_fire_gif: :blobcatpopcorn: :dumpster_fire_gif:
https://www.kb.cert.org/vuls/id/615987
##CVE-2026-10629
Verizon IMS deployments were observed transmitting SIP signaling without integrity protection. REGISTER exchanges lacked Security-Client, Security-Server, and Security-Verify headers, and no ESP-encapsulated SIP traffic was detected during subsequent signaling such as INVITE, MESSAGE, BYE, and UPDATE. This pattern persisted across devices, operating systems, and network conditions, indicating a deliberate network configuration rather than a transient issue.Per 3GPP TS 33.203 and GSMA IR.92, SIP signaling between the UE and P-CSCF must be protected using IPsec ESP following IMS AKA authentication, with negotiation occurring during registration. The absence of this protection allows attackers to manipulate SIP signaling undetected, enabling call hijacking, spoofing, denial-of-service, and misrouting of emergency calls.
Verizon initially acknowledged the issue and stated that integrity support would be available upon request and extended broadly later in the year. However, the company has since ceased participation in coordination, including follow-up discussions and draft review, and has not provided verifiable evidence of mitigation. As remediation remains unconfirmed, this disclosure proceeds to inform users of an ongoing security exposure.
Independent verification would require observation of successful SIP security negotiation, ESP-protected traffic, or official confirmation from Verizon.
updated 2026-06-02T21:31:45
1 posts
🟠 CVE-2026-10622 - High (8.2)
Improper Authentication in REST API in Collibra Agent, allows a remote unauthenticated attacker to access privileged functionality via exposed '/rest/* endpoints.
🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-10622/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##updated 2026-06-02T21:31:45
1 posts
🟠 CVE-2026-10621 - High (7.5)
Path traversal in restore handler in Collibra Agent, allows an attacker to write arbitrary files via a crafted ZIP archive. Collibra Agent fails to properly validate and canonicalize file path during ZIP extraction, this can allow an attacker to w...
🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-10621/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##updated 2026-06-02T21:30:50
2 posts
Tenable Research Advisories added this yesterday:
HIGH: CVE-2026-28299: SolarWinds Web Help Desk Unauthenticated File Upload https://www.tenable.com/security/research/tra-2026-48 @tenable #infosec #vulnerability
##🟠 CVE-2026-28299 - High (8.2)
SolarWinds Web Help Desk is found to be affected by a denial-of-service vulnerability, which when exploited, could cause the Web Help Desk server to crash due to insufficient memory.
🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-28299/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##updated 2026-06-02T21:30:50
1 posts
🟠 CVE-2026-49120 - High (8.5)
Medplum before 5.1.14 contains a server-side request forgery vulnerability in the subscription worker that allows authenticated users to perform unauthorized internal network requests by creating FHIR Subscription resources with arbitrary endpoint...
🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-49120/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##updated 2026-06-02T20:56:20.057000
1 posts
1 repos
🔴 CVE-2026-5076 - Critical (9.8)
The ARMember Premium plugin for WordPress is vulnerable to an insecure password reset mechanism in all versions up to, and including, 7.3.1. The plugin stores a plaintext copy of the password reset key in the `arm_reset_password_key` user meta fie...
🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-5076/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##updated 2026-06-02T20:56:20.057000
1 posts
🟠 CVE-2026-5073 - High (7.5)
The ARMember Premium plugin for WordPress is vulnerable to SQL Injection via the 'order' parameter of the 'arm_directory_paging_action' AJAX action in all versions up to, and including, 7.3.1. This is due to insufficient escaping on the user-suppl...
🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-5073/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##updated 2026-06-02T20:19:29.653000
16 posts
1 repos
⚠️ CRITICAL: Google June 2026 Android Update Patches 124 Flaws, One Actively Exploited
Google patched 124 Android vulnerabilities in June 2026, including CVE-2025-48595, a high-severity privilege escalation flaw (CVSS 8.4) in the Framework component that is actively exploited in the wild. The vulnerability affects Android 14, 15, 16, and 16 QPR2, allowing code execution through integ…
##Recent reports highlight escalating geopolitical tensions, particularly fresh US and Iranian strikes, prompting the US House to approve a resolution limiting military action. Concurrently, France has restricted Israeli participation at the Eurosatory 2026 defense exhibition.
In technology, Microsoft Build 2026 introduced advanced AI, including the MAI-Thinking-1 model and Copilot Agent Mode. However, GitHub Copilot's new token billing system is causing significant cost increases for users.
On the cybersecurity front, Google has patched an actively exploited high-severity Android flaw (CVE-2025-48595). Additionally, Russian maritime entities have been targeted by hackers, and the FBI warns of the Kali365 Phishing-as-a-Service platform.
##⚪️ Android patches 124 vulnerabilities, including a 0‑day under active attack
🗨️ The June Android update bundle includes fixes for 124 vulnerabilities. Among them is the already-exploited issue CVE-2025-48595, which affects Android 14, 15, 16, and 16 QPR2 and allows privilege escalation on the device without any user interaction. The 0-day vulnerability…
##⚠️ CRITICAL: Google June 2026 Android Update Patches 124 Flaws, One Actively Exploited
Google patched 124 Android vulnerabilities in June 2026, including CVE-2025-48595, a high-severity privilege escalation flaw (CVSS 8.4) in the Framework component that is actively exploited in the wild. The vulnerability affects Android 14, 15, 16, and 16 QPR2, allowing code execution through integ…
##Recent reports highlight escalating geopolitical tensions, particularly fresh US and Iranian strikes, prompting the US House to approve a resolution limiting military action. Concurrently, France has restricted Israeli participation at the Eurosatory 2026 defense exhibition.
In technology, Microsoft Build 2026 introduced advanced AI, including the MAI-Thinking-1 model and Copilot Agent Mode. However, GitHub Copilot's new token billing system is causing significant cost increases for users.
On the cybersecurity front, Google has patched an actively exploited high-severity Android flaw (CVE-2025-48595). Additionally, Russian maritime entities have been targeted by hackers, and the FBI warns of the Kali365 Phishing-as-a-Service platform.
##⚪️ Android patches 124 vulnerabilities, including a 0‑day under active attack
🗨️ The June Android update bundle includes fixes for 124 vulnerabilities. Among them is the already-exploited issue CVE-2025-48595, which affects Android 14, 15, 16, and 16 QPR2 and allows privilege escalation on the device without any user interaction. The 0-day vulnerability…
##Aggiornamenti Android giugno 2026: corretta una zero-day già sfruttata in attacchi mirati
Google rilascia il bollettino di sicurezza Android per il mese di giugno 2026 con patch per 124 vulnerabilità, tra cui la zero-day CVE-2025-48595...
🔗️ [Cybersecurity360] https://link.is.it/fQgerZ
##Google Patches Android Zero-Day CVE-2025-48595 Exploited in Targeted Attacks
Google has released its June 2026 Android security update, addressing 124 vulnerabilities, including one actively exploited zero-day. The zero-day —
🔗️ [Thecyberexpress] https://link.is.it/nMTbDs
##Google Android security bulletin for June 2026 Patches Over 100 Flaws, Including One Actively Exploited Vulnerability
Google's June 2026 Android Security Bulletin addresses 122 vulnerabilities with 18 critical flaws and one high-severity zero-day (CVE-2025-48595) confirmed to be under active, targeted exploitation.
**This month a bunch of critical flaws including one actively exploited and a huge list of patches. Most users can't rush the patch because their vendors may not have released an updated version of Android for their devices. Once you get a notification that an update is available for your phone, do not delay the update.**
#cybersecurity #infosec #advisory #vulnerability
https://beyondmachines.net/event_details/google-android-security-bulletin-for-june-2026-patches-over-100-flaws-including-actively-exploited-framework-vulnerability-4-2-k-0-f/gD2P6Ple2L
Google June 2026 Android Update Patches 124 Flaws, One Actively Exploited
**Critical Alert:** A severe vulnerability (CVE-2025-48595) has been identified and requires immediate attention from security teams worldwide.
## The Details
Resources: https://securitycyber.uk | https://www.hackthebox.com
##🚨 [CISA-2026:0602] CISA Adds 2 Known Exploited Vulnerabilities to Catalog (https://secdb.nttzen.cloud/security-advisory/detail/CISA-2026:0602)
CISA has added 2 new vulnerabilities to its Known Exploited Vulnerabilities Catalog, based on evidence of active exploitation. These types of vulnerabilities are a frequent attack vector for malicious cyber actors and pose significant risk to the federal enterprise.
⚠️ CVE-2022-0492 (https://secdb.nttzen.cloud/cve/detail/CVE-2022-0492)
- Name: Linux Kernel Improper Authentication Vulnerability
- Action: Apply mitigations per vendor instructions, follow applicable BOD 22-01 guidance for cloud services, or discontinue use of the product if mitigations are unavailable.
- Known To Be Used in Ransomware Campaigns? Unknown
- Vendor: Linux
- Product: Kernel
- Notes: This vulnerability affects a common open-source component, third-party library, or a protocol used by different products. Please check with specific vendors for information on patching status. For more information, please see: https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?id=24f6008564183aa120d07c03d9289519c2fe02af ; https://www.kernel.org/ ; https://nvd.nist.gov/vuln/detail/CVE-2022-0492
⚠️ CVE-2025-48595 (https://secdb.nttzen.cloud/cve/detail/CVE-2025-48595)
- Name: Android Framework Integer Overflow Vulnerability
- Action: Apply mitigations per vendor instructions, follow applicable BOD 22-01 guidance for cloud services, or discontinue use of the product if mitigations are unavailable.
- Known To Be Used in Ransomware Campaigns? Unknown
- Vendor: Android
- Product: Framework
- Notes: https://source.android.com/docs/security/bulletin/2026/2026-06-01 ; https://nvd.nist.gov/vuln/detail/CVE-2025-48595
#ZEN #SecDB #InfoSec #CVE #CISA_KEV #cisa_20260602 #cisa20260602 #cve_2022_0492 #cve_2025_48595 #cve20220492 #cve202548595
##CISA has added to the KEV catalogue.
CVE-2025-48595: Android Framework Integer Overflow Vulnerability https://www.cve.org/CVERecord?id=CVE-2025-48595
CVE-2022-0492: Linux Kernel Improper Authentication Vulnerability https://www.cve.org/CVERecord?id=CVE-2022-0492 #CISA #infosec #Linux #Android #vulnerability
##CVE ID: CVE-2025-48595
Vendor: Android
Product: Framework
Date Added: 2026-06-02
CVE URL: https://nvd.nist.gov/vuln/detail/CVE-2025-48595
Google disclosed CVE-2025-48595 to OEMs in a security preview release near the end of September 2025. Those patches are allowed to be shipped right away, so it was included in our 2025092501 release. We noted it was already publicly fixed so it was added to our regular releases too in 2025100300.
##June 2026 Android Security Bulletin notes CVE-2025-48595 is being exploited in the wild. It's being widely misreported in tech media as a 0-day vulnerability being exploited. That's a major misunderstanding of Android Security Bulletins and how poorly OEMs keep up with patches.
##updated 2026-06-02T20:16:31.633000
1 posts
🔴 CVE-2026-0611 - Critical (9.8)
Spacelabs Healthcare Sentinel versions 10.5.x and higher and 11.x.x before 11.6.0 contain an unauthenticated remote code execution vulnerability through a deprecated .NET Remoting HTTP channel exposed on port 8989 that allows attackers to perform ...
🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-0611/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##updated 2026-06-02T18:32:35
1 posts
🟠 CVE-2026-37226 - High (7.5)
FlexRIC v2.0.0 crashes when the iApp receives an E42_RIC_SUBSCRIPTION_REQUEST referencing a non-existent E2 Node. The lookup function returns NULL, which is enforced by assert() in Debug builds (SIGABRT) and dereferenced in Release builds (SIGSEGV...
🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-37226/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##updated 2026-06-02T18:31:43
1 posts
🟠 CVE-2026-40715 - High (7.8)
Dell ThinOS 10, versions prior to ThinOS10 2602_10.0765, contain an Improper Access Control vulnerability. A low privileged attacker with local access could potentially exploit this vulnerability, leading to Privilege Escalation.
🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-40715/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##updated 2026-06-02T18:31:38
1 posts
🟠 CVE-2026-40619 - High (7.8)
A high security vulnerability affecting Security Center main server installations has been identified. It could allow an attacker with local OS privileges to the main server to access the Server Admin credentials. A third party hired by Genetec fo...
🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-40619/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##updated 2026-06-02T18:31:38
1 posts
🟠 CVE-2026-24237 - High (7.8)
NVIDIA NVTabular contains a vulnerability where an attacker could cause improper deserialization of untrusted data. A successful exploit of this vulnerability might lead to code execution, data tampering, and information disclosure.
🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-24237/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##updated 2026-06-02T18:31:32
1 posts
🟠 CVE-2026-40780 - High (7.5)
Authentication Bypass Using an Alternate Path or Channel vulnerability in Liquid Web / StellarWP BookIt allows Password Recovery Exploitation.
This issue affects BookIt: from n/a before 2.5.4.1.
🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-40780/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##updated 2026-06-02T18:31:31
1 posts
🟠 CVE-2026-42670 - High (7.5)
Missing Authorization vulnerability in Etoile Web Design Incorporated Five Star Restaurant Reservations allows Exploiting Incorrectly Configured Access Control Security Levels.
This issue affects Five Star Restaurant Reservations: from n/a throug...
🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-42670/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##updated 2026-06-02T17:19:15.030000
1 posts
🟠 CVE-2026-24221 - High (7.8)
NVIDIA NVTabular contains a vulnerability where an attacker could cause improper deserialization of untrusted data. A successful exploit of this vulnerability might lead to code execution, data tampering and information disclosure.
🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-24221/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##updated 2026-06-02T17:18:50.850000
1 posts
🟠 CVE-2026-10591 - High (8.8)
Insufficient access control restrictions in the file write tool in Amazon Kiro IDE before version 0.11 might allow remote unauthenticated actors to execute arbitrary commands via crafted instructions that cause writes to execution-sensitive paths ...
🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-10591/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##updated 2026-06-02T17:18:19.573000
1 posts
🔴 CVE-2026-47117 - Critical (9.8)
OpenMed before 1.5.2 contains a remote code execution vulnerability in the PII privacy-filter model loading path. The privacy-filter dispatcher used broad substring matching on the user-supplied model_name parameter, allowing a value such as attac...
🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-47117/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##updated 2026-06-02T17:15:44.040000
1 posts
🟠 CVE-2026-45553 - High (7.5)
NiceGUI is a Python-based UI framework. Prior to version 3.12.0, ui.restructured_text() renders reStructuredText server-side with Docutils without disabling file insertion directives. When a NiceGUI application passes attacker-controlled content t...
🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-45553/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##updated 2026-06-02T15:32:20
1 posts
🟠 CVE-2026-39553 - High (8.1)
Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion') vulnerability in Select-Themes WaveRide allows PHP Local File Inclusion.
This issue affects WaveRide: from n/a through 1.4.
🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-39553/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##updated 2026-06-02T15:32:20
1 posts
🟠 CVE-2026-39552 - High (8.1)
Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion') vulnerability in Code Supply Co. Blueprint allows PHP Local File Inclusion.
This issue affects Blueprint: from n/a before 1.1.5.
🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-39552/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##updated 2026-06-02T15:32:20
1 posts
🟠 CVE-2026-7201 - High (8.8)
CWE-639: Authorization Bypass Through User-Controlled Key in web services in Progress Sitefinity 15.2.x before 15.2.8441, 15.3.x before 15.3.8531, and 15.4.x before 15.4.8630 allows a remote authenticated attacker to modify account properties of o...
🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-7201/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##updated 2026-06-02T15:32:20
1 posts
🔴 CVE-2026-7198 - Critical (9.8)
CWE-284: Improper Access Control in web services in Progress Sitefinity 15.4.8623 before 15.4.8630 allows a remote unauthenticated attacker to access content that should be restricted, resulting in full compromise of confidentiality, integrity, an...
🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-7198/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##updated 2026-06-02T15:32:12
1 posts
🟠 CVE-2025-68886 - High (8.1)
Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion') vulnerability in androThemes Cookiteer allows PHP Local File Inclusion.
This issue affects Cookiteer: from n/a through 1.4.8.
🔗 https://www.thehackerwire.com/vulnerability/CVE-2025-68886/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##updated 2026-06-02T15:32:11
1 posts
🟠 CVE-2025-58707 - High (8.1)
Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion') vulnerability in Axiomthemes Spin allows PHP Local File Inclusion.
This issue affects Spin: from n/a through 1.8.
🔗 https://www.thehackerwire.com/vulnerability/CVE-2025-58707/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##updated 2026-06-02T15:32:07
1 posts
🛡️ CVE-2026-10510: HIGH severity XSS in TECNO Mobile AI Assistant Lifestyle (v1.3.0.002). Remote JS execution via GeniexWebView; no patch yet. Monitor vendor updates & avoid untrusted links. https://radar.offseq.com/threat/cve-2026-10510-cwe-79-improper-neutralization-of-i-501798a2 #OffSeq #Android #XSS #Vuln
##updated 2026-06-02T14:43:49.920000
1 posts
🟠 CVE-2025-58897 - High (8.1)
Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion') vulnerability in Axiomthemes Fermentio allows PHP Local File Inclusion.
This issue affects Fermentio: from n/a through 1.5.0.
🔗 https://www.thehackerwire.com/vulnerability/CVE-2025-58897/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##updated 2026-06-02T14:43:49.920000
1 posts
🟠 CVE-2025-69369 - High (8.1)
Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion') vulnerability in Axiomthemes Racquet allows PHP Local File Inclusion.
This issue affects Racquet: from n/a through 1.12.0.
🔗 https://www.thehackerwire.com/vulnerability/CVE-2025-69369/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##updated 2026-06-02T14:43:49.920000
1 posts
🟠 CVE-2026-39555 - High (8.1)
Deserialization of Untrusted Data vulnerability in Elated-Themes Askka allows Object Injection.
This issue affects Askka: from n/a through 1.3.1.
🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-39555/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##updated 2026-06-02T14:43:49.920000
1 posts
🔎 HIGH severity: CVE-2026-8293 in Really Simple Security WP plugin (<9.5.10.1) allows 2FA bypass via REST endpoints if password is known. Update to 9.5.10.1+ or disable affected endpoints. https://radar.offseq.com/threat/cve-2026-8293-cwe-287-improper-authentication-in-r-fe9aba14 #OffSeq #WordPress #CVE20268293 #Security
##updated 2026-06-02T13:54:55.990000
1 posts
🚨 CRITICAL: CVE-2026-34906 in Simple SA Wirtualna Uczelnia enables unauthenticated RCE via SSTI in redirectToUrl. No patch yet — restrict access & monitor for exploitation. https://radar.offseq.com/threat/cve-2026-34906-cwe-1336-improper-neutralization-of-6a6ef566 #OffSeq #CVE202634906 #infosec #RCE
##updated 2026-06-02T13:03:31.153000
2 posts
🔴 CVE-2025-53209 - Critical (9.8)
Incorrect Privilege Assignment vulnerability in Themeisle Masteriyo LMS PRO allows Privilege Escalation.
This issue affects Masteriyo LMS PRO: from n/a through 2.20.0.
🔗 https://www.thehackerwire.com/vulnerability/CVE-2025-53209/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##🔴 CVE-2025-53209 - Critical (9.8)
Incorrect Privilege Assignment vulnerability in Themeisle Masteriyo LMS PRO allows Privilege Escalation.
This issue affects Masteriyo LMS PRO: from n/a through 2.20.0.
🔗 https://www.thehackerwire.com/vulnerability/CVE-2025-53209/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##updated 2026-06-02T13:03:31.153000
1 posts
🟠 CVE-2026-39551 - High (8.1)
Deserialization of Untrusted Data vulnerability in Elated-Themes Töbel allows Object Injection.
This issue affects Töbel: from n/a through 1.8.1.
🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-39551/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##updated 2026-06-02T12:31:33
1 posts
🔴 CVE-2026-42684 - Critical (9.3)
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Ahmad WP Job Portal allows Blind SQL Injection.
This issue affects WP Job Portal: from n/a through 2.5.1.
🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-42684/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##updated 2026-06-02T12:31:32
2 posts
🟠 CVE-2025-53345 - High (8.8)
Missing Authorization vulnerability leading to code execution after installing malicious vulnerable plugin in ThimPress Thim Core.
This issue affects Thim Core: from n/a through 2.3.3.
🔗 https://www.thehackerwire.com/vulnerability/CVE-2025-53345/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##🟠 CVE-2025-53345 - High (8.8)
Missing Authorization vulnerability leading to code execution after installing malicious vulnerable plugin in ThimPress Thim Core.
This issue affects Thim Core: from n/a through 2.3.3.
🔗 https://www.thehackerwire.com/vulnerability/CVE-2025-53345/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##updated 2026-06-02T12:31:32
2 posts
🟠 CVE-2025-58705 - High (8.1)
Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion') vulnerability in Axiomthemes Crafti allows PHP Local File Inclusion.
This issue affects Crafti: from n/a through 1.12.
🔗 https://www.thehackerwire.com/vulnerability/CVE-2025-58705/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##🟠 CVE-2025-58705 - High (8.1)
Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion') vulnerability in Axiomthemes Crafti allows PHP Local File Inclusion.
This issue affects Crafti: from n/a through 1.12.
🔗 https://www.thehackerwire.com/vulnerability/CVE-2025-58705/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##updated 2026-06-02T12:31:32
2 posts
🟠 CVE-2025-58024 - High (7.5)
Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion') vulnerability in UnboundStudio Accordion FAQ allows PHP Local File Inclusion.
This issue affects Accordion FAQ: from n/a through 2.2.1.
🔗 https://www.thehackerwire.com/vulnerability/CVE-2025-58024/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##🟠 CVE-2025-58024 - High (7.5)
Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion') vulnerability in UnboundStudio Accordion FAQ allows PHP Local File Inclusion.
This issue affects Accordion FAQ: from n/a through 2.2.1.
🔗 https://www.thehackerwire.com/vulnerability/CVE-2025-58024/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##updated 2026-06-02T12:31:32
1 posts
🟠 CVE-2025-53440 - High (8.1)
Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion') vulnerability in Axiomthemes Confidant allows PHP Local File Inclusion.
This issue affects Confidant: from n/a through 1.4.
🔗 https://www.thehackerwire.com/vulnerability/CVE-2025-53440/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##updated 2026-06-02T12:31:32
1 posts
🟠 CVE-2026-42669 - High (7.5)
Missing Authorization vulnerability in EventPrime allows Exploiting Incorrectly Configured Access Control Security Levels.
This issue affects EventPrime: from n/a through 4.3.2.0.
🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-42669/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##updated 2026-06-02T12:31:32
1 posts
🟠 CVE-2026-39550 - High (8.1)
Deserialization of Untrusted Data vulnerability in Elated-Themes Aperitif allows Object Injection.
This issue affects Aperitif: from n/a through 1.6.
🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-39550/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##updated 2026-06-02T12:31:26
2 posts
🟠 CVE-2026-5422 - High (8.1)
A path traversal vulnerability exists in jupyter-server version 2.17.0 due to an incorrect root directory boundary check in the _get_os_path() function within jupyter_server/services/contents/fileio.py. The check uses startswith(root) without appe...
🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-5422/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##🟠 CVE-2026-5422 - High (8.1)
A path traversal vulnerability exists in jupyter-server version 2.17.0 due to an incorrect root directory boundary check in the _get_os_path() function within jupyter_server/services/contents/fileio.py. The check uses startswith(root) without appe...
🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-5422/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##updated 2026-06-02T09:36:21
2 posts
🟠 CVE-2026-3514 - High (7.5)
In version 3.6.19 of prefecthq/prefect, an authentication bypass vulnerability exists due to the improper handling of URL path exemptions for health check probes. Specifically, the authentication middleware exempts any URL path ending with 'health...
🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-3514/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##🟠 CVE-2026-3514 - High (7.5)
In version 3.6.19 of prefecthq/prefect, an authentication bypass vulnerability exists due to the improper handling of URL path exemptions for health check probes. Specifically, the authentication middleware exempts any URL path ending with 'health...
🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-3514/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##updated 2026-06-02T06:30:33
5 posts
2 repos
⚠️ CRITICAL: Critical Kirki flaw exploited to hijack WordPress admin accounts
Critical privilege escalation flaw in Kirki WordPress plugin (CVE-2026-8206) allows unauthenticated attackers to reset any user account including admins via an unvalidated REST API endpoint. Wordfence has already blocked 222+ exploitation attempts in 24 hours. Any WordPress site running Kirki versi…
##⚠️ CRITICAL: Critical Kirki flaw exploited to hijack WordPress admin accounts
Critical privilege escalation flaw in Kirki WordPress plugin (CVE-2026-8206) allows unauthenticated attackers to reset any user account including admins via an unvalidated REST API endpoint. Wordfence has already blocked 222+ exploitation attempts in 24 hours. Any WordPress site running Kirki versi…
##Critical Kirki flaw exploited to hijack WordPress admin accounts
Hackers are exploiting a critical privilege escalation vulnerability (CVE-2026-8206) in the Kirki plugin for WordPress to take over any user...
🔗️ [Bleepingcomputer] https://link.is.it/CG9Q56
##🔴 CVE-2026-8206 - Critical (9.8)
The Kirki – Freeform Page Builder, Website Builder & Customizer plugin for WordPress is vulnerable to privilege escalation via account takeover in all versions 6.0.0 to 6.0.6. This is due to the plugin accepting an arbitrary email address when a...
🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-8206/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##🚩 CRITICAL: CVE-2026-8206 in Kirki Page Builder (v6.0.0 – 6.0.6) lets unauth attackers reset any user password & hijack WordPress accounts. No patch yet — admins should disable or monitor plugin. Details: https://radar.offseq.com/threat/cve-2026-8206-cwe-269-improper-privilege-managemen-ac423059 #OffSeq #WordPress #Infosec
##updated 2026-06-02T00:32:06
1 posts
CVE-2026-25260: HIGH severity TOCTOU race condition in Qualcomm Snapdragon (Cologne, FastConnect, WCD series). Memory corruption risk — no patch yet. Monitor advisories for updates. https://radar.offseq.com/threat/cve-2026-25260-cwe-367-time-of-check-time-of-use-t-bb1b86cd #OffSeq #Qualcomm #Vuln #Infosec
##updated 2026-06-02T00:32:06
1 posts
🟠 CVE-2026-28577 - High (7.8)
In addWindow of WindowManagerService.java, there is a possible tapjacking issue due to a tapjacking/overlay attack. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for...
🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-28577/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##updated 2026-06-02T00:32:05
1 posts
🟠 CVE-2026-0097 - High (8)
In multiple locations, there is a possible way to bypass user interaction when pairing an LE device due to a logic error. This could lead to remote (proximal/adjacent) escalation of privilege with no additional execution privileges needed. User in...
🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-0097/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##updated 2026-06-02T00:32:05
1 posts
🟠 CVE-2026-0095 - High (8)
In l2c_fcr_clone_buf of l2c_fcr.cc, there is a possible way to trigger controlled heap corruption within the privileged Bluetooth process due to an integer overflow. This could lead to local escalation of privilege with no additional execution pri...
🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-0095/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##updated 2026-06-01T21:16:46.090000
4 posts
4 repos
https://github.com/liamromanis101/cifswitch-check
https://github.com/Koshmare-Blossom/CIFSwitch-go
https://github.com/MrForkBomb/CIFSwitch-Checker-CVE-2026-46243
Asim Manizada disclosed CVE-2026-46243 on the oss-security list May 28, after a private report May 16 and a coordinated embargo. The bug sits in the kernel's CIFS file-sharing client. Any local user can forge a request that starts the privileged cifs.upcall helper as root. In their own mount namespace, that helper loads their code as root. Patches landed around June 2. The root flaw lived in the handshake to a userspace helper wired up years ago.
##CIFSwitch: 19-Year-Old Linux Kernel Vulnerability Allows Local Root Access
A 19-year-old vulnerability in the Linux kernel's CIFS subsystem (CVE-2026-46243) allows unprivileged users to gain root access by forging key descriptions that hijack a root-level helper. The flaw enables attackers to execute arbitrary code through namespace manipulation and malicious module loading on various Linux distributions.
**If you are using CIFS on Linux, plan a quick patch to Linux kernel and cifs-utils security updates. If you don't use CIFS, disable unprivileged user namespaces or remove the cifs-utils package.**
#cybersecurity #infosec #advisory #databreach
https://beyondmachines.net/event_details/cifswitch-19-year-old-linux-kernel-vulnerability-allows-local-root-access-b-9-k-l-p/gD2P6Ple2L
updated 2026-06-01T19:32:02.173000
2 posts
3 repos
https://github.com/dinosn/CVE-2024-21182
CISA Warns of Active Exploitation Targeting Oracle WebLogic Server Vulnerabilities
Oracle WebLogic Server versions 12.2.1.4.0 and 14.1.1.0.0 are being actively attacked via CVE-2024-21182, a high-severity flaw allowing unauthenticated data access via T3 and IIOP protocols. CISA mandated federal agencies patch the vulnerability by June 4, 2026, after evidence of active exploitation.
**Apply Oracle's July 2024 Critical Patch Update (and all subsequent patches) to your WebLogic Server installations right away, as attackers are actively exploiting this flaw. In the meantime, restrict or disable access to the T3 and IIOP protocols. If the server does not serve public content for external visitors, make sure WebLogic servers are only reachable from trusted internal networks, not the open internet.**
#cybersecurity #infosec #attack #activeexploit
https://beyondmachines.net/event_details/cisa-warns-of-active-exploitation-targeting-oracle-weblogic-server-vulnerabilities-9-h-h-w-r/gD2P6Ple2L
🐛 Oracle WebLogic Server CVE-2024-21182 Exploitati...
📝 US federal depa...
📰 Two-year old Oracle WebLogic Server vulnerability is being exploited | CSO Online
##updated 2026-06-01T17:07:57.203000
3 posts
Critical RCE Vulnerability in HP Poly VoIP Phones Exposes Enterprise Networks
HP Poly VoIP phones are vulnerable to a critical stack-based buffer overflow (CVE-2026-0826) that allows unauthenticated remote code execution with root privileges. Attackers can exploit this flaw via malicious SIP INVITE requests to gain a persistent foothold in enterprise networks and intercept sensitive audio.
**Make sure all your VVX and Trio phones are isolated from the internet and reachable only from trusted internal networks. Then update the firmware right away (VVX to UCS 6.4.8, Trio 8300 to UCS 8.1.7, Trio 8500/8800 to UCS 7.2.8). If you can't patch, disable ICE connectivity in the device settings as a temporary fix.**
#cybersecurity #infosec #advisory #vulnerability
https://beyondmachines.net/event_details/critical-rce-vulnerability-in-hp-poly-voip-phones-exposes-enterprise-networks-l-d-s-3-8/gD2P6Ple2L
🔴 HP Poly VoIP Vulnerability CVE-2026-0826
📝 A critical buffer ov...
📰 HP Poly VoIP vulnerability sets the stage for executive voice deepfakes | CSO Online
##Rapid7, posted yesterday: CVE-2026-0826: How an Old Bug Can Feed AI-Powered Impersonation https://www.rapid7.com/blog/post/ve-cve-2026-0826-how-an-old-bug-can-feed-ai-powered-impersonation/ @Rapid7Official #infosec #vulnerability
##updated 2026-05-29T21:32:21
2 posts
8 repos
https://github.com/jennydokumi30/CVE-2026-0257
https://github.com/0xBlackash/CVE-2026-0257
https://github.com/akashsingh0454/CVE-2026-0257-PoC
https://github.com/Mr-Robot-LP/CVE-2026-0257
https://github.com/tushargurav28/CVE-2026-0257
https://github.com/HORKimhab/CVE-2026-0257
⚠️ CRITICAL: Attackers are exploiting Palo Alto Networks defect that initially flew under the radar
Palo Alto Networks GlobalProtect portals and gateways are under active attack via CVE-2026-0257, a critical authentication-bypass vulnerability. Attackers can forge valid auth cookies using public TLS certificates and gain VPN access with a single HTTP request. All affected customers are at immedia…
##PAN-OS GlobalProtect Authentication Bypass (CVE-2026-0257) Under Active Exploitation
**Critical Alert:** A severe vulnerability (CVE-2026-0257) has been identified and requires immediate attention from security teams worldwide.
## The Details
Resources: https://securitycyber.uk | https://www.hackthebox.com
##updated 2026-05-29T20:25:49
1 posts
🟠 CVE-2026-47201 - High (8.5)
authentik is an open-source identity provider. Prior to versions 2025.12.5, 2026.2.3, and 2026.5.1, authentik's SAML Source ACS endpoint is vulnerable to XML Signature Wrapping when validating upstream SAML responses. An attacker with any account ...
🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-47201/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##updated 2026-05-29T07:20:15
6 posts
7 repos
https://github.com/Diznev/CVE-2026-8732-EXPLOIT
https://github.com/xShadow-Here/CVE-2026-8732
https://github.com/Jenderal92/CVE-2026-8732
https://github.com/CryptReaper12/CVE-2026-8732
https://github.com/p3Nt3st3r-sTAr/CVE-2026-8732-POC
⚠️ CRITICAL: Critical WP Maps Pro Flaw Actively Exploited to Create Admin Accounts
Critical privilege escalation vulnerability CVE-2026-8732 in WP Maps Pro is actively being exploited to create unauthorized administrator accounts on WordPress sites. Any unpatched installation is at immediate risk of complete site takeover. This affects all versions prior to 6.1.1.
##Critical WP Maps Pro Flaw Actively Exploited to Create Admin Accounts
**Critical Alert:** A severe vulnerability (CVE-2026-8732) has been identified and requires immediate attention from security teams worldwide.
## The Details
Resources: https://securitycyber.uk | https://www.hackthebox.com
##Critical WP Maps Pro Flaw Actively Exploited to Create Admin Accounts
**Critical Alert:** A severe vulnerability (CVE-2026-8732) has been identified and requires immediate attention from security teams worldwide.
## The Details
Resources: https://securitycyber.uk | https://www.hackthebox.com
##Critical WP Maps Pro Flaw Actively Exploited to Create Admin Accounts
**Critical Alert:** A severe vulnerability (CVE-2026-8732) has been identified and requires immediate attention from security teams worldwide.
## The Details
Resources: https://securitycyber.uk | https://www.hackthebox.com
##Critical WP Maps Pro Flaw Actively Exploited to Create Admin Accounts
**Critical Alert:** A severe vulnerability (CVE-2026-8732) has been identified and requires immediate attention from security teams worldwide.
## The Details
Resources: https://securitycyber.uk | https://www.hackthebox.com
##Critical WP Maps Pro Flaw Actively Exploited to Create Admin Accounts
**Critical Alert:** A severe vulnerability (CVE-2026-8732) has been identified and requires immediate attention from security teams worldwide.
## The Details
Resources: https://securitycyber.uk | https://www.hackthebox.com
##updated 2026-05-27T18:31:49
1 posts
1 repos
Follow-up to last week's TeamSpeak bugs: the story behind the use-after-free (CVE-2026-4390). A race in the handshake, a dangling pointer across two hashmaps, and a server that logs "please do not hack me" before it crashes.
https://modzero.com/en/blog/please-do-not-hack-me/
updated 2026-05-27T14:50:47.627000
2 posts
1 repos
If you're running LiteSpeed Cache below version 7.8, I'd update it now. CVE-2026-3375 allows an unauthorised party to gain full administrative control over your site. Given how widely this plugin is installed, the exposure is significant. Check your version and apply the update.
#WordPress #WordPressSecurity #LiteSpeedCache #WebSecurity #CyberSecurity
https://wpguy.uk/blog/high-vulnerability-in-litespeed-cache-litespeed-cache-litespeed-cache-78/
##If you're running LiteSpeed Cache below version 7.8, I'd update it now. CVE-2026-3375 allows an unauthorised party to gain full administrative control over your site. Given how widely this plugin is installed, the exposure is significant. Check your version and apply the update.
#WordPress #WordPressSecurity #LiteSpeedCache #WebSecurity #CyberSecurity
https://wpguy.uk/blog/high-vulnerability-in-litespeed-cache-litespeed-cache-litespeed-cache-78/
##updated 2026-05-26T19:09:11.220000
1 posts
From #CheckPoint Research: Check Point Frontier AI Models Readiness
Check Point announced a Jumbo Security Release based on large-scale #AI-driven code scanning across the products. The release addresses #vulnerabilities in Check Point security gateways, including CVE-2026-48131 and CVE-2026-48132. The vulnerabilities were not exploited in the wild.
##updated 2026-05-26T15:32:16
1 posts
From #CheckPoint Research: Check Point Frontier AI Models Readiness
Check Point announced a Jumbo Security Release based on large-scale #AI-driven code scanning across the products. The release addresses #vulnerabilities in Check Point security gateways, including CVE-2026-48131 and CVE-2026-48132. The vulnerabilities were not exploited in the wild.
##updated 2026-05-26T15:16:24.310000
1 posts
5 repos
https://github.com/vognik/CVE-2026-26980
https://github.com/EQSTLab/CVE-2026-26980
https://github.com/Kulik-Labs-Development/Ghost-CMS-Code-Injection-Audit-CVE-2026-26980
📰 Critical Ghost CMS Flaw (CVE-2026-26980) Exploited to Inject Malware on 700+ Sites
📢 GHOST CMS HACKED: A critical SQL injection flaw (CVE-2026-26980) is being mass-exploited to hack Ghost sites. Attackers steal API keys to inject malware that targets visitors. Over 700 sites hit. Patch and rotate keys NOW! #GhostCMS #CVE #SQLi
🌐 cyber[.]netsecops[.]io
##updated 2026-05-21T18:58:41.297000
1 posts
HPLIP CVE-2026-8631 (CVSS 9.8)
"a critical integer overflow flaw that may allow privilege escalation or arbitrary code execution via crafted print data"
https://cti.wazuh.com/vulnerabilities/cves/CVE-2026-8631
updated 2026-05-20T17:51:47
2 posts
🔴 CVE-2026-42074 - Critical (9.8)
OpenClaude is an open-source coding-agent command line interface for cloud and local model providers. Prior to version 0.5.1, the dangerouslyDisableSandbox parameter is exposed as part of the BashTool input schema, meaning the LLM (an untrusted pr...
🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-42074/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##🔴 CVE-2026-42074 - Critical (9.8)
OpenClaude is an open-source coding-agent command line interface for cloud and local model providers. Prior to version 0.5.1, the dangerouslyDisableSandbox parameter is exposed as part of the BashTool input schema, meaning the LLM (an untrusted pr...
🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-42074/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##updated 2026-05-18T20:21:54
1 posts
🟠 CVE-2026-45686 - High (7.5)
OpenTelemetry eBPF Instrumentation provides eBPF instrumentation based on the OpenTelemetry standard. From version 0.7.0 to before version 0.9.0, a remotely reachable integer overflow in OBI's memcached text protocol parser can crash the OBI proce...
🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-45686/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##updated 2026-05-18T20:20:05
1 posts
🟠 CVE-2026-45685 - High (7.5)
OpenTelemetry eBPF Instrumentation provides eBPF instrumentation based on the OpenTelemetry standard. From version 0.1.0 to before version 0.9.0, malformed MongoDB wire messages can trigger uncaught panics in the MongoDB TCP parser, allowing a rem...
🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-45685/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##updated 2026-05-18T17:56:30
1 posts
🟠 CVE-2026-45678 - High (7.5)
OpenTelemetry eBPF Instrumentation provides eBPF instrumentation based on the OpenTelemetry standard. Prior to version 0.9.0, the Postgres protocol parser assumes BIND message payloads contain a valid NUL-terminated portal name. A crafted empty or...
🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-45678/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##updated 2026-05-15T15:42:17.907000
17 posts
8 repos
https://github.com/0xBlackash/CVE-2026-41089
https://github.com/0xABCD01/CVE-2026-41089
https://github.com/hnytgl/CVE-2026-41089
https://github.com/hnytgl/cve-2026-41089-detector
https://github.com/ADScanPro/CVE-2026-41089-LongLogon
https://github.com/sananpa/CVE-2026-41089
@christopherkunz @wdormann Here's a new one to take a look at. I haven't gone through it and can't vouch for its legitimacy, but y'all know what you're doing more than I do anyway: https://github.com/Vanquishermacdetach/CVE-2026-41089-509
##@wdormann Of all the writeups, I think I like this one best, especially with it having a human name in the byline: https://adscanpro.com/blog/patch-diffing-cve-2026-41089-netlogon
"read advisories carefully before deciding how to allocate research time." made me chuckle.
⚪️ Hackers Exploit RCE Vulnerability in Windows Netlogon
🗨️ The Belgian Centre for Cybersecurity (Centre for Cybersecurity Belgium, CCB) has reported that attackers have begun exploiting the critical CVE-2026-41089 vulnerability in the Netlogon service. The issue allows remote code execution on a server without authentication and has received a…
##@wdormann From what I read in the writeup (and the sparse other sources), you need a long enough DNS name on the victim host to trigger the overflow. I think 54 chars or more? This github has a possible explanation why the PoC fails under most normal conditions: https://github.com/ADScanPro/CVE-2026-41089-LongLogon
##@wdormann This writeup *seems* to make sense, were it not for the magic two letters in the TLD: https://aretiq.ai/research/vul260513-cve-2026-41089-microsoft-windows-netlogon-buildsamlogonresponse-stack-based-buffer-overflow-rce/
##@wdormann https://github.com/0xABCD01/CVE-2026-41089/blob/main/poc.py#L234
##@christopherkunz @wdormann Here's a new one to take a look at. I haven't gone through it and can't vouch for its legitimacy, but y'all know what you're doing more than I do anyway: https://github.com/Vanquishermacdetach/CVE-2026-41089-509
##@wdormann Of all the writeups, I think I like this one best, especially with it having a human name in the byline: https://adscanpro.com/blog/patch-diffing-cve-2026-41089-netlogon
"read advisories carefully before deciding how to allocate research time." made me chuckle.
⚪️ Hackers Exploit RCE Vulnerability in Windows Netlogon
🗨️ The Belgian Centre for Cybersecurity (Centre for Cybersecurity Belgium, CCB) has reported that attackers have begun exploiting the critical CVE-2026-41089 vulnerability in the Netlogon service. The issue allows remote code execution on a server without authentication and has received a…
##@wdormann From what I read in the writeup (and the sparse other sources), you need a long enough DNS name on the victim host to trigger the overflow. I think 54 chars or more? This github has a possible explanation why the PoC fails under most normal conditions: https://github.com/ADScanPro/CVE-2026-41089-LongLogon
##@wdormann This writeup *seems* to make sense, were it not for the magic two letters in the TLD: https://aretiq.ai/research/vul260513-cve-2026-41089-microsoft-windows-netlogon-buildsamlogonresponse-stack-based-buffer-overflow-rce/
##@wdormann https://github.com/0xABCD01/CVE-2026-41089/blob/main/poc.py#L234
##GitHub - 0xABCD01/CVE-2026-41089: CVE-2026-41089 PoC — Netlogon CLDAP stack buffer overflow (CVSS 9.8 CRITICAL)
https://github.com/0xABCD01/CVE-2026-41089
Read on HackerWorkspace: https://hackerworkspace.com/article/github-0xabcd01-cve-2026-41089-cve-2026-41089-poc-netlogon-cldap-stack-buffer-overflow-cvss-9-8-critical
##Per Microsoft details:
How could an attacker exploit this vulnerability?
An attacker could send a specially crafted network request to a Windows server that is acting as a domain controller. If successful, this could cause the Netlogon service to improperly handle the request, potentially allowing the attacker to run code on the affected system without needing to sign in or have prior access.
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-41089
I don't think they fully understand the words "specially crafted".
Screaming at a network login for compliance is special... but it's not the kind of special you are looking for.
##Windows Server – CVE-2026-41089 : cette faille critique dans Netlogon est exploitée ! https://www.it-connect.fr/windows-server-cve-2026-41089-cette-faille-critique-dans-netlogon-est-exploitee/ #ActuCybersécurité #Cybersécurité #Vulnérabilité #WindowsServer #Microsoft
##Threat Actors Target Critical Windows Netlogon Flaw CVE-2026-41089
A critical Windows Netlogon vulnerability, tracked as CVE-2026-41089, has emerged as a significant security concern after authorities warned that...
🔗️ [Thecyberexpress] https://link.is.it/4z7ayB
##Am I mistaken that essentially zerologon v2 came out? CVE-2026-41089
##updated 2026-05-14T21:30:40
2 posts
40 repos
https://github.com/iammerrida-source/nginx-rift-detect
https://github.com/F2u0a0d3/CVE-2026-42945-nginx-rift-poc
https://github.com/simota/nginx-rift-scanner
https://github.com/sibersan/web-server-audit_CVE-2026-42945
https://github.com/friparia/NGINX_RIFT_SCAN_CVE_2026_42945
https://github.com/niekaicheng/CVE-2026-42945_NGINX_Rift
https://github.com/edgecases-PurpleHax/cve-images
https://github.com/tal7aouy/nginx-cve-2026-42945
https://github.com/DepthFirstDisclosures/Nginx-Rift
https://github.com/lowilol/CVE-2026-42945-NGINX-Rift-Check-Script
https://github.com/hnytgl/cve-2026-42945
https://github.com/p3Nt3st3r-sTAr/CVE-2026-42945-POC
https://github.com/cipherspy/CVE-2026-42945-POC
https://github.com/BarAppTeam/nginx-cve-fix
https://github.com/karakapaku43/CVE-2026-42945
https://github.com/forxiucn/nginx-cve-2026-42945-poc
https://github.com/byezero/nginx-cve-2026-42945-check
https://github.com/soksofos/wazuh-nginx-cve-2026-42945-sca-lab
https://github.com/quantumworld-dpdns-io/CVE-2026-42945
https://github.com/nanwinata/nginxrift-CVE-2026-42945
https://github.com/webdev75950-ux/nginx-rce-cve-2026-42945
https://github.com/dinosn/cve-2026-42945-nginx32-lab
https://github.com/0xBlackash/CVE-2026-42945
https://github.com/yusufdalbudak/CVE-2026-42945
https://github.com/fkj-src/fix_nginx_cve_2026_42945
https://github.com/strivepan/Nginx_cve-2026-42945-scanner-gui
https://github.com/RedCrazyGhost/CVE-2026-42945
https://github.com/bamov970/CVE-2026-42945-Nginx-RCE-bypass-ASLR
https://github.com/gagaltotal/CVE-2026-42945-NGINX-Rift-Toolkit
https://github.com/imSre9/CVE-2026-42945
https://github.com/nu0l/NGINX-Rift
https://github.com/jelasin/CVE-2026-42945
https://github.com/josephfelix/CVE-2026-42945-nginx-rift
https://github.com/MateusVerass/nGixshell
https://github.com/Renison-Gohel/CVE-2026-42945-NGINX-Rift
https://github.com/rheodev/CVE-2026-42945
https://github.com/realityone/cve-2026-42945-scan
https://github.com/chenqin231/CVE-2026-42945
https://github.com/oseasfr/Scanner_CVE_2026-42945
https://github.com/ChamsBouzaiene/ai-vuln-rediscovery-nginx-cve-2026-42945
The Findings page pause is gone.
May load times dropped from tens of seconds to under a second, even past 4M findings.
Also shipped:
Network Scanner now detects CVE-2026-42945 (NGINX RCE), confirmed from the server's response, not a banner check. We also cover CVE-2026-41940, the cPanel & WHM auth bypass (CVSS 9.8, CISA KEV).
New: we asked 241 devs who use AI coding tools if the validation gap widened. 76% use AI always/usually. 9% say testing keeps pace.
Watch the video for the full walkthrough
##The Findings page pause is gone.
May load times dropped from tens of seconds to under a second, even past 4M findings.
Also shipped:
Network Scanner now detects CVE-2026-42945 (NGINX RCE), confirmed from the server's response, not a banner check. We also cover CVE-2026-41940, the cPanel & WHM auth bypass (CVSS 9.8, CISA KEV).
New: we asked 241 devs who use AI coding tools if the validation gap widened. 76% use AI always/usually. 9% say testing keeps pace.
Watch the video for the full walkthrough
##updated 2026-05-14T06:31:40
3 posts
10 repos
https://github.com/rootdirective-sec/CVE-2026-8181-Lab
https://github.com/Yucaerin/CVE-2026-8181
https://github.com/Jenderal92/CVE-2026-8181
https://github.com/xShadow-Here/CVE-2026-8181
https://github.com/murrez/CVE-2026-8181
https://github.com/zycoder0day/CVE-2026-8181
https://github.com/Ez4rd1x1/CVE-2026-8181
https://github.com/BastianXploited/CVE-2026-8181
Critical Authentication Bypass in Burst Statistics Plugin Exploited for WordPress Takeovers
Attackers are exploiting a critical authentication bypass in the Burst Statistics WordPress plugin (CVE-2026-8181) to gain full administrative control and create unauthorized accounts.
**If you use the Burst Statistics plugin for WordPress, update it to version 3.4.2 or 3.4.3 immediately. Attackers are actively taking over sites running vulnerable versions (3.4.0 to 3.4.1.1). After updating, check your WordPress user list for any unauthorized admin accounts created on or after May 13, 2026, and remove them.**
#cybersecurity #infosec #attack #activeexploit
https://beyondmachines.net/event_details/critical-authentication-bypass-in-burst-statistics-plugin-exploited-for-wordpress-takeovers-z-p-m-p-4/gD2P6Ple2L
Critical Authentication Bypass in Burst Statistics Plugin Exploited for WordPress Takeovers
Attackers are exploiting a critical authentication bypass in the Burst Statistics WordPress plugin (CVE-2026-8181) to gain full administrative control and create unauthorized accounts.
**If you use the Burst Statistics plugin for WordPress, update it to version 3.4.2 or 3.4.3 immediately. Attackers are actively taking over sites running vulnerable versions (3.4.0 to 3.4.1.1). After updating, check your WordPress user list for any unauthorized admin accounts created on or after May 13, 2026, and remove them.**
#cybersecurity #infosec #attack #activeexploit
https://beyondmachines.net/event_details/critical-authentication-bypass-in-burst-statistics-plugin-exploited-for-wordpress-takeovers-z-p-m-p-4/gD2P6Ple2L
If you're running Burst Statistics for WordPress analytics, check your version now. CVE-2026-8181 is being actively exploited and gives attackers full admin access with no username or password required. Discovered on 8th May 2026 by Wordfence's PRISM system, this is as serious as it gets. Patch immediately.
#WordPress #WordPressSecurity #SecurityHardening #WebSecurity
https://wpguy.uk/blog/your-wordpress-analytics-plugin-could-hand-attackers-full-admin-access/
##updated 2026-05-13T18:17:47.830000
2 posts
2 repos
https://github.com/BishopFox/CVE-2026-0265-check
https://github.com/tstephens1080/palo-alto-cve-2026-0265-checker
@trojanfoxtrot CVE-2026-0263 or CVE-2026-0264 or CVE-2026-0265 or...
You might need to be more specific. 😆
##@trojanfoxtrot CVE-2026-0263 or CVE-2026-0264 or CVE-2026-0265 or...
You might need to be more specific. 😆
##updated 2026-05-13T18:17:47.830000
2 posts
@trojanfoxtrot CVE-2026-0263 or CVE-2026-0264 or CVE-2026-0265 or...
You might need to be more specific. 😆
##@trojanfoxtrot CVE-2026-0263 or CVE-2026-0264 or CVE-2026-0265 or...
You might need to be more specific. 😆
##updated 2026-05-13T18:17:47.830000
2 posts
@trojanfoxtrot CVE-2026-0263 or CVE-2026-0264 or CVE-2026-0265 or...
You might need to be more specific. 😆
##@trojanfoxtrot CVE-2026-0263 or CVE-2026-0264 or CVE-2026-0265 or...
You might need to be more specific. 😆
##updated 2026-05-04T18:09:42.300000
2 posts
68 repos
https://github.com/mahfuzreham/cpanel-cve-2026-41940
https://github.com/Unfold-Security/CVE-2026-41940-Detection
https://github.com/Christian93111/CVE-2026-41940
https://github.com/Sachinart/CVE-2026-41940-cpanel-0day
https://github.com/0xabdoulaye/CPANEL-CVE-2026-41940
https://github.com/MrAriaNet/cPanel-Fix
https://github.com/Wesuiliye/CVE-2026-41940
https://github.com/MrOplus/CVE-2026-41940
https://github.com/imbas007/POC_CVE-2026-41940
https://github.com/tc4dy/CVE-2026-41940-POC-Exploit
https://github.com/willygailo/CVE-2026-41940-Linux
https://github.com/Underh0st/CPanel-Audit-Remediation-Tool
https://github.com/shahidmallaofficial/cpanel-cve-2026-41940-fix
https://github.com/44pie/cpsniper
https://github.com/debugactiveprocess/cPanel-WHM-AuthBypass-Session-Checker
https://github.com/Ap0dexMe0/CVE-2026-41940
https://github.com/Andrei-Dr/cpanel-cve-2026-41940-ioc
https://github.com/AmirrezaMarzban/portscan-CVE-2026-41940
https://github.com/kmaruthisrikar/CVE-2026-41940-cPanel-Auth-Bypass-Exploit
https://github.com/SreejaPuthan/cpanel-control-plane-exposure-check
https://github.com/XsanFlip/poc-cpanel-cve-2026-41940
https://github.com/assetnote/cpanel2shell-scanner
https://github.com/anach-ai/CVE-2026-41940
https://github.com/ZildanZ/CVE-2026-41940
https://github.com/bughunt4me/cpanelCVE-2026-41940
https://github.com/branixsolutions/Security-CVE-2026-41940-cPanel-WHM-WP2
https://github.com/senyx122/CVE-2026-41940
https://github.com/tfawnies/CVE-2026-41940-next
https://github.com/sebinxavi/cve-checker-2026
https://github.com/george1-adel/CVE-2026-41940_exploit
https://github.com/NULL200OK/cve-2026-41940-tool
https://github.com/tahaXafous/CVE_2026_41940_scan_exploit
https://github.com/vineet7800/cpanel-malware-cleaner-cve-2026
https://github.com/thekawix/CVE-2026-41940
https://github.com/Kagantua/cPanelWHM-AuthBypass
https://github.com/linko-iheb/cve-2026-41940-scanner
https://github.com/acuciureanu/cpanel2shell-honeypot
https://github.com/cy3erm/CVE-2026-41940-POC
https://github.com/0dev1337/cpanelscanner
https://github.com/ynsmroztas/cPanelSniper
https://github.com/0xBlackash/CVE-2026-41940
https://github.com/zwanski2019/cPanelSniper
https://github.com/sercanokur/CVE-2026-41940-cPanel-WHM-Verification-Tool
https://github.com/iSee857/cPanel-WHM-CVE-2026-41940-AuthBypass
https://github.com/ilmndwntr/CVE-2026-41940-MASS-EXPLOIT
https://github.com/Ishanoshada/CVE-2026-41940-Exploit-PoC
https://github.com/habibkaratas/sorry-ransomware-analysis
https://github.com/adriyansyah-mf/cve-2026-41940-poc
https://github.com/3tternp/CVE-2026-41940---cPanel-WHM-check
https://github.com/nickpaulsec/2026-41940-poc
https://github.com/unteikyou/CVE-2026-41940-AuthBypass-Detector
https://github.com/rdyprtmx/poc-cve-2026-41940
https://github.com/sardine-web/Automated-scanner-CVE-2026-41940
https://github.com/devtint/CVE-2026-41940
https://github.com/murrez/CVE-2026-41940
https://github.com/rfxn/cpanel-sessionscribe
https://github.com/OhmGun/whmxploit---CVE-2026-41940
https://github.com/ngksiva/cpanel-forensics
https://github.com/zedxod/CVE-2026-41940-POC
https://github.com/Lutfifakee-Project/CVE-2026-41940
https://github.com/Jenderal92/CVE-2026-41940
https://github.com/dennisec/CVE-2026-41940
https://github.com/Defacto-ridgepole254/CVE-2026-41940-Exploit-PoC
https://github.com/itsismarcos/CVE-2026-41940
https://github.com/Richflexpix/cpanel-pwn
https://github.com/realawaisakbar/CVE-2026-41940-Exploit-PoC
The Findings page pause is gone.
May load times dropped from tens of seconds to under a second, even past 4M findings.
Also shipped:
Network Scanner now detects CVE-2026-42945 (NGINX RCE), confirmed from the server's response, not a banner check. We also cover CVE-2026-41940, the cPanel & WHM auth bypass (CVSS 9.8, CISA KEV).
New: we asked 241 devs who use AI coding tools if the validation gap widened. 76% use AI always/usually. 9% say testing keeps pace.
Watch the video for the full walkthrough
##The Findings page pause is gone.
May load times dropped from tens of seconds to under a second, even past 4M findings.
Also shipped:
Network Scanner now detects CVE-2026-42945 (NGINX RCE), confirmed from the server's response, not a banner check. We also cover CVE-2026-41940, the cPanel & WHM auth bypass (CVSS 9.8, CISA KEV).
New: we asked 241 devs who use AI coding tools if the validation gap widened. 76% use AI always/usually. 9% say testing keeps pace.
Watch the video for the full walkthrough
##updated 2026-04-28T18:30:31
1 posts
1 repos
CVE-2026-31525: Linux Kernel Privilege Escalation Flaw https://www.sentinelone.com/vulnerability-database/cve-2026-31525/
##updated 2026-04-24T18:11:16.583000
1 posts
Everest Forms Pro Flaw Exploited for Remote Code Execution
A critical flaw in the Everest Forms Pro WordPress plugin, CVE-2026-3300, has been exploited over 29,300 times, allowing attackers to execute remote code on vulnerable sites. This vulnerability was caused by a simple calculation feature that was not properly sanitized, leaving sites open to unauthenticated attacks.
#RemoteCodeExecution #Cve20263300 #Wordpress #EverestFormsPro #PluginVulnerability
##updated 2026-04-18T20:16:29.633000
2 posts
Progress LoadMaster is up there with Ivanti now.
##Progress LoadMaster is up there with Ivanti now.
##updated 2026-04-16T21:18:18
1 posts
Critical RCE Vulnerability in Flowise AI Platform Enables Full Server Takeover
Flowise is reported to have a critical RCE vulnerability (CVE-2026-40933) in its Custom MCP tool that allows attackers to take over self-hosted servers via malicious chatflow imports. The flaw bypasses current input validation and enables arbitrary command execution with server privileges.
**If you self-host Flowise, treat it like an industrial device first: make sure it's isolated from the internet and only reachable from trusted networks. Then disable the risky local execution path by setting the environment variable CUSTOM_MCP_PROTOCOL=sse and never import chatflow files from unverified sources (importing alone is enough to get hacked).**
#cybersecurity #infosec #advisory #vulnerability
https://beyondmachines.net/event_details/critical-rce-vulnerability-in-flowise-ai-platform-enables-full-server-takeover-b-7-x-r-b/gD2P6Ple2L
updated 2026-03-31T15:31:53
1 posts
5 repos
https://github.com/l0lsec/check-cve-2026-3055-netscaler
https://github.com/fevar54/CVE-2026-3055-Scanner---Herramienta-de-Detecci-n
https://github.com/0xBlackash/CVE-2026-3055
https://github.com/fevar54/CVE-2026-3055---Citrix-NetScaler-Memory-Overread-PoC
PSA for anyone still running NetScaler as a SAML IdP
CVE-2026-3055 (memory overread, CVSS 9.3) is on CISA KEV and getting hammered in the wild. Leaks session tokens and creds straight out of process memory. It's also a CVE Interlock is associated with, and they love healthcare.
Patch the appliance, but if you've got a FortiGate in front of it, drop an IPS profile on and virtual-patch it today. Signature's live.
Alert: https://www.fortiguard.com/outbreak-alert/citrix-netscaler-memory-overread
Interlock: https://www.fortiguard.com/threat-actor/6384
##updated 2026-03-19T15:31:22
1 posts
4 repos
https://github.com/GarethMSheldon/cve-2026-22557-unifi-detection
https://github.com/0xBlackash/CVE-2026-22557
Looting UniFi Controllers: Detecting and Weaponizing CVE-2026-22557 https://bishopfox.com/blog/looting-unifi-controllers-detecting-and-weaponizing-cve-2026-22557
##updated 2025-10-30T15:50:59.680000
2 posts
32 repos
https://github.com/Syrins/CVE-2025-8088-Winrar-Tool-Gui
https://github.com/onlytoxi/CVE-2025-8088-Winrar-Tool
https://github.com/hexsecteam/CVE-2025-8088-Winrar-Tool
https://github.com/pentestfunctions/best-CVE-2025-8088
https://github.com/AdityaBhatt3010/CVE-2025-8088-WinRAR-Zero-Day-Path-Traversal
https://github.com/kitsuneshade/WinRAR-Exploit-Tool---Rust-Edition
https://github.com/0xAbolfazl/CVE-2025-8088-WinRAR-PathTraversal-PoC
https://github.com/sxyrxyy/CVE-2025-8088-WinRAR-Proof-of-Concept-PoC-Exploit-
https://github.com/hbesljx/CVE-2025-8088-EXP
https://github.com/Markusino488/cve-2025-8088
https://github.com/travisbgreen/cve-2025-8088
https://github.com/shaheeryasirofficial/CVE-2025-8088
https://github.com/ghostn4444/CVE-2025-8088
https://github.com/IsmaelCosma/CVE-2025-8088
https://github.com/xi0onamdev/WinRAR-CVE-2025-8088-Exploitation-Toolkit
https://github.com/Shinkirou789/Cve-2025-8088-WinRar-vulnerability
https://github.com/nhattanhh/CVE-2025-8088
https://github.com/nuky-alt/CVE-2025-8088
https://github.com/pexlexity/WinRAR-CVE-2025-8088-Path-Traversal-PoC
https://github.com/techcorp/CVE-2025-8088-Exploit
https://github.com/lennertdefauw/CVE-2025-8088
https://github.com/aldisakti2/CVE-2025-8088-BUILDER-Winrar-Tool
https://github.com/pescada-dev/-CVE-2025-8088
https://github.com/papcaii2004/CVE-2025-8088-WinRAR-builder
https://github.com/walidpyh/CVE-2025-8088
https://github.com/DeepBlue-dot/CVE-2025-8088-WinRAR-Startup-PoC
https://github.com/undefined-name12/CVE-2025-8088-Winrar
https://github.com/jordan922/CVE-2025-8088
https://github.com/starfallreverie/winrar-exploit
https://github.com/ilhamrzr/RAR-Anomaly-Inspector
https://github.com/knight0x07/WinRAR-CVE-2025-8088-PoC-RAR
https://github.com/pentestfunctions/CVE-2025-8088-Multi-Document
Gamaredon Exploits WinRAR to Deliver GammaWorm & GammaSteel Against Ukraine
https://thehackernews.com/2026/06/gamaredon-exploits-winrar-to-deliver.html
> In January 2026, Russian hacking group known as Gamaredon was attributed to exploitation of WinRAR CVE-2025-8088, a path traversal flaw to launch an HTML payload - GammaPhish - used to retrieve a VBScript downloader - GammaLoad.
Primary objective is to fingerprint host system, update network configuration in registry using DDRs, & fetch & execute arbitrary VBScript payloads from the C2 server.
##updated 2025-10-03T18:31:26
1 posts
3 repos
https://github.com/taptap/cve-2025-59489
today, i did a security ! i patched some game/mod builds against the September 2025 unity vulnerability.
https://github.com/sodiboo/Jelly-Drift/releases/tag/v1.2.0.cve-2025-59489
https://github.com/sodiboo/Muck/releases/tag/car%2B%2B%401.2.cve-2025-59489
thank you Unity for making an easy-to-use application patcher. your toolchain is really fucking annoying to run on my flavor of Linux, but the patcher tool was not a hassle. very good for convenient.
3 posts
2 repos
https://github.com/mrx-arafat/CVE-2026-49975-POC
https://github.com/fevar54/Proof-of-Concept-POC---CVE-2026-49975-HTTP-2-Bomb-
#SSI #Apache #NGinx #IIS
Des failles exploitées d'Apache, NGinx et Microsoft IIS (HTTP/2 Bomb CVE-2026-49975) : une petite requête suffit à faire tomber ces serveurs en saturant leur mémoire, en moins d'1 minute.
Prêt ? à vos patchs. Partez !
https://korben.info/http-2-bomb-une-mini-requete-suffit-pour-faire-tomber-nginx-apache-ou-iis.html
💣 HTTP/2 Bomb : une "nouvelle" vulnérabilité DoS permet à un seul client d'épuiser la mémoire d'un serveur web en quelques secondes.
Les chercheurs de Calif et leurs 🤖 Codex ont démontré qu'une combinaison entre l'amplification HPACK et des techniques proches du Slowloris HTTP/2 peut provoquer une consommation mémoire massive.
⚠️ Produits concernés :
• NGINX
• Apache HTTPD
• Microsoft IIS
• Envoy
• Cloudflare Pingora
...
🩹 Rémediation :
✅ NGINX
• Mettre à jour vers 1.29.8+
• Sinon désactiver HTTP/2 temporairement
✅ Apache HTTPD
• Mettre à jour mod_http2 vers 2.0.41+
• Sinon revenir à HTTP/1.1
:debian: https://security-tracker.debian.org/tracker/CVE-2026-49975
:opensuse: https://www.suse.com/security/cve/CVE-2026-49975.html
🛡️ Mitigations complémentaires :
• Limiter la mémoire par processus (cgroups, conteneurs, ulimit)
• Surveiller les pics de consommation mémoire des workers web
• Vérifier que les protections OOM interviennent avant l'utilisation du swap
📖 Analyse :
https://blog.calif.io/p/codex-discovered-a-hidden-http2-bomb
🧪 PoC :
https://github.com/califio/publications/tree/main/MADBugs/http2-bomb
💣 HTTP/2 Bomb : une "nouvelle" vulnérabilité DoS permet à un seul client d'épuiser la mémoire d'un serveur web en quelques secondes.
Les chercheurs de Calif et leurs 🤖 Codex ont démontré qu'une combinaison entre l'amplification HPACK et des techniques proches du Slowloris HTTP/2 peut provoquer une consommation mémoire massive.
⚠️ Produits concernés :
• NGINX
• Apache HTTPD
• Microsoft IIS
• Envoy
• Cloudflare Pingora
...
🩹 Rémediation :
✅ NGINX
• Mettre à jour vers 1.29.8+
• Sinon désactiver HTTP/2 temporairement
✅ Apache HTTPD
• Mettre à jour mod_http2 vers 2.0.41+
• Sinon revenir à HTTP/1.1
:debian: https://security-tracker.debian.org/tracker/CVE-2026-49975
:opensuse: https://www.suse.com/security/cve/CVE-2026-49975.html
🛡️ Mitigations complémentaires :
• Limiter la mémoire par processus (cgroups, conteneurs, ulimit)
• Surveiller les pics de consommation mémoire des workers web
• Vérifier que les protections OOM interviennent avant l'utilisation du swap
📖 Analyse :
https://blog.calif.io/p/codex-discovered-a-hidden-http2-bomb
🧪 PoC :
https://github.com/califio/publications/tree/main/MADBugs/http2-bomb
4 posts
1 repos
https://github.com/mgiay/CVE-2026-25589-25588-25243-23631-23479-REDIS
Autonomous AI Tool Finds 2-Year-Old RCE Flaw in Redis (CVE-2026-23479) https://thehackernews.com/2026/06/autonomous-ai-tool-finds-2-year-old-rce.html
##Autonomous AI Tool Finds 2-Year-Old RCE Flaw in Redis (CVE-2026-23479) https://thehackernews.com/2026/06/autonomous-ai-tool-finds-2-year-old-rce.html
##From yesterday.
ZeroDay Cloud: CVE-2026-23479: Redis Use-After-Free in unblockClientOnKey Leading to RCE https://www.zeroday.cloud/blog/redis-cve-2026-23479-deep-dive
More:
The Hacker News: Autonomous AI Tool Finds 2-Year-Old RCE Flaw in Redis (CVE-2026-23479) https://thehackernews.com/2026/06/autonomous-ai-tool-finds-2-year-old-rce.html @thehackernews #infosec #threatresearch #zeroday
##We are particularly proud of finding this bug because of the subtlety in how it expressed itself - the vulnerability emerged from the interaction of two parts of the codebase far apart from each other. As a result, humans and machines alike had previously scanned Redis and missed this high-sev bug until Xint came along.
https://www.zeroday.cloud/blog/redis-cve-2026-23479-deep-dive
Rooting Home Assistant through MeshCore: XSS attacks with a LoRa node name
MeshCore의 LoRa 노드 이름을 악용한 XSS 취약점(CVE-2026-45323)이 Home Assistant의 meshcore-card 컴포넌트에서 발견되어, 대시보드에서 악성 노드 이름이 렌더링될 경우 원격에서 루트 권한까지 탈취 가능하다. 이 취약점은 meshcore-card v0.3.3에서 패치되었으나, 유사한 MeshCore-Home-Assistant-Panel-v2 변종은 아직 미패치 상태이며, 공격자는 LoRa 메시지 중계망을 통해 물리적 근접 없이도 공격할 수 있다. 공격자는 XSS를 통해 인증 토큰 탈취, 악성 애드온 설치, 도...
##Vincent Li at FortiGuard Labs analyses C0XMO, a new Gafgyt variant discovered in March 2026 that spreads by exploiting CVE-2021-27137. A key change is the separation of lateral movement into a standalone Python script, helping the botnet target multiple architectures and device types. https://www.fortinet.com/blog/threat-research/inside-cross-platform-propagation-of-new-gafgyt-variant-c0xmo
##Vincent Li at FortiGuard Labs analyses C0XMO, a new Gafgyt variant discovered in March 2026 that spreads by exploiting CVE-2021-27137. A key change is the separation of lateral movement into a standalone Python script, helping the botnet target multiple architectures and device types. https://www.fortinet.com/blog/threat-research/inside-cross-platform-propagation-of-new-gafgyt-variant-c0xmo
##CVE-2026-40290 - Use-after-free in Op-Tee FF-A shared memory teardown. Race condition leads to potential memory corruption. CVSS 7.8. Unpatched. Update or apply mitigations now. #CVE #infosec #OpTee
##🟠 CVE-2026-40290 - High (7.8)
OP-TEE is a Trusted Execution Environment (TEE) designed as companion to a non-secure Linux kernel running on Arm; Cortex-A cores using the TrustZone technology. Starting in version 3.16.0 and prior to 4.11.0, a user-after-free (UAF) race conditio...
🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-40290/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##4 posts
8 repos
https://github.com/T1erno/CVE-2022-0492-Docker-Breakout-Checker-and-PoC
https://github.com/Trinadh465/device_renesas_kernel_AOSP10_r33_CVE-2022-0492
https://github.com/SofianeHamlaoui/CVE-2022-0492-Checker
https://github.com/smallcat9612/CVE-2022-0492-Docker-Breakout-Checker-and-PoC
https://github.com/PaloAltoNetworks/can-ctr-escape-cve-2022-0492
https://github.com/Perimora/cve_2022_0492
https://github.com/yoeelingBin/CVE-2022-0492-Container-Escape
Deep-Dive Technical Briefing: Weaponization of CVE-2022-0492 highlights severe structural exposures within Linux Kernel cgroups v1 release_agent hooks. Read our exhaustive architectural analysis detailing exact memory space exploit mechanics and full Kubernetes user namespace mitigation steps. https://thecybermind.co/asi6
##🚨 [CISA-2026:0602] CISA Adds 2 Known Exploited Vulnerabilities to Catalog (https://secdb.nttzen.cloud/security-advisory/detail/CISA-2026:0602)
CISA has added 2 new vulnerabilities to its Known Exploited Vulnerabilities Catalog, based on evidence of active exploitation. These types of vulnerabilities are a frequent attack vector for malicious cyber actors and pose significant risk to the federal enterprise.
⚠️ CVE-2022-0492 (https://secdb.nttzen.cloud/cve/detail/CVE-2022-0492)
- Name: Linux Kernel Improper Authentication Vulnerability
- Action: Apply mitigations per vendor instructions, follow applicable BOD 22-01 guidance for cloud services, or discontinue use of the product if mitigations are unavailable.
- Known To Be Used in Ransomware Campaigns? Unknown
- Vendor: Linux
- Product: Kernel
- Notes: This vulnerability affects a common open-source component, third-party library, or a protocol used by different products. Please check with specific vendors for information on patching status. For more information, please see: https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?id=24f6008564183aa120d07c03d9289519c2fe02af ; https://www.kernel.org/ ; https://nvd.nist.gov/vuln/detail/CVE-2022-0492
⚠️ CVE-2025-48595 (https://secdb.nttzen.cloud/cve/detail/CVE-2025-48595)
- Name: Android Framework Integer Overflow Vulnerability
- Action: Apply mitigations per vendor instructions, follow applicable BOD 22-01 guidance for cloud services, or discontinue use of the product if mitigations are unavailable.
- Known To Be Used in Ransomware Campaigns? Unknown
- Vendor: Android
- Product: Framework
- Notes: https://source.android.com/docs/security/bulletin/2026/2026-06-01 ; https://nvd.nist.gov/vuln/detail/CVE-2025-48595
#ZEN #SecDB #InfoSec #CVE #CISA_KEV #cisa_20260602 #cisa20260602 #cve_2022_0492 #cve_2025_48595 #cve20220492 #cve202548595
##CISA has added to the KEV catalogue.
CVE-2025-48595: Android Framework Integer Overflow Vulnerability https://www.cve.org/CVERecord?id=CVE-2025-48595
CVE-2022-0492: Linux Kernel Improper Authentication Vulnerability https://www.cve.org/CVERecord?id=CVE-2022-0492 #CISA #infosec #Linux #Android #vulnerability
##CVE ID: CVE-2022-0492
Vendor: Linux
Product: Kernel
Date Added: 2026-06-02
CVE URL: https://nvd.nist.gov/vuln/detail/CVE-2022-0492
🛡️ HIGH severity: CVE-2026-35482 in alf.io (<2.0-M5-2606) lets authenticated admins escape the Rhino JS sandbox and execute OS commands via Java reflection. Upgrade to 2.0-M5-2606 now! https://radar.offseq.com/threat/cve-2026-35482-cwe-863-incorrect-authorization-in--7701fe0c #OffSeq #Vulnerability #alfio #Security
##🟠 CVE-2026-35482 - High (8)
alf.io is an open source ticket reservation system for conferences, trade shows, workshops, and meetups. Prior to version 2.0-M5-2606, a sandbox escape vulnerability in the alf.io extension script engine allows an authenticated administrator to ex...
🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-35482/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##🔴 CVE-2026-32625 - Critical (9.6)
LibreChat is an enhanced ChatGPT clone that supports multiple AI providers. In versions up to and including 0.8.3, the Model Context Protocol (MCP) server integration resolves ${VAR} placeholders against the server's process.env during Zod schema ...
🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-32625/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##🔒 CVE-2026-32625 (CRITICAL): LibreChat < 0.8.4-rc1 lets any authenticated user exfiltrate secrets via crafted MCP server URLs. Upgrade ASAP to avoid full compromise of keys & DB creds. More: https://radar.offseq.com/threat/cve-2026-32625-cwe-200-exposure-of-sensitive-infor-b53af122 #OffSeq #Vulnerability #LibreChat #Infosec
##CVE-2026-49448 - Critical authentication bypass in Authentik. Sending an empty POST bypasses the Source stage. CVSS 9.8. Update to 2025.12.6, 2026.2.4, or 2026.5.1 immediately. #CVE #Authentik #infosec
##🔴 CVE-2026-49448 - Critical (9.8)
authentik is an open-source identity provider. Prior to versions 2025.12.6, 2026.2.4, and 2026.5.1, the Source stage can be bypassed by sending an empty POST. This issue has been patched in versions 2025.12.6, 2026.2.4, and 2026.5.1.
🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-49448/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##🔴 CVE-2026-42849 - Critical (9.3)
authentik is an open-source identity provider. Prior to versions 2025.12.5 and 2026.2.3, due to the implementation of stages in the SFE (Simple Flow Executor) in order to make the interface more compatible with legacy browsers, it was possible to ...
🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-42849/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##Critical Hard-Coded Credentials Vulnerability in FreePBX User Control Panel
FreePBX patched a critical vulnerability (CVE-2026-46376) that allows unauthenticated attackers to gain remote access to the User Control Panel via hard-coded credentials.
**If you run FreePBX, first make sure your VoIP server management interfaces User and Admin Control Panels are isolated from the internet and reachable only from trusted networks or via VPN . Then update the userman module to version 16.0.45 or 17.0.7 to replace the hard-coded credentials, and enable MFA or SAML for an added layer of login protection.**
#cybersecurity #infosec #advisory #vulnerability
https://beyondmachines.net/event_details/critical-hard-coded-credentials-vulnerability-in-freepbx-user-control-panel-q-f-q-e-g/gD2P6Ple2L