##
Updated at UTC 2026-07-12T07:22:05.839205
| CVE | CVSS | EPSS | Posts | Repos | Nuclei | Updated | Description |
|---|---|---|---|---|---|---|---|
| CVE-2026-15481 | 8.8 | 0.00% | 2 | 0 | 2026-07-12T06:16:42.863000 | A security flaw has been discovered in Trendnet TEW-635BRM up to 1.00.03. This v | |
| CVE-2026-58281 | 8.3 | 0.00% | 4 | 0 | 2026-07-11T21:16:23.903000 | Deserialization of untrusted data in Microsoft Edge (Chromium-based) allows an u | |
| CVE-2026-56303 | 7.5 | 0.00% | 2 | 0 | 2026-07-11T15:30:29 | Capgo before 12.128.2 contains an information disclosure vulnerability in the fi | |
| CVE-2026-61426 | 8.6 | 0.00% | 2 | 0 | 2026-07-11T15:30:23 | PraisonAI before 1.7.3 contains an insecure default configuration that binds to | |
| CVE-2026-61447 | 10.0 | 0.00% | 4 | 0 | 2026-07-11T14:16:23.377000 | PraisonAI before 1.6.78 contains a remote code execution vulnerability in CodeAg | |
| CVE-2026-61445 | 9.9 | 0.00% | 4 | 0 | 2026-07-11T14:16:23.240000 | PraisonAI before 4.6.78 contains arbitrary file write and command execution vuln | |
| CVE-2026-61439 | 7.5 | 0.00% | 2 | 0 | 2026-07-11T14:16:22.870000 | PraisonAI versions before 4.6.78 contain a prompt injection defense misconfigura | |
| CVE-2026-61429 | 8.5 | 0.00% | 2 | 0 | 2026-07-11T14:16:22.740000 | PraisonAI versions before 1.6.78 contain a server-side request forgery vulnerabi | |
| CVE-2026-60090 | 9.8 | 0.00% | 4 | 0 | 2026-07-11T14:16:22.353000 | PraisonAI before 4.6.78 fails to validate the caller-controlled dimension argume | |
| CVE-2026-57828 | None | 0.00% | 2 | 0 | 2026-07-11T12:30:29 | The Joomla extension Phoca Downloads is vulnerable to an authenticated arbitrary | |
| CVE-2026-57827 | None | 0.00% | 2 | 0 | 2026-07-11T12:30:28 | The Joomla extension RSFiles is vulnerable to an unauthenticated arbitrary file | |
| CVE-2026-1359 | 8.8 | 0.00% | 4 | 0 | 2026-07-11T09:34:25 | The Genolve – AI image AI video generation plugin for WordPress is vulnerable to | |
| CVE-2026-9282 | 7.5 | 0.40% | 4 | 0 | 2026-07-11T09:34:25 | The W3 Total Cache plugin for WordPress is vulnerable to Directory Traversal in | |
| CVE-2025-6784 | 8.8 | 0.31% | 2 | 0 | 2026-07-11T09:34:18 | The Code Engine plugin for WordPress is vulnerable to Remote Code Execution in a | |
| CVE-2026-4661 | 7.5 | 0.29% | 2 | 0 | 2026-07-11T07:16:46.513000 | The WP CTA – Sticky CTA Builder, Generate Leads, Promote Sales plugin for WordPr | |
| CVE-2026-15155 | 8.8 | 0.37% | 2 | 0 | 2026-07-11T07:16:46.170000 | The Essential Addons for Elementor – Popular Elementor Templates & Widgets plugi | |
| CVE-2026-14262 | 8.8 | 0.31% | 2 | 0 | 2026-07-11T06:31:24 | The Simple JWT Login – Allows you to use JWT on REST endpoints. plugin for WordP | |
| CVE-2026-2354 | 8.8 | 0.33% | 2 | 0 | 2026-07-11T06:31:24 | The Swiss Toolkit For WP plugin for WordPress is vulnerable to arbitrary file up | |
| CVE-2026-13114 | 7.2 | 0.23% | 2 | 0 | 2026-07-11T06:31:24 | The Motors – Car Dealership & Classified Listings Plugin plugin for WordPress is | |
| CVE-2026-7655 | 8.1 | 0.25% | 4 | 0 | 2026-07-11T06:16:10.657000 | The SureCart plugin for WordPress is vulnerable to privilege escalation via acco | |
| CVE-2026-13378 | 7.2 | 0.22% | 1 | 0 | 2026-07-11T06:16:08.930000 | The Form Vibes – Database Manager for Forms plugin for WordPress is vulnerable t | |
| CVE-2026-15335 | 7.5 | 0.39% | 3 | 0 | 2026-07-11T05:16:32.923000 | The Booking Package plugin for WordPress is vulnerable to generic SQL Injection | |
| CVE-2026-15338 | 7.5 | 0.32% | 2 | 0 | 2026-07-11T04:17:22.537000 | The LA-Studio Element Kit for Elementor plugin for WordPress is vulnerable to Lo | |
| CVE-2026-13353 | 8.8 | 0.38% | 2 | 0 | 2026-07-11T04:17:16.937000 | The WP Ultimate CSV Importer – WordPress Import & Export for CSV, XML & Excel pl | |
| CVE-2026-13756 | 8.8 | 0.31% | 3 | 0 | 2026-07-11T02:32:48 | The WP Grid Builder plugin for WordPress is vulnerable to Privilege Escalation i | |
| CVE-2026-42952 | 7.5 | 0.38% | 2 | 0 | 2026-07-11T00:31:56 | Previously, there was no throttling on repeated authentication attempts to the | |
| CVE-2026-55175 | 7.5 | 0.61% | 2 | 0 | 2026-07-10T23:16:48.487000 | Spinnaker is an open source, multi-cloud continuous delivery platform. Prior to | |
| CVE-2026-44383 | 7.5 | 0.56% | 2 | 0 | 2026-07-10T23:16:48.343000 | Multiple connections to the backend using the same charging station ID are allo | |
| CVE-2026-20744 | 9.8 | 0.52% | 4 | 0 | 2026-07-10T23:16:47.683000 | The charging station websocket endpoint accepts connections without proper auth | |
| CVE-2026-14480 | 9.9 | 0.62% | 2 | 0 | 2026-07-10T23:16:47.110000 | OpenPLC Runtime v3 contains an authenticated arbitrary file write vulnerability | |
| CVE-2026-55884 | 0 | 0.40% | 2 | 0 | 2026-07-10T22:16:44.423000 | Tilt defines dev environments as code for microservice apps on Kubernetes. From | |
| CVE-2026-44795 | 8.8 | 1.00% | 2 | 0 | 2026-07-10T22:16:41.717000 | Spinnaker is an open source, multi-cloud continuous delivery platform. Prior to | |
| CVE-2026-57807 | 9.8 | 0.43% | 3 | 0 | 2026-07-10T21:32:40 | Authentication Bypass Using an Alternate Path or Channel vulnerability in miniOr | |
| CVE-2026-61459 | 9.8 | 0.42% | 1 | 0 | 2026-07-10T21:32:32 | MCP Server Kubernetes before 3.9.0 contains an argument injection vulnerability | |
| CVE-2026-5801 | 9.8 | 0.40% | 1 | 0 | 2026-07-10T21:32:32 | Improper neutralization of special elements used in an SQL command ('SQL injecti | |
| CVE-2025-30007 | 8.8 | 2.08% | 2 | 0 | 2026-07-10T21:32:29 | HestiaCP before 1.9.5 contains an authenticated OS command injection vulnerabili | |
| CVE-2026-61444 | 9.1 | 0.39% | 2 | 0 | 2026-07-10T21:17:00.530000 | PraisonAI versions before 4.6.78 contain a code injection vulnerability in deplo | |
| CVE-2026-58122 | 9.1 | 0.29% | 2 | 0 | 2026-07-10T21:17:00.080000 | Hermes WebUI before 0.51.307 contains an authentication bypass vulnerability tha | |
| CVE-2026-57220 | 7.5 | 0.43% | 2 | 0 | 2026-07-10T21:16:59.180000 | RabbitMQ is a messaging and streaming broker. Prior to 4.2.6, the RabbitMQ strea | |
| CVE-2026-55827 | 7.5 | 0.45% | 1 | 0 | 2026-07-10T21:16:57.267000 | FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to 3.27.1 | |
| CVE-2026-55659 | 7.7 | 0.27% | 1 | 0 | 2026-07-10T21:16:56.577000 | Grist is spreadsheet software using Python as its formula language. Prior to 1.7 | |
| CVE-2026-55233 | 7.5 | 0.34% | 3 | 0 | 2026-07-10T21:16:55.760000 | OpenResty is a high performance web platform. From 1.29.2.1 to before 1.29.2.5, | |
| CVE-2026-55213 | 7.5 | 0.34% | 1 | 0 | 2026-07-10T21:16:55.497000 | h2o is an HTTP server with support for HTTP/1.x, HTTP/2 and HTTP/3. Prior to com | |
| CVE-2026-12761 | 9.8 | 0.46% | 2 | 0 | 2026-07-10T21:16:53.160000 | The miniOrange Social Login and Register (Discord, Google, Twitter, LinkedIn) pl | |
| CVE-2026-6212 | 8.8 | 0.25% | 2 | 0 | 2026-07-10T20:16:49.257000 | Authorization bypass through User-Controlled key vulnerability in Teracity Softw | |
| CVE-2026-61461 | 8.8 | 0.36% | 2 | 0 | 2026-07-10T20:16:49.137000 | Dify before 1.16.0-rc1 contains a SQL injection vulnerability in the MyScale vec | |
| CVE-2026-61460 | 8.8 | 0.28% | 1 | 0 | 2026-07-10T20:16:49.030000 | Krayin CRM through 2.2.3 contains an insecure direct object reference vulnerabil | |
| CVE-2026-57850 | 8.3 | 0.33% | 1 | 1 | 2026-07-10T20:16:48.663000 | RustDesk before 1.4.9 does not enforce a session's authorized connection scope o | |
| CVE-2026-55604 | 8.6 | 0.22% | 1 | 0 | 2026-07-10T19:20:32.893000 | DeepSeek MCP Server is an MCP server for DeepSeek V4. Starting in version 1.4.2 | |
| CVE-2026-59151 | 9.6 | 0.30% | 2 | 0 | 2026-07-10T19:20:15.180000 | Prowler is a cloud security platform. Prior to 5.30.3, Prowler's SAML authentica | |
| CVE-2026-33655 | 7.7 | 0.44% | 1 | 0 | 2026-07-10T19:17:58.040000 | New API is a large language mode (LLM) gateway and artificial intelligence (AI) | |
| CVE-2026-59723 | 8.8 | 0.14% | 1 | 0 | 2026-07-10T19:17:58.040000 | Cline is an autonomous coding agent as an SDK, IDE extension, or CLI assistant. | |
| CVE-2026-54063 | 7.5 | 0.57% | 2 | 0 | 2026-07-10T19:17:24.330000 | Excelize is a Go language library for reading and writing Microsoft Excel spread | |
| CVE-2026-51119 | 9.1 | 0.38% | 2 | 1 | 2026-07-10T19:17:23.787000 | An issue in Invixium IXM WEB v.2.3.85.25 allows an attacker to escalate privileg | |
| CVE-2026-39244 | 7.5 | 0.43% | 2 | 0 | 2026-07-10T19:17:23.250000 | adm-zip before 0.5.18 is vulnerable to denial of service via a crafted ZIP file | |
| CVE-2025-70796 | 7.5 | 0.56% | 2 | 0 | 2026-07-10T19:17:19.613000 | An unauthenticated path traversal vulnerability exists in the web management int | |
| CVE-2026-53657 | 8.2 | 0.20% | 2 | 0 | 2026-07-10T19:10:59.333000 | Lima launches Linux virtual machines, typically on macOS, for running containerd | |
| CVE-2026-59792 | 9.6 | 0.42% | 2 | 0 | 2026-07-10T18:51:28.750000 | In JetBrains IntelliJ IDEA before 2026.1.4, 2026.2 code execution via path trav | |
| CVE-2026-59793 | 8.8 | 0.34% | 2 | 0 | 2026-07-10T18:49:40.900000 | In JetBrains TeamCity before 2026.1.2 arbitrary file access was possible via the | |
| CVE-2026-60105 | 8.6 | 0.31% | 1 | 0 | 2026-07-10T18:46:32.250000 | Monsta FTP before 2.14.5 contains a server-side request forgery vulnerability in | |
| CVE-2026-12685 | 7.5 | 0.22% | 1 | 0 | 2026-07-10T18:33:19 | The EscortWP escortwp WordPress theme through 3.6.2 was distributed with a vendo | |
| CVE-2025-45422 | 8.1 | 0.45% | 1 | 1 | 2026-07-10T18:33:14 | Incorrect access control in Proximus b-box v8c.725A allows authenticated attacke | |
| CVE-2026-56291 | 9.8 | 0.84% | 5 | 0 | 2026-07-10T18:33:13 | The Joomla extension Balbooa Forms is vulnerable to an unauthenticated arbitrary | |
| CVE-2026-2397 | 9.8 | 0.27% | 2 | 0 | 2026-07-10T18:32:31 | Improper neutralization of special elements used in an SQL command ('SQL injecti | |
| CVE-2026-48939 | 9.8 | 1.50% | 3 | 2 | 2026-07-10T18:32:03 | A vulnerability in the iCagenda extension for Joomla allows the upload of arbitr | |
| CVE-2026-2398 | 8.8 | 0.25% | 2 | 1 | 2026-07-10T18:16:20.733000 | Authorization bypass through User-Controlled key vulnerability in Adam Retail Au | |
| CVE-2026-59796 | 8.1 | 0.25% | 2 | 0 | 2026-07-10T18:01:31.563000 | In JetBrains TeamCity before 2026.1.2 pipeline modification was possible due to | |
| CVE-2026-59795 | 8.1 | 0.27% | 2 | 0 | 2026-07-10T18:01:31.563000 | In JetBrains TeamCity before 2026.1.2 stored XSS via unauthenticated agent regis | |
| CVE-2026-33382 | 7.5 | 0.38% | 1 | 0 | 2026-07-10T18:01:31.563000 | Several Grafana API endpoints, some of them unauthenticated, do not limit the si | |
| CVE-2026-15143 | 9.3 | 0.26% | 3 | 0 | 2026-07-10T17:49:57.737000 | A flaw was found in the file_type content detector of guardrails-detectors. This | |
| CVE-2026-15378 | 9.3 | 0.42% | 2 | 0 | 2026-07-10T17:49:57.737000 | A flaw was found in the `guardrails-detectors` component. This vulnerability all | |
| CVE-2026-57026 | 7.5 | 0.46% | 1 | 0 | 2026-07-10T17:49:57.737000 | An Improper Validation of Syntactic Correctness of Input vulnerability in the SI | |
| CVE-2026-61437 | 7.8 | 0.13% | 2 | 0 | 2026-07-10T17:41:47.303000 | PraisonAI (pip package praisonaiagents) before 1.6.78 contains an unsafe dynamic | |
| CVE-2026-61434 | 8.8 | 0.58% | 2 | 0 | 2026-07-10T17:41:47.303000 | PraisonAI versions before 4.6.78 contain an allowlist bypass vulnerability in sh | |
| CVE-2026-56688 | 9.1 | 1.29% | 1 | 0 | 2026-07-10T17:17:01.213000 | Dell PowerFlex Manager, Version prior to 5.1.0.1, contain(s) an Improper Neutral | |
| CVE-2026-57589 | 7.4 | 0.12% | 8 | 0 | 2026-07-10T16:39:52.480000 | sys/kern/sysv_sem.c in OpenBSD through 7.9 has a use-after-free allowing local p | |
| CVE-2026-12597 | 8.1 | 0.42% | 1 | 0 | 2026-07-10T16:16:25.080000 | The LoginPress Pro plugin for WordPress is vulnerable to Authentication Bypass v | |
| CVE-2026-54003 | 0 | 0.55% | 1 | 0 | 2026-07-10T15:49:19.093000 | Kirby is an open-source content management system. Prior to 4.9.4 and from 5.4.4 | |
| CVE-2026-54771 | 8.1 | 0.39% | 1 | 0 | 2026-07-10T15:49:19.093000 | Langroid is a framework for building large-language-model-powered applications. | |
| CVE-2026-54769 | 10.0 | 0.91% | 1 | 0 | 2026-07-10T15:49:19.093000 | Langroid is a framework for building large-language-model-powered applications. | |
| CVE-2026-0288 | 7.5 | 0.56% | 2 | 0 | 2026-07-10T15:45:17.463000 | Multiple buffer overflow vulnerabilities in the User-ID Terminal Server Agent (T | |
| CVE-2026-14894 | 9.8 | 0.52% | 2 | 1 | 2026-07-10T15:43:30.330000 | The Super Forms – Drag & Drop Form Builder plugin for WordPress is vulnerable to | |
| CVE-2026-41880 | None | 1.33% | 1 | 0 | 2026-07-10T12:31:56 | R-SOFT DMS is vulnerable to OS Command Injection in the Optical Character Recogn | |
| CVE-2026-54423 | 8.2 | 0.52% | 1 | 0 | 2026-07-10T09:31:36 | In OpenStack Ironic before 37.0.1, an Ironic user with the ability to deploy nod | |
| CVE-2026-15300 | 9.1 | 0.35% | 1 | 0 | 2026-07-10T06:31:33 | The GEO my WP plugin for WordPress was vulnerable to SQL Injection via the 'dist | |
| CVE-2026-15070 | 8.8 | 0.26% | 1 | 0 | 2026-07-10T06:31:28 | The Salon Booking System – Free Version plugin for WordPress is vulnerable to Cr | |
| CVE-2026-54782 | 10.0 | 0.25% | 1 | 0 | 2026-07-10T05:16:37.520000 | CoreWCF is a port of the service side of Windows Communication Foundation (WCF) | |
| CVE-2026-46215 | 7.8 | 0.13% | 1 | 2 | 2026-07-10T05:16:37.103000 | In the Linux kernel, the following vulnerability has been resolved: drm: Set ol | |
| CVE-2026-15112 | 8.8 | 0.26% | 1 | 0 | 2026-07-10T05:16:28.503000 | Use after free in Ozone in Google Chrome prior to 150.0.7871.115 allowed a remot | |
| CVE-2026-12598 | 8.1 | 0.35% | 1 | 0 | 2026-07-10T00:31:34 | The LoginPress Pro plugin for WordPress is vulnerable to authentication bypass i | |
| CVE-2026-58123 | 9.8 | 0.93% | 2 | 0 | 2026-07-10T00:31:34 | Hermes WebUI before 0.51.788 contains an unauthenticated remote code execution v | |
| CVE-2026-12595 | 8.1 | 0.35% | 1 | 0 | 2026-07-10T00:31:34 | The LoginPress Pro plugin for WordPress is vulnerable to Authentication Bypass v | |
| CVE-2026-57023 | 7.5 | 0.46% | 1 | 0 | 2026-07-10T00:31:33 | An Improper Validation of Specified Quantity in Input vulnerability in the TCP p | |
| CVE-2026-58143 | 8.8 | 0.18% | 1 | 0 | 2026-07-10T00:31:33 | Cotonti Siena 0.9.26 and earlier contains a cross-site request forgery vulnerabi | |
| CVE-2026-44825 | 8.1 | 0.53% | 1 | 2 | 2026-07-09T20:59:06 | Hardcoded credentials in the Basic Authentication setup tool (bin/solr auth enab | |
| CVE-2026-47646 | 9.3 | 0.27% | 1 | 0 | 2026-07-09T19:17:05.330000 | Improper neutralization of input during web page generation ('cross-site scripti | |
| CVE-2026-58525 | 8.2 | 0.36% | 1 | 0 | 2026-07-09T17:16:53.867000 | Improper access control in Microsoft Edge (Chromium-based) allows an unauthorize | |
| CVE-2026-60002 | 7.7 | 0.26% | 1 | 0 | 2026-07-09T16:36:21.363000 | ssh in OpenSSH before 10.4 can have a use-after-free when a server changes its h | |
| CVE-2026-14245 | 9.8 | 0.59% | 1 | 0 | 2026-07-09T16:20:12.533000 | The miniOrange OTP Login, Verification and SMS Notifications plugin for WordPres | |
| CVE-2026-13698 | 7.5 | 0.55% | 1 | 0 | 2026-07-09T13:05:30.767000 | A memory leak in OpenVPN version 2.5.0 through 2.5.11, 2.6.0 through 2.6.20 and | |
| CVE-2026-15128 | 6.1 | 0.14% | 1 | 0 | 2026-07-09T12:31:30 | Inappropriate implementation in Forms in Google Chrome prior to 150.0.7871.115 a | |
| CVE-2026-15130 | 4.3 | 0.17% | 1 | 0 | 2026-07-09T12:31:30 | Insufficient policy enforcement in Navigation in Google Chrome prior to 150.0.78 | |
| CVE-2026-15129 | 8.8 | 0.22% | 1 | 0 | 2026-07-09T12:31:30 | Use after free in Views in Google Chrome prior to 150.0.7871.115 allowed a remot | |
| CVE-2026-9253 | 7.2 | 0.20% | 1 | 0 | 2026-07-09T12:30:35 | The WP Cost Estimation & Payment Forms Builder (E&P Forms) plugin for WordPress | |
| CVE-2026-46242 | 7.8 | 0.12% | 2 | 3 | 2026-07-09T03:33:50 | In the Linux kernel, the following vulnerability has been resolved: eventpoll: | |
| CVE-2026-43499 | 7.8 | 0.12% | 6 | 7 | 2026-07-09T00:32:11 | In the Linux kernel, the following vulnerability has been resolved: rtmutex: Us | |
| CVE-2026-6896 | 8.7 | 0.28% | 2 | 0 | 2026-07-08T21:30:42 | GitLab has remediated an issue in GitLab EE affecting all versions from 13.11 be | |
| CVE-2026-11405 | 9.8 | 0.67% | 5 | 1 | 2026-07-08T15:32:52 | The web server binary /bin/httpd contains a hidden backdoor authentication mecha | |
| CVE-2026-11903 | 8.0 | 0.23% | 1 | 0 | 2026-07-08T15:32:13 | Improper neutralization of input during web page generation ('cross-site scripti | |
| CVE-2026-59706 | 9.3 | 0.26% | 1 | 0 | 2026-07-08T15:28:15.630000 | mem0 contains unauthenticated config API endpoints that expose LLM API keys in p | |
| CVE-2026-56290 | 9.8 | 2.91% | 4 | 3 | 2026-07-08T13:37:08.977000 | The Joomla extension Page Builder CK is vulnerable to an unauthenticated arbitra | |
| CVE-2026-55255 | 8.4 | 0.47% | 4 | 1 | 2026-07-07T22:14:37 | ## Summary Insecure Direct Object Reference (IDOR) vulnerability in `/api/v1/re | |
| CVE-2026-48282 | 10.0 | 28.58% | 6 | 2 | template | 2026-07-07T21:32:33 | ColdFusion versions 2025.9, 2023.20 and earlier are affected by an Improper Limi |
| CVE-2026-24014 | 9.8 | 0.51% | 2 | 0 | 2026-07-07T17:49:04.433000 | Apache IoTDB DataNode’s internal RPC interface for creating Trigger instances us | |
| CVE-2026-55500 | 9.9 | 0.69% | 1 | 0 | 2026-07-06T21:37:49 | ## Summary The `/api/settings/database` endpoint allows full database export (c | |
| CVE-2026-53359 | None | 0.18% | 1 | 5 | 2026-07-06T21:30:34 | In the Linux kernel, the following vulnerability has been resolved: KVM: x86: F | |
| CVE-2026-13753 | 7.5 | 0.27% | 1 | 0 | 2026-07-06T20:16:29.737000 | A missing authorization vulnerability exists in the embedded webserver of HP Des | |
| CVE-2026-13768 | 10.0 | 0.56% | 1 | 2 | 2026-07-06T19:42:32.890000 | Gardyn devices expose a privileged iothubowner key. Access to this key will allo | |
| CVE-2026-14544 | 9.8 | 0.51% | 1 | 0 | 2026-07-03T09:31:35 | A flaw was found in HPLIP (HP Linux Imaging and Printing Software). This vulnera | |
| CVE-2026-31694 | 7.8 | 0.13% | 1 | 1 | 2026-07-02T15:16:59.813000 | In the Linux kernel, the following vulnerability has been resolved: fuse: rejec | |
| CVE-2026-23537 | 9.1 | 0.57% | 1 | 0 | 2026-07-02T12:32:04 | A vulnerability has been identified in the Feast Feature Server’s `/save-documen | |
| CVE-2026-8451 | 7.5 | 0.50% | 1 | 5 | 2026-07-01T18:31:24 | Insufficient input validation in NetScaler ADC and NetScaler Gateway leading to | |
| CVE-2026-41719 | 6.4 | 0.20% | 1 | 0 | 2026-06-30T22:16:54.697000 | A SpEL Injection vulnerability exists in the Spring Data KeyValue if unsanitized | |
| CVE-2026-41852 | 3.7 | 0.16% | 1 | 0 | 2026-06-27T21:16:30.530000 | A vulnerability in Spring Expression Language (SpEL) evaluation logic allows for | |
| CVE-2026-41851 | 5.3 | 0.36% | 1 | 0 | 2026-06-27T21:16:30.420000 | Applications which accept user-supplied Spring Expression Language (SpEL) expres | |
| CVE-2026-41850 | 7.5 | 0.36% | 1 | 0 | 2026-06-27T21:16:30.313000 | Applications that evaluate user-supplied Spring Expression Language (SpEL) expre | |
| CVE-2026-54329 | 8.5 | 0.39% | 2 | 0 | 2026-06-23T23:12:05 | ### Impact A cross-tenant data injection vulnerability was identified in the Sni | |
| CVE-2026-41729 | 8.1 | 0.39% | 1 | 1 | 2026-06-22T12:10:33.533000 | Spring Data REST is vulnerable to SpEL expression injection through map-typed pr | |
| CVE-2026-54527 | None | 0.28% | 1 | 0 | 2026-06-19T19:36:06 | Overview Amazon Web Services (AWS) Security has identified a stored cross-site | |
| CVE-2026-55229 | 7.5 | 0.36% | 2 | 0 | 2026-06-18T13:04:55 | **Summary** Server-Side Request Forgery (SSRF) vulnerability affecting the `/f | |
| CVE-2026-55405 | 7.6 | 0.35% | 2 | 0 | 2026-06-17T18:39:57 | ### Summary The MariaDB and pgvector embedding stores build metadata-filter SQL | |
| CVE-2026-33697 | 7.5 | 0.06% | 1 | 0 | 2026-06-17T10:37:56.487000 | Cocos AI is a confidential computing system for AI. The current implementation o | |
| CVE-2025-41253 | 7.5 | 0.43% | 1 | 0 | 2026-06-17T09:22:40.703000 | The following versions of Spring Cloud Gateway Server Webflux may be vulnerable | |
| CVE-2024-38808 | 4.3 | 0.54% | 1 | 0 | 2026-06-17T07:41:05.140000 | In Spring Framework versions 5.3.0 - 5.3.38 and older unsupported versions, it i | |
| CVE-2023-20861 | 6.5 | 0.97% | 1 | 0 | 2026-06-17T05:31:02.403000 | In Spring Framework versions 6.0.0 - 6.0.6, 5.3.0 - 5.3.25, 5.2.0.RELEASE - 5.2. | |
| CVE-2016-4977 | 8.8 | 79.18% | 1 | 2 | template | 2026-06-17T00:48:32.683000 | When processing authorization requests using the whitelabel views in Spring Secu |
| CVE-2026-50656 | 7.8 | 3.39% | 3 | 2 | 2026-06-16T21:31:57 | Microsoft is aware of an elevation of privilege in the Microsoft Malware Protect | |
| CVE-2026-48611 | 9.8 | 2.86% | 1 | 3 | template | 2026-06-12T06:33:21 | Improper authentication checks in the OAuth implementation allow account hijacki |
| CVE-2026-41717 | 8.1 | 0.33% | 1 | 0 | 2026-06-10T00:31:59 | Spring Data MongoDB contains a SpEL (Spring Expression Language) expression inje | |
| CVE-2026-47291 | 9.8 | 21.51% | 5 | 2 | 2026-06-09T18:30:58 | Integer overflow or wraparound in Windows HTTP.sys allows an unauthorized attack | |
| CVE-2026-41849 | 7.5 | 0.26% | 1 | 0 | 2026-06-09T06:32:06 | An integer overflow vulnerability exists in the evaluation logic of the Spring E | |
| CVE-2026-1207 | None | 9.44% | 2 | 1 | template | 2026-06-05T16:24:43 | An issue was discovered in 6.0 before 6.0.2, 5.2 before 5.2.11, and 4.2 before 4 |
| CVE-2026-38431 | 9.8 | 0.39% | 1 | 0 | 2026-05-06T18:31:37 | ERPNext v15.103.1 and before is vulnerable to Server-Side Template Injection (SS | |
| CVE-2025-49113 | 9.9 | 94.74% | 1 | 23 | template | 2026-02-20T21:48:11 | Roundcube Webmail before 1.5.10 and 1.6.x before 1.6.11 allows remote code execu |
| CVE-2025-3248 | None | 99.99% | 1 | 27 | template | 2025-11-05T20:12:46 | Langflow versions prior to 1.3.0 are susceptible to code injection in the /api/v |
| CVE-2022-22963 | 9.8 | 99.94% | 1 | 38 | template | 2025-10-22T19:18:03 | In Spring Cloud Function versions 3.1.6, 3.2.2 and older unsupported versions, w |
| CVE-2024-42009 | 9.3 | 83.39% | 1 | 7 | template | 2025-10-22T00:34:11 | A Cross-Site Scripting vulnerability in Roundcube through 1.5.7 and 1.6.x throug |
| CVE-2018-1260 | 9.8 | 8.35% | 1 | 1 | 2024-05-14T17:55:42 | Spring Security OAuth versions prior to 2.3.3, prior to 2.2.2, prior to 2.1.2, a | |
| CVE-2024-30326 | 7.8 | 0.91% | 1 | 0 | 2024-04-03T18:30:55 | Foxit PDF Reader Doc Object Use-After-Free Remote Code Execution Vulnerability. | |
| CVE-2018-1273 | 9.8 | 95.65% | 1 | 8 | template | 2024-03-20T14:20:44 | Spring Data Commons, versions prior to 1.13 to 1.13.10, 2.0 to 2.0.5, and older |
| CVE-2022-22947 | 10.0 | 98.25% | 1 | 69 | template | 2023-07-24T19:30:19 | In Spring Cloud Gateway versions prior to 3.1.1+ and 3.0.7+ , applications are v |
| CVE-2022-22950 | 6.5 | 35.83% | 1 | 0 | 2023-03-28T22:26:11 | In Spring Framework versions 5.3.0 - 5.3.16, 5.2.0.RELEASE - 5.2.19.RELEASE, and | |
| CVE-2017-8046 | 9.8 | 74.36% | 1 | 10 | template | 2023-02-02T05:01:22 | Malicious PATCH requests submitted to servers using Spring Data REST versions pr |
| CVE-2022-22980 | 9.0 | 16.90% | 1 | 8 | 2023-01-27T05:05:05 | A Spring Data MongoDB application is vulnerable to SpEL Injection when using @Qu | |
| CVE-2026-55687 | 0 | 0.39% | 2 | 0 | N/A | ||
| CVE-2026-55641 | 0 | 0.25% | 2 | 0 | N/A | ||
| CVE-2026-55638 | 0 | 0.37% | 2 | 0 | N/A | ||
| CVE-2026-56675 | 0 | 0.32% | 2 | 0 | N/A | ||
| CVE-2026-56668 | 0 | 0.23% | 2 | 0 | N/A | ||
| CVE-2026-55516 | 0 | 0.22% | 2 | 0 | N/A | ||
| CVE-2026-55377 | 0 | 0.26% | 2 | 0 | N/A | ||
| CVE-2026-52747 | 0 | 0.46% | 2 | 0 | N/A | ||
| CVE-2026-49213 | 0 | 0.32% | 2 | 0 | N/A | ||
| CVE-2026-55879 | 0 | 0.27% | 2 | 0 | N/A | ||
| CVE-2026-54149 | 0 | 0.38% | 2 | 0 | N/A | ||
| CVE-2026-58499 | 0 | 0.36% | 1 | 0 | N/A | ||
| CVE-2026-55789 | 0 | 0.30% | 1 | 0 | N/A | ||
| CVE-2026-12932 | 0 | 0.00% | 1 | 0 | N/A | ||
| CVE-2026-13117 | 0 | 0.00% | 1 | 0 | N/A | ||
| CVE-2026-12996 | 0 | 0.00% | 1 | 0 | N/A | ||
| CVE-2026-20896 | 0 | 0.78% | 2 | 3 | N/A | ||
| CVE-2026-59834 | 0 | 0.38% | 1 | 0 | N/A | ||
| CVE-2026-59832 | 0 | 0.32% | 1 | 0 | N/A | ||
| CVE-2026-54433 | 0 | 0.00% | 1 | 0 | N/A | ||
| CVE-2026-57155 | 0 | 0.00% | 1 | 0 | N/A |
updated 2026-07-12T06:16:42.863000
2 posts
CVE-2026-15481 (HIGH, CVSS 8.7) affects Trendnet TEW-635BRM <=1.00.03: Remote command injection via IPoA WAN setup. Exploit is public. Devices are EOL — replace hardware ASAP. https://radar.offseq.com/threat/cve-2026-15481-command-injection-in-trendnet-tew-6-0618f5678477012c #OffSeq #Vulnerability #Infosec #IoTSecurity
##CVE-2026-15481 (HIGH, CVSS 8.7) affects Trendnet TEW-635BRM <=1.00.03: Remote command injection via IPoA WAN setup. Exploit is public. Devices are EOL — replace hardware ASAP. https://radar.offseq.com/threat/cve-2026-15481-command-injection-in-trendnet-tew-6-0618f5678477012c #OffSeq #Vulnerability #Infosec #IoTSecurity
##updated 2026-07-11T21:16:23.903000
4 posts
HIGH severity CVE-2026-58281 in Microsoft Edge (Chromium-based) v1.0.0.0 lets attackers execute code remotely via deserialization of untrusted data. Patch from Microsoft is available. Full details: https://radar.offseq.com/threat/cve-2026-58281-cwe-502-deserialization-of-untruste-514c156fa174f1ed #OffSeq #Vuln #MicrosoftEdge #InfoSec
##🟠 CVE-2026-58281 - High (8.3)
Deserialization of untrusted data in Microsoft Edge (Chromium-based) allows an unauthorized attacker to execute code over a network.
🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-58281/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##HIGH severity CVE-2026-58281 in Microsoft Edge (Chromium-based) v1.0.0.0 lets attackers execute code remotely via deserialization of untrusted data. Patch from Microsoft is available. Full details: https://radar.offseq.com/threat/cve-2026-58281-cwe-502-deserialization-of-untruste-514c156fa174f1ed #OffSeq #Vuln #MicrosoftEdge #InfoSec
##🟠 CVE-2026-58281 - High (8.3)
Deserialization of untrusted data in Microsoft Edge (Chromium-based) allows an unauthorized attacker to execute code over a network.
🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-58281/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##updated 2026-07-11T15:30:29
2 posts
🟠 CVE-2026-56303 - High (7.5)
Capgo before 12.128.2 contains an information disclosure vulnerability in the find_apikey_by_value PostgreSQL function marked SECURITY DEFINER and executable by the anon role. Unauthenticated attackers can call this function via the /rest/v1/rpc/f...
🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-56303/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##🟠 CVE-2026-56303 - High (7.5)
Capgo before 12.128.2 contains an information disclosure vulnerability in the find_apikey_by_value PostgreSQL function marked SECURITY DEFINER and executable by the anon role. Unauthenticated attackers can call this function via the /rest/v1/rpc/f...
🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-56303/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##updated 2026-07-11T15:30:23
2 posts
🟠 CVE-2026-61426 - High (8.6)
PraisonAI before 1.7.3 contains an insecure default configuration that binds to all interfaces with no API key requirement and wildcard CORS. Unauthenticated attackers can call GET /api/agents to read agent instructions and system prompts, or POST...
🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-61426/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##🟠 CVE-2026-61426 - High (8.6)
PraisonAI before 1.7.3 contains an insecure default configuration that binds to all interfaces with no API key requirement and wildcard CORS. Unauthenticated attackers can call GET /api/agents to read agent instructions and system prompts, or POST...
🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-61426/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##updated 2026-07-11T14:16:23.377000
4 posts
CVE-2026-61447: CRITICAL RCE in MervinPraison PraisonAI (<1.6.78). Unauthenticated attackers can exploit prompt injection to run arbitrary Python, risking system compromise & secret leaks. No patch yet — restrict exposure & monitor use. https://radar.offseq.com/threat/cve-2026-61447-improper-control-of-generation-of-c-51bde3fa75b4e680 #OffSeq #CVE202661447 #infosec #RCE
##🔴 CVE-2026-61447 - Critical (10)
PraisonAI before 1.6.78 contains a remote code execution vulnerability in CodeAgent._execute_python() that executes LLM-generated Python code without AST validation, import restrictions, or sandbox enforcement. Attackers can influence LLM output t...
🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-61447/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##CVE-2026-61447: CRITICAL RCE in MervinPraison PraisonAI (<1.6.78). Unauthenticated attackers can exploit prompt injection to run arbitrary Python, risking system compromise & secret leaks. No patch yet — restrict exposure & monitor use. https://radar.offseq.com/threat/cve-2026-61447-improper-control-of-generation-of-c-51bde3fa75b4e680 #OffSeq #CVE202661447 #infosec #RCE
##🔴 CVE-2026-61447 - Critical (10)
PraisonAI before 1.6.78 contains a remote code execution vulnerability in CodeAgent._execute_python() that executes LLM-generated Python code without AST validation, import restrictions, or sandbox enforcement. Attackers can influence LLM output t...
🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-61447/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##updated 2026-07-11T14:16:23.240000
4 posts
CVE-2026-61445 (CRITICAL, CVSS 9.4): PraisonAI <4.6.78 suffers path traversal & command injection via AICoder chat. Attackers gain root, write files anywhere. Restrict access & monitor — no patch yet. https://radar.offseq.com/threat/cve-2026-61445-improper-limitation-of-a-pathname-t-188171a28e18ac5b #OffSeq #CVE202661445 #AIsecurity #infosec
##🔴 CVE-2026-61445 - Critical (9.9)
PraisonAI before 4.6.78 contains arbitrary file write and command execution vulnerabilities in the AICoder component due to missing path validation and command sanitization in LLM tool calls. Attackers can inject malicious prompts through the chat...
🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-61445/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##CVE-2026-61445 (CRITICAL, CVSS 9.4): PraisonAI <4.6.78 suffers path traversal & command injection via AICoder chat. Attackers gain root, write files anywhere. Restrict access & monitor — no patch yet. https://radar.offseq.com/threat/cve-2026-61445-improper-limitation-of-a-pathname-t-188171a28e18ac5b #OffSeq #CVE202661445 #AIsecurity #infosec
##🔴 CVE-2026-61445 - Critical (9.9)
PraisonAI before 4.6.78 contains arbitrary file write and command execution vulnerabilities in the AICoder component due to missing path validation and command sanitization in LLM tool calls. Attackers can inject malicious prompts through the chat...
🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-61445/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##updated 2026-07-11T14:16:22.870000
2 posts
🟠 CVE-2026-61439 - High (7.5)
PraisonAI versions before 4.6.78 contain a prompt injection defense misconfiguration where the block threshold defaults to CRITICAL severity, allowing HIGH-level threats to pass through unblocked. Attackers can submit single-vector prompt injectio...
🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-61439/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##🟠 CVE-2026-61439 - High (7.5)
PraisonAI versions before 4.6.78 contain a prompt injection defense misconfiguration where the block threshold defaults to CRITICAL severity, allowing HIGH-level threats to pass through unblocked. Attackers can submit single-vector prompt injectio...
🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-61439/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##updated 2026-07-11T14:16:22.740000
2 posts
🟠 CVE-2026-61429 - High (8.5)
PraisonAI versions before 1.6.78 contain a server-side request forgery vulnerability in the Crawl4AI/Chromium backend that allows attackers to bypass SSRF validation by exploiting DNS rebinding and HTTP redirects. Attackers can craft URLs that res...
🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-61429/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##🟠 CVE-2026-61429 - High (8.5)
PraisonAI versions before 1.6.78 contain a server-side request forgery vulnerability in the Crawl4AI/Chromium backend that allows attackers to bypass SSRF validation by exploiting DNS rebinding and HTTP redirects. Attackers can craft URLs that res...
🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-61429/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##updated 2026-07-11T14:16:22.353000
4 posts
CVE-2026-60090: PraisonAI <4.6.78 suffers CRITICAL SQL injection (CVSS 9.3). Unauthenticated attackers can drop tables or run arbitrary SQL/CQL via create_collection(). Restrict access & upgrade ASAP. https://radar.offseq.com/threat/cve-2026-60090-improper-neutralization-of-special--a49ea84d7839ded1 #OffSeq #infosec #SQLInjection #vuln
##🔴 CVE-2026-60090 - Critical (9.8)
PraisonAI before 4.6.78 fails to validate the caller-controlled dimension argument in the PGVector and Cassandra knowledge-store create_collection() backends. Although schema, keyspace, and collection-name identifiers are validated, the dimension ...
🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-60090/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##CVE-2026-60090: PraisonAI <4.6.78 suffers CRITICAL SQL injection (CVSS 9.3). Unauthenticated attackers can drop tables or run arbitrary SQL/CQL via create_collection(). Restrict access & upgrade ASAP. https://radar.offseq.com/threat/cve-2026-60090-improper-neutralization-of-special--a49ea84d7839ded1 #OffSeq #infosec #SQLInjection #vuln
##🔴 CVE-2026-60090 - Critical (9.8)
PraisonAI before 4.6.78 fails to validate the caller-controlled dimension argument in the PGVector and Cassandra knowledge-store create_collection() backends. Although schema, keyspace, and collection-name identifiers are validated, the dimension ...
🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-60090/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##updated 2026-07-11T12:30:29
2 posts
Phoca Download for Joomla (v1.0 – 6.1.2) suffers a CRITICAL vuln (CVE-2026-57828): Authenticated users can upload/execute malicious files (RCE risk). No official patch — limit upload access & monitor for updates. https://radar.offseq.com/threat/cve-2026-57828-cwe-434-unrestricted-upload-of-file-ad4cf46e851b4cfe #OffSeq #Joomla #Infosec #CVE202657828
##Phoca Download for Joomla (v1.0 – 6.1.2) suffers a CRITICAL vuln (CVE-2026-57828): Authenticated users can upload/execute malicious files (RCE risk). No official patch — limit upload access & monitor for updates. https://radar.offseq.com/threat/cve-2026-57828-cwe-434-unrestricted-upload-of-file-ad4cf46e851b4cfe #OffSeq #Joomla #Infosec #CVE202657828
##updated 2026-07-11T12:30:28
2 posts
CVE-2026-57827 (CRITICAL): RSFiles for Joomla v1.0 – 1.17.11 lets unauthenticated attackers upload & execute arbitrary files (RCE, CWE-434). No patch — restrict/disable the extension & monitor for updates. https://radar.offseq.com/threat/cve-2026-57827-cwe-434-unrestricted-upload-of-file-a1f2af3a6bb6ec32 #OffSeq #Joomla #RCE #Vuln
##CVE-2026-57827 (CRITICAL): RSFiles for Joomla v1.0 – 1.17.11 lets unauthenticated attackers upload & execute arbitrary files (RCE, CWE-434). No patch — restrict/disable the extension & monitor for updates. https://radar.offseq.com/threat/cve-2026-57827-cwe-434-unrestricted-upload-of-file-a1f2af3a6bb6ec32 #OffSeq #Joomla #RCE #Vuln
##updated 2026-07-11T09:34:25
4 posts
🟠 CVE-2026-1359 - High (8.8)
The Genolve – AI image AI video generation plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the genolve_setOpt() function in all versions up to, and including, 5.0.5. This makes it poss...
🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-1359/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##CVE-2026-1359: Genolve AI Business Graphics & Images plugin ≤5.0.5 (HIGH, CVSS 8.8) allows Contributor+ users to escalate privileges by altering WP options via flawed auth checks. Restrict permissions & monitor for patches. https://radar.offseq.com/threat/cve-2026-1359-cwe-863-incorrect-authorization-in-g-66f7bcdc4d2312b3 #OffSeq #WordPress #Vuln #Infosec
##🟠 CVE-2026-1359 - High (8.8)
The Genolve – AI image AI video generation plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the genolve_setOpt() function in all versions up to, and including, 5.0.5. This makes it poss...
🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-1359/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##CVE-2026-1359: Genolve AI Business Graphics & Images plugin ≤5.0.5 (HIGH, CVSS 8.8) allows Contributor+ users to escalate privileges by altering WP options via flawed auth checks. Restrict permissions & monitor for patches. https://radar.offseq.com/threat/cve-2026-1359-cwe-863-incorrect-authorization-in-g-66f7bcdc4d2312b3 #OffSeq #WordPress #Vuln #Infosec
##updated 2026-07-11T09:34:25
4 posts
🟠 CVE-2026-9282 - High (7.5)
The W3 Total Cache plugin for WordPress is vulnerable to Directory Traversal in all versions up to, and including, 2.9.4 via the setupSources function. This makes it possible for unauthenticated attackers to read the contents of arbitrary files on...
🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-9282/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##CVE-2026-9282: HIGH severity Path Traversal in boldgrid W3 Total Cache ≤2.9.4. Unauthenticated file read possible if manual minify is enabled and misconfigured. Review configs & monitor for abuse. https://radar.offseq.com/threat/cve-2026-9282-cwe-22-improper-limitation-of-a-path-7d4df905dce7a5ae #OffSeq #WordPress #Vuln #Cybersecurity
##🟠 CVE-2026-9282 - High (7.5)
The W3 Total Cache plugin for WordPress is vulnerable to Directory Traversal in all versions up to, and including, 2.9.4 via the setupSources function. This makes it possible for unauthenticated attackers to read the contents of arbitrary files on...
🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-9282/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##CVE-2026-9282: HIGH severity Path Traversal in boldgrid W3 Total Cache ≤2.9.4. Unauthenticated file read possible if manual minify is enabled and misconfigured. Review configs & monitor for abuse. https://radar.offseq.com/threat/cve-2026-9282-cwe-22-improper-limitation-of-a-path-7d4df905dce7a5ae #OffSeq #WordPress #Vuln #Cybersecurity
##updated 2026-07-11T09:34:18
2 posts
🟠 CVE-2025-6784 - High (8.8)
The Code Engine plugin for WordPress is vulnerable to Remote Code Execution in all versions up to, and including, 0.3.5 via the 'code-engine' shortcode. This is due to the plugin not restricting access to the code injecting functionality of the pl...
🔗 https://www.thehackerwire.com/vulnerability/CVE-2025-6784/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##🟠 CVE-2025-6784 - High (8.8)
The Code Engine plugin for WordPress is vulnerable to Remote Code Execution in all versions up to, and including, 0.3.5 via the 'code-engine' shortcode. This is due to the plugin not restricting access to the code injecting functionality of the pl...
🔗 https://www.thehackerwire.com/vulnerability/CVE-2025-6784/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##updated 2026-07-11T07:16:46.513000
2 posts
🟠 CVE-2026-4661 - High (7.5)
The WP CTA – Sticky CTA Builder, Generate Leads, Promote Sales plugin for WordPress is vulnerable to time-based blind SQL Injection via the 'fildname' parameter in all versions up to, and including, 2.2.2. This is due to insufficient escaping of...
🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-4661/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##🟠 CVE-2026-4661 - High (7.5)
The WP CTA – Sticky CTA Builder, Generate Leads, Promote Sales plugin for WordPress is vulnerable to time-based blind SQL Injection via the 'fildname' parameter in all versions up to, and including, 2.2.2. This is due to insufficient escaping of...
🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-4661/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##updated 2026-07-11T07:16:46.170000
2 posts
🟠 CVE-2026-15155 - High (8.8)
The Essential Addons for Elementor – Popular Elementor Templates & Widgets plugin for WordPress is vulnerable to Authenticated Account Takeover via Email Header Injection in all versions up to, and including, 6.6.10 This is due to insufficient s...
🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-15155/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##🟠 CVE-2026-15155 - High (8.8)
The Essential Addons for Elementor – Popular Elementor Templates & Widgets plugin for WordPress is vulnerable to Authenticated Account Takeover via Email Header Injection in all versions up to, and including, 6.6.10 This is due to insufficient s...
🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-15155/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##updated 2026-07-11T06:31:24
2 posts
🟠 CVE-2026-14262 - High (8.8)
The Simple JWT Login – Allows you to use JWT on REST endpoints. plugin for WordPress is vulnerable to Authentication Bypass to Privilege Escalation in all versions up to, and including, 3.6.6 via the `payload` parameter. The vulnerability exists...
🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-14262/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##🟠 CVE-2026-14262 - High (8.8)
The Simple JWT Login – Allows you to use JWT on REST endpoints. plugin for WordPress is vulnerable to Authentication Bypass to Privilege Escalation in all versions up to, and including, 3.6.6 via the `payload` parameter. The vulnerability exists...
🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-14262/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##updated 2026-07-11T06:31:24
2 posts
🟠 CVE-2026-2354 - High (8.8)
The Swiss Toolkit For WP plugin for WordPress is vulnerable to arbitrary file upload due to a flawed file type validation bypass in the `upload_extension_files()` function in all versions up to, and including, 1.4.6. The `upload_extension_files()`...
🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-2354/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##🟠 CVE-2026-2354 - High (8.8)
The Swiss Toolkit For WP plugin for WordPress is vulnerable to arbitrary file upload due to a flawed file type validation bypass in the `upload_extension_files()` function in all versions up to, and including, 1.4.6. The `upload_extension_files()`...
🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-2354/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##updated 2026-07-11T06:31:24
2 posts
Motors – Car Dealership & Classified Listings Plugin (≤1.4.112) hit by HIGH severity stored XSS (CVE-2026-13114). Unauthenticated attackers can inject JS via comments/biographical fields. Patch pending; restrict inputs. https://radar.offseq.com/threat/cve-2026-13114-cwe-79-improper-neutralization-of-i-07a2a4c5849ec829 #OffSeq #WordPress #XSS 🛡️
##Motors – Car Dealership & Classified Listings Plugin (≤1.4.112) hit by HIGH severity stored XSS (CVE-2026-13114). Unauthenticated attackers can inject JS via comments/biographical fields. Patch pending; restrict inputs. https://radar.offseq.com/threat/cve-2026-13114-cwe-79-improper-neutralization-of-i-07a2a4c5849ec829 #OffSeq #WordPress #XSS 🛡️
##updated 2026-07-11T06:16:10.657000
4 posts
🟠 CVE-2026-7655 - High (8.1)
The SureCart plugin for WordPress is vulnerable to privilege escalation via account takeover in versions up to, and including, 4.2.3. This is due to the plugin not properly validating a user's identity prior to updating their details like email du...
🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-7655/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##CVE-2026-7655 | HIGH severity in SureCart WordPress plugin (≤4.2.3): Unauthenticated attackers can hijack accounts, including admins, by exploiting weak email validation in webhook sync. Restrict webhook access, monitor activity. https://radar.offseq.com/threat/cve-2026-7655-cwe-640-weak-password-recovery-mecha-a10bd5499dcec0f1 #OffSeq #WordPress #Infosec #Vuln
##🟠 CVE-2026-7655 - High (8.1)
The SureCart plugin for WordPress is vulnerable to privilege escalation via account takeover in versions up to, and including, 4.2.3. This is due to the plugin not properly validating a user's identity prior to updating their details like email du...
🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-7655/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##CVE-2026-7655 | HIGH severity in SureCart WordPress plugin (≤4.2.3): Unauthenticated attackers can hijack accounts, including admins, by exploiting weak email validation in webhook sync. Restrict webhook access, monitor activity. https://radar.offseq.com/threat/cve-2026-7655-cwe-640-weak-password-recovery-mecha-a10bd5499dcec0f1 #OffSeq #WordPress #Infosec #Vuln
##updated 2026-07-11T06:16:08.930000
1 posts
CVE-2026-13378 - Stored XSS in Form Vibes WordPress plugin. Unauthenticated attackers can inject scripts via Contact Form 7 fields. CVSS 7.2. No patch available. Disable or replace immediately. #CVE #WordPress #infosec
##updated 2026-07-11T05:16:32.923000
3 posts
CVE-2026-15335 - SQLi in Booking Package for WordPress. Unauthenticated attackers can extract sensitive DB info. CVSS 7.5. No patch available. Disable or replace immediately. #CVE #WordPress #infosec
##🟠 CVE-2026-15335 - High (7.5)
The Booking Package plugin for WordPress is vulnerable to generic SQL Injection via 'email' Form Parameter (form) in all versions up to, and including, 1.7.20 due to insufficient escaping on the user supplied parameter and lack of sufficient prepa...
🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-15335/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##🟠 CVE-2026-15335 - High (7.5)
The Booking Package plugin for WordPress is vulnerable to generic SQL Injection via 'email' Form Parameter (form) in all versions up to, and including, 1.7.20 due to insufficient escaping on the user supplied parameter and lack of sufficient prepa...
🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-15335/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##updated 2026-07-11T04:17:22.537000
2 posts
🟠 CVE-2026-15338 - High (7.5)
The LA-Studio Element Kit for Elementor plugin for WordPress is vulnerable to Local File Inclusion in all versions up to, and including, 1.6.1 via the get_type_template function. This makes it possible for authenticated attackers, with contributor...
🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-15338/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##🟠 CVE-2026-15338 - High (7.5)
The LA-Studio Element Kit for Elementor plugin for WordPress is vulnerable to Local File Inclusion in all versions up to, and including, 1.6.1 via the get_type_template function. This makes it possible for authenticated attackers, with contributor...
🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-15338/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##updated 2026-07-11T04:17:16.937000
2 posts
🟠 CVE-2026-13353 - High (8.8)
The WP Ultimate CSV Importer – WordPress Import & Export for CSV, XML & Excel plugin for WordPress is vulnerable to Remote Code Execution in all versions up to, and including, 8.0.1 via the 'MappedFields' parameter. This is due to missing capabi...
🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-13353/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##🟠 CVE-2026-13353 - High (8.8)
The WP Ultimate CSV Importer – WordPress Import & Export for CSV, XML & Excel plugin for WordPress is vulnerable to Remote Code Execution in all versions up to, and including, 8.0.1 via the 'MappedFields' parameter. This is due to missing capabi...
🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-13353/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##updated 2026-07-11T02:32:48
3 posts
CVE-2026-13756 - Privilege Escalation in WP Grid Builder plugin. Subscriber+ can become Admin via REST API flaw. CVSS 8.8. No patch available. Disable or restrict access immediately. #CVE #WordPress #infosec
##🟠 CVE-2026-13756 - High (8.8)
The WP Grid Builder plugin for WordPress is vulnerable to Privilege Escalation in all versions up to, and including, 2.3.3. This is due to missing authorization and meta key validation in the `update()` handler for the `/wp-json/wpgb/v2/metadata` ...
🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-13756/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##🟠 CVE-2026-13756 - High (8.8)
The WP Grid Builder plugin for WordPress is vulnerable to Privilege Escalation in all versions up to, and including, 2.3.3. This is due to missing authorization and meta key validation in the `update()` handler for the `/wp-json/wpgb/v2/metadata` ...
🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-13756/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##updated 2026-07-11T00:31:56
2 posts
🟠 CVE-2026-42952 - High (7.5)
Previously, there was no throttling on repeated authentication attempts
to the charging station backend, which could allow an attacker to
execute a denial-of-service attack.
🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-42952/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##🟠 CVE-2026-42952 - High (7.5)
Previously, there was no throttling on repeated authentication attempts
to the charging station backend, which could allow an attacker to
execute a denial-of-service attack.
🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-42952/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##updated 2026-07-10T23:16:48.487000
2 posts
🟠 CVE-2026-55175 - High (7.5)
Spinnaker is an open source, multi-cloud continuous delivery platform. Prior to versions 2026.1.1, 2026.0.3, 2025.4.4, and 2025.3.4 on their respective release lines, Kustomize bake operations allow unsafe YAML tag processing in rosco manifests. T...
🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-55175/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##🟠 CVE-2026-55175 - High (7.5)
Spinnaker is an open source, multi-cloud continuous delivery platform. Prior to versions 2026.1.1, 2026.0.3, 2025.4.4, and 2025.3.4 on their respective release lines, Kustomize bake operations allow unsafe YAML tag processing in rosco manifests. T...
🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-55175/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##updated 2026-07-10T23:16:48.343000
2 posts
🟠 CVE-2026-44383 - High (7.5)
Multiple connections to the backend using the same charging station ID
are allowed, which could allow an attacker to deploy multiple instances
of malicious OCPP clients to overwhelm the backend.
🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-44383/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##🟠 CVE-2026-44383 - High (7.5)
Multiple connections to the backend using the same charging station ID
are allowed, which could allow an attacker to deploy multiple instances
of malicious OCPP clients to overwhelm the backend.
🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-44383/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##updated 2026-07-10T23:16:47.683000
4 posts
🔴 CVE-2026-20744 - Critical (9.8)
The charging station websocket endpoint accepts connections without
proper authentication, which could lead to privilege escalation.
🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-20744/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##CVE-2026-20744 (CRITICAL, CVSS 9.8): Hydro-Québec Le Circuit Electrique backend websocket lacks auth, allowing privilege escalation. No patch available. Restrict access & monitor connections. https://radar.offseq.com/threat/cve-2026-20744-cwe-284-in-hydro-qubec-le-circuit-e-bd15f6a4c1c3953e #OffSeq #CVE202620744 #ICS #Vulnerability
##🔴 CVE-2026-20744 - Critical (9.8)
The charging station websocket endpoint accepts connections without
proper authentication, which could lead to privilege escalation.
🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-20744/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##CVE-2026-20744 (CRITICAL, CVSS 9.8): Hydro-Québec Le Circuit Electrique backend websocket lacks auth, allowing privilege escalation. No patch available. Restrict access & monitor connections. https://radar.offseq.com/threat/cve-2026-20744-cwe-284-in-hydro-qubec-le-circuit-e-bd15f6a4c1c3953e #OffSeq #CVE202620744 #ICS #Vulnerability
##updated 2026-07-10T23:16:47.110000
2 posts
🔴 CVE-2026-14480 - Critical (9.9)
OpenPLC Runtime v3 contains an authenticated arbitrary file write
vulnerability in the legacy web UI program‑upload workflow. The
application stores an attacker‑supplied filename (prog_file) directly
into the Programs.File database field an...
🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-14480/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##🔴 CVE-2026-14480 - Critical (9.9)
OpenPLC Runtime v3 contains an authenticated arbitrary file write
vulnerability in the legacy web UI program‑upload workflow. The
application stores an attacker‑supplied filename (prog_file) directly
into the Programs.File database field an...
🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-14480/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##updated 2026-07-10T22:16:44.423000
2 posts
CVE-2026-55884: tilt-dev tilt (0.20.8 – 0.37.3) has a CRITICAL auth bypass. Exposes dev resources & session tokens if HUD is bound to non-loopback. Upgrade to 0.37.4 ASAP. https://radar.offseq.com/threat/cve-2026-55884-cwe-306-missing-authentication-for--2fea89f00bf19b8f #OffSeq #Vulnerability #Kubernetes #Infosec
##CVE-2026-55884: tilt-dev tilt (0.20.8 – 0.37.3) has a CRITICAL auth bypass. Exposes dev resources & session tokens if HUD is bound to non-loopback. Upgrade to 0.37.4 ASAP. https://radar.offseq.com/threat/cve-2026-55884-cwe-306-missing-authentication-for--2fea89f00bf19b8f #OffSeq #Vulnerability #Kubernetes #Infosec
##updated 2026-07-10T22:16:41.717000
2 posts
🟠 CVE-2026-44795 - High (8.8)
Spinnaker is an open source, multi-cloud continuous delivery platform. Prior to 2026.1.0, 2026.0.3, 2025.4.4, and 2025.3.3, unsafe YAML processing bypasses safe deserialization when using CloudFormation deployments or CloudFoundry baking. The use ...
🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-44795/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##🟠 CVE-2026-44795 - High (8.8)
Spinnaker is an open source, multi-cloud continuous delivery platform. Prior to 2026.1.0, 2026.0.3, 2025.4.4, and 2025.3.3, unsafe YAML processing bypasses safe deserialization when using CloudFormation deployments or CloudFoundry baking. The use ...
🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-44795/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##updated 2026-07-10T21:32:40
3 posts
CVE-2026-57807 | CRITICAL auth bypass in miniOrange OAuth SSO (<=38.5.8). Exploit via password recovery threatens full compromise. No patch yet — monitor for vendor updates. https://radar.offseq.com/threat/cve-2026-57807-cwe-288-authentication-bypass-using-85e6dbb16ac48da8 #OffSeq #CVE202657807 #OAuth #Security
##CVE-2026-57807 | CRITICAL auth bypass in miniOrange OAuth SSO (<=38.5.8). Exploit via password recovery threatens full compromise. No patch yet — monitor for vendor updates. https://radar.offseq.com/threat/cve-2026-57807-cwe-288-authentication-bypass-using-85e6dbb16ac48da8 #OffSeq #CVE202657807 #OAuth #Security
##🔴 CVE-2026-57807 - Critical (9.8)
Authentication Bypass Using an Alternate Path or Channel vulnerability in miniOrange Security Software Pvt Ltd. OAuth Single Sign On - SSO (OAuth Client) allows Password Recovery Exploitation.
This issue affects OAuth Single Sign On - SSO (OAuth ...
🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-57807/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##updated 2026-07-10T21:32:32
1 posts
🔴 CVE-2026-61459 - Critical (9.8)
MCP Server Kubernetes before 3.9.0 contains an argument injection vulnerability in structured tools (kubectl_get, kubectl_describe, kubectl_delete) that allows attackers to bypass the assertNoDangerousFlags security check by supplying resourceType...
🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-61459/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##updated 2026-07-10T21:32:32
1 posts
🔴 CVE-2026-5801 - Critical (9.8)
Improper neutralization of special elements used in an SQL command ('SQL injection') vulnerability in Semtek Informatics Software Consulting Trade Ltd. Co. SEM-PMP allows Command Line Execution through SQL Injection.
This issue affects SEM-PMP: t...
🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-5801/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##updated 2026-07-10T21:32:29
2 posts
🟠 CVE-2025-30007 - High (8.8)
HestiaCP before 1.9.5 contains an authenticated OS command injection vulnerability that allows low-privilege authenticated users to execute arbitrary commands as root by injecting a single-quote character into unvalidated DNS record types. Attacke...
🔗 https://www.thehackerwire.com/vulnerability/CVE-2025-30007/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##🟠 CVE-2025-30007 - High (8.8)
HestiaCP before 1.9.5 contains an authenticated OS command injection vulnerability that allows low-privilege authenticated users to execute arbitrary commands as root by injecting a single-quote character into unvalidated DNS record types. Attacke...
🔗 https://www.thehackerwire.com/vulnerability/CVE-2025-30007/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##updated 2026-07-10T21:17:00.530000
2 posts
🔴 CVE-2026-61444 - Critical (9.1)
PraisonAI versions before 4.6.78 contain a code injection vulnerability in deploy/api.py where the agents_file parameter is directly interpolated into an f-string without sanitization. Attackers can inject arbitrary Python code that executes when ...
🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-61444/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##🔴 CVE-2026-61444 - Critical (9.1)
PraisonAI versions before 4.6.78 contain a code injection vulnerability in deploy/api.py where the agents_file parameter is directly interpolated into an f-string without sanitization. Attackers can inject arbitrary Python code that executes when ...
🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-61444/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##updated 2026-07-10T21:17:00.080000
2 posts
CVE-2026-58122 (CRITICAL): Hermes WebUI <0.51.307 lets remote attackers bypass local IP restrictions via spoofed X-Forwarded-For — enabling SSRF, config overwrite, and OAuth token theft. Restrict header spoofing & monitor access. https://radar.offseq.com/threat/cve-2026-58122-use-of-less-trusted-source-in-nesqu-c1a99cec42d28f9e #OffSeq #CVE202658122 #infosec #SSRF
##🔴 CVE-2026-58122 - Critical (9.1)
Hermes WebUI before 0.51.307 contains an authentication bypass vulnerability that allows unauthenticated remote attackers to circumvent local-origin IP restrictions on onboarding endpoints by supplying a spoofed X-Forwarded-For header with a loopb...
🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-58122/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##updated 2026-07-10T21:16:59.180000
2 posts
CVE-2026-57220 - DoS in RabbitMQ. Unauthenticated remote client can consume broker memory via oversized stream frames. CVSS 7.5. Update to 4.2.6 now. #CVE #RabbitMQ #infosec
##🟠 CVE-2026-57220 - High (7.5)
RabbitMQ is a messaging and streaming broker. Prior to 4.2.6, the RabbitMQ stream listener does not enforce the configured stream frame-size limit while assembling frames during authentication and before Tune negotiation, allowing an unauthenticat...
🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-57220/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##updated 2026-07-10T21:16:57.267000
1 posts
🟠 CVE-2026-55827 - High (7.5)
FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to 3.27.1, FreeRDP clients launched with the non-default /cache:codec:rfx option pass desktop stride and height to RemoteFX decoding for Cache Bitmap V3 data while allocating b...
🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-55827/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##updated 2026-07-10T21:16:56.577000
1 posts
🟠 CVE-2026-55659 - High (7.7)
Grist is spreadsheet software using Python as its formula language. Prior to 1.7.15, several server-rendered Grist pages embedded user-controlled values into the page and into inline scripts without fully escaping them, allowing cross-site scripti...
🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-55659/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##updated 2026-07-10T21:16:55.760000
3 posts
🟠 CVE-2026-55233 - High (7.5)
OpenResty is a high performance web platform. From 1.29.2.1 to before 1.29.2.5, an out-of-bounds write vulnerability exists in the upstream PROXY protocol v2 implementation. When OpenResty is configured to send PROXY protocol version 2 headers to ...
🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-55233/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##CVE-2026-55233 - DoS via OOB write in OpenResty PROXY protocol v2. CVSS 7.5. Workers crash when sending PROXY headers. Update to 1.29.2.5 immediately. #CVE #OpenResty #infosec
##🟠 CVE-2026-55233 - High (7.5)
OpenResty is a high performance web platform. From 1.29.2.1 to before 1.29.2.5, an out-of-bounds write vulnerability exists in the upstream PROXY protocol v2 implementation. When OpenResty is configured to send PROXY protocol version 2 headers to ...
🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-55233/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##updated 2026-07-10T21:16:55.497000
1 posts
🟠 CVE-2026-55213 - High (7.5)
h2o is an HTTP server with support for HTTP/1.x, HTTP/2 and HTTP/3. Prior to commit edd7a120bfc4af11ac0cbebce2a43cc1f93f9af1, when h2o processes a QPACK instruction sent from the peer over HTTP/3, lib/http3/qpack.c might allocate an on-stack buffe...
🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-55213/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##updated 2026-07-10T21:16:53.160000
2 posts
🔴 CVE-2026-12761 - Critical (9.8)
The miniOrange Social Login and Register (Discord, Google, Twitter, LinkedIn) plugin for WordPress is vulnerable to authentication bypass leading to account takeover in versions up to and including 7.7.0. This is due to the Profile Completion flow...
🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-12761/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##🔴 CVE-2026-12761 - Critical (9.8)
The miniOrange Social Login and Register (Discord, Google, Twitter, LinkedIn) plugin for WordPress is vulnerable to authentication bypass leading to account takeover in versions up to and including 7.7.0. This is due to the Profile Completion flow...
🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-12761/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##updated 2026-07-10T20:16:49.257000
2 posts
🟠 CVE-2026-6212 - High (8.8)
Authorization bypass through User-Controlled key vulnerability in Teracity Software Technologies Inc. TeraMIS allows Privilege Abuse.
This issue affects TeraMIS: from V03.26.01.14 through 30.04.2026.
🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-6212/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##🟠 CVE-2026-6212 - High (8.8)
Authorization bypass through User-Controlled key vulnerability in Teracity Software Technologies Inc. TeraMIS allows Privilege Abuse.
This issue affects TeraMIS: from V03.26.01.14 through 30.04.2026.
🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-6212/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##updated 2026-07-10T20:16:49.137000
2 posts
🟠 CVE-2026-61461 - High (8.8)
Dify before 1.16.0-rc1 contains a SQL injection vulnerability in the MyScale vector store backend that allows attackers to execute arbitrary SQL by supplying unsanitized search parameters to the search_by_full_text method without escaping or param...
🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-61461/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##🟠 CVE-2026-61461 - High (8.8)
Dify before 1.16.0-rc1 contains a SQL injection vulnerability in the MyScale vector store backend that allows attackers to execute arbitrary SQL by supplying unsanitized search parameters to the search_by_full_text method without escaping or param...
🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-61461/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##updated 2026-07-10T20:16:49.030000
1 posts
🟠 CVE-2026-61460 - High (8.8)
Krayin CRM through 2.2.3 contains an insecure direct object reference vulnerability in LeadController, PersonController, OrganizationController, QuoteController, and ActivityController that allows authenticated users to edit, update, or delete rec...
🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-61460/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##updated 2026-07-10T20:16:48.663000
1 posts
1 repos
🟠 CVE-2026-57850 - High (8.3)
RustDesk before 1.4.9 does not enforce a session's authorized connection scope on the server side, so a peer granted a limited session type (FileTransfer, PortForward, ViewCamera, or Terminal) can send control messages and login options reserved f...
🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-57850/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##updated 2026-07-10T19:20:32.893000
1 posts
🟠 CVE-2026-55604 - High (8.6)
DeepSeek MCP Server is an MCP server for DeepSeek V4. Starting in version 1.4.2 and prior to version 1.7.0, the process-global `SessionStore` accepts caller-supplied `session_id` values without binding them to any authenticated principal or transp...
🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-55604/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##updated 2026-07-10T19:20:15.180000
2 posts
🔴 CVE-2026-59151 - Critical (9.6)
Prowler is a cloud security platform. Prior to 5.30.3, Prowler's SAML authentication flow trusted the email domain asserted in a SAMLResponse when deciding which tenant should receive the final token, and the ACS finish logic in api/src/backend/ap...
🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-59151/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##🔴 CVE-2026-59151 - Critical (9.6)
Prowler is a cloud security platform. Prior to 5.30.3, Prowler's SAML authentication flow trusted the email domain asserted in a SAMLResponse when deciding which tenant should receive the final token, and the ACS finish logic in api/src/backend/ap...
🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-59151/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##updated 2026-07-10T19:17:58.040000
1 posts
🟠 CVE-2026-33655 - High (7.7)
New API is a large language mode (LLM) gateway and artificial intelligence (AI) asset management system. Prior to 0.12.0-alpha.1, the default SSRF protection configuration did not apply IP filtering to hostnames; with ApplyIPFilterForDomain disabl...
🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-33655/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##updated 2026-07-10T19:17:58.040000
1 posts
🟠 CVE-2026-59723 - High (8.8)
Cline is an autonomous coding agent as an SDK, IDE extension, or CLI assistant. Prior to 3.0.30, the Cline Hub dashboard server launched by the cline dashboard command accepts WebSocket connections on the /browser endpoint without validating the O...
🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-59723/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##updated 2026-07-10T19:17:24.330000
2 posts
🟠 CVE-2026-54063 - High (7.5)
Excelize is a Go language library for reading and writing Microsoft Excel spreadsheets. Prior to 2.11.0, the checkSheet() function in github.com/xuri/excelize/v2 uses an attacker-controlled XML attribute value directly as the length argument to m...
🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-54063/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##🟠 CVE-2026-54063 - High (7.5)
Excelize is a Go language library for reading and writing Microsoft Excel spreadsheets. Prior to 2.11.0, the checkSheet() function in github.com/xuri/excelize/v2 uses an attacker-controlled XML attribute value directly as the length argument to m...
🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-54063/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##updated 2026-07-10T19:17:23.787000
2 posts
1 repos
🔴 CVE-2026-51119 - Critical (9.1)
An issue in Invixium IXM WEB v.2.3.85.25 allows an attacker to escalate privileges via the /SystemUsers/CreateAppUser components
🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-51119/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##🔴 CVE-2026-51119 - Critical (9.1)
An issue in Invixium IXM WEB v.2.3.85.25 allows an attacker to escalate privileges via the /SystemUsers/CreateAppUser components
🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-51119/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##updated 2026-07-10T19:17:23.250000
2 posts
🟠 CVE-2026-39244 - High (7.5)
adm-zip before 0.5.18 is vulnerable to denial of service via a crafted ZIP file with a manipulated uncompressed size header field. In zipEntry.js line 103, Buffer.alloc(_centralHeader.size) allocates memory based on the declared uncompressed size ...
🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-39244/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##🟠 CVE-2026-39244 - High (7.5)
adm-zip before 0.5.18 is vulnerable to denial of service via a crafted ZIP file with a manipulated uncompressed size header field. In zipEntry.js line 103, Buffer.alloc(_centralHeader.size) allocates memory based on the declared uncompressed size ...
🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-39244/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##updated 2026-07-10T19:17:19.613000
2 posts
🟠 CVE-2025-70796 - High (7.5)
An unauthenticated path traversal vulnerability exists in the web management interface of WTI (Wireless Technology, Inc.) version 3.5.0.r 2024/05/24 00:00:00. An unauthenticated attacker can craft malicious HTTP requests containing traversal seque...
🔗 https://www.thehackerwire.com/vulnerability/CVE-2025-70796/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##🟠 CVE-2025-70796 - High (7.5)
An unauthenticated path traversal vulnerability exists in the web management interface of WTI (Wireless Technology, Inc.) version 3.5.0.r 2024/05/24 00:00:00. An unauthenticated attacker can craft malicious HTTP requests containing traversal seque...
🔗 https://www.thehackerwire.com/vulnerability/CVE-2025-70796/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##updated 2026-07-10T19:10:59.333000
2 posts
🟠 CVE-2026-53657 - High (8.2)
Lima launches Linux virtual machines, typically on macOS, for running containerd. Prior to 2.1.3, on an instance of Lima running with the qemu driver, an arbitrary user in the VM could access /run/lima-guestagent.sock when the guest agent is enabl...
🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-53657/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##🟠 CVE-2026-53657 - High (8.2)
Lima launches Linux virtual machines, typically on macOS, for running containerd. Prior to 2.1.3, on an instance of Lima running with the qemu driver, an arbitrary user in the VM could access /run/lima-guestagent.sock when the guest agent is enabl...
🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-53657/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##updated 2026-07-10T18:51:28.750000
2 posts
🔴 CVE-2026-59792 - Critical (9.6)
In JetBrains IntelliJ IDEA before 2026.1.4,
2026.2 code execution via path traversal in project workspace ID handling was possible
🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-59792/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##🔴 CVE-2026-59792 - Critical (9.6)
In JetBrains IntelliJ IDEA before 2026.1.4,
2026.2 code execution via path traversal in project workspace ID handling was possible
🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-59792/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##updated 2026-07-10T18:49:40.900000
2 posts
🟠 CVE-2026-59793 - High (8.8)
In JetBrains TeamCity before 2026.1.2 arbitrary file access was possible via the Perforce VCS integration
🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-59793/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##🟠 CVE-2026-59793 - High (8.8)
In JetBrains TeamCity before 2026.1.2 arbitrary file access was possible via the Perforce VCS integration
🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-59793/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##updated 2026-07-10T18:46:32.250000
1 posts
🟠 CVE-2026-60105 - High (8.6)
Monsta FTP before 2.14.5 contains a server-side request forgery vulnerability in the fetchRemoteFile action caused by an incomplete IP blocklist check in the isBlockedIP() function, which fails to detect embedded IPv4 addresses within IPv4-mapped ...
🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-60105/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##updated 2026-07-10T18:33:19
1 posts
CVE-2026-12685 | EscortWP ≤3.6.2: CRITICAL backdoor (CWE-912) enables unauthenticated data wipe & exfiltrates site/admin info via hard-coded key. No patch available — replace theme & monitor vendor. https://radar.offseq.com/threat/cve-2026-12685-cwe-912-hidden-functionality-in-esc-2444ba57a4fc890e #OffSeq #WordPress #Infosec #CVE2026_12685
##updated 2026-07-10T18:33:14
1 posts
1 repos
CVE-2025-45422: Proximus b-box UPnP Persistence & Access Control Bypass https://github.com/Cedrico03/CVE-2025-45422---Bbox
##updated 2026-07-10T18:33:13
5 posts
🔴 New security advisory:
CVE-2026-56291 affects Balbooa Forms.
• Impact: Remote code execution or complete system compromise possible
• Risk: Attackers can gain full control of affected systems
• Mitigation: Patch immediately or isolate affected systems
Full breakdown:
https://www.yazoul.net/advisory/cve/cve-2026-56291-balbooa-forms-unauthenticated-rce-exploited
🚨 [CISA-2026:0710] CISA Adds 2 Known Exploited Vulnerabilities to Catalog (https://secdb.nttzen.cloud/security-advisory/detail/CISA-2026:0710)
CISA has added 2 new vulnerabilities to its Known Exploited Vulnerabilities Catalog, based on evidence of active exploitation. These types of vulnerabilities are a frequent attack vector for malicious cyber actors and pose significant risk to the federal enterprise.
⚠️ CVE-2026-48939 (https://secdb.nttzen.cloud/cve/detail/CVE-2026-48939)
- Name: iCagenda Unrestricted Upload of File with Dangerous Type Vulnerability
- Action: Apply mitigations in accordance with vendor instructions, ensuring compliance with CISA’s BOD 26-04 Prioritizing Security Updates Based on Risk (see URL in Notes) guidance and CISA’s “Forensics Triage Requirements” (see URL in Notes). Follow applicable BOD 26-04 guidance for cloud services or discontinue use of the product if mitigations are unavailable. Stakeholders are responsible for evaluating each asset's internet exposure and ensuring adherence to BOD 26-04 patching guidelines.
- Known To Be Used in Ransomware Campaigns? Unknown
- Vendor: iCagenda
- Product: iCagenda
- Notes: https://www.icagenda.com/#download ; BOD 26-04: https://www.cisa.gov/news-events/directives/bod-26-04-prioritizing-security-updates-based-risk ; Forensics Triage Requirements: https://www.cisa.gov/news-events/directives/bod-26-04-implementation-guidance-prioritizing-security-updates-based-risk ; https://nvd.nist.gov/vuln/detail/CVE-2026-48939
⚠️ CVE-2026-56291 (https://secdb.nttzen.cloud/cve/detail/CVE-2026-56291)
- Name: Balbooa Forms Unrestricted Upload of File with Dangerous Type Vulnerability
- Action: Apply mitigations in accordance with vendor instructions, ensuring compliance with CISA’s BOD 26-04 Prioritizing Security Updates Based on Risk (see URL in Notes) guidance and CISA’s “Forensics Triage Requirements” (see URL in Notes). Follow applicable BOD 26-04 guidance for cloud services or discontinue use of the product if mitigations are unavailable. Stakeholders are responsible for evaluating each asset's internet exposure and ensuring adherence to BOD 26-04 patching guidelines.
- Known To Be Used in Ransomware Campaigns? Unknown
- Vendor: Balbooa
- Product: Forms
- Notes: https://www.balbooa.com/joomla-forms ; BOD 26-04: https://www.cisa.gov/news-events/directives/bod-26-04-prioritizing-security-updates-based-risk ; Forensics Triage Requirements: https://www.cisa.gov/news-events/directives/bod-26-04-implementation-guidance-prioritizing-security-updates-based-risk ; https://nvd.nist.gov/vuln/detail/CVE-2026-56291
#ZEN #SecDB #InfoSec #CVE #CISA_KEV #cisa_20260710 #cisa20260710 #cve_2026_48939 #cve_2026_56291 #cve202648939 #cve202656291
##CVE ID: CVE-2026-56291
Vendor: Balbooa
Product: Forms
Date Added: 2026-07-10
CVE URL: https://nvd.nist.gov/vuln/detail/CVE-2026-56291
CISA has added two vulnerabilities to the KEV catalogue.
- CVE-2026-48939: iCagenda Unrestricted Upload of File with Dangerous Type Vulnerability https://www.cve.org/CVERecord?id=CVE-2026-48939
- CVE-2026-56291: Balbooa Forms Unrestricted Upload of File with Dangerous Type Vulnerability https://www.cve.org/CVERecord?id=CVE-2026-56291 #CISA #infosec #vulnerability
##CVE-2026-56291 | CRITICAL: Balbooa Forms for Joomla (v1.0 – 2.4.0) allows unauthenticated RCE via arbitrary file upload (CWE-434). No patch yet. Disable or restrict access until fixed. https://radar.offseq.com/threat/cve-2026-56291-cwe-434-unrestricted-upload-of-file-aa89baa3213ad239 #OffSeq #Joomla #RCE #Vuln
##updated 2026-07-10T18:32:31
2 posts
🔴 CVE-2026-2397 - Critical (9.8)
Improper neutralization of special elements used in an SQL command ('SQL injection') vulnerability in Adam Retail Automation Ltd. MobilMen 20T allows SQL Injection.
This issue affects MobilMen 20T: from v3 through 10072026. NOTE: The vendor was ...
🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-2397/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##🔴 CVE-2026-2397 - Critical (9.8)
Improper neutralization of special elements used in an SQL command ('SQL injection') vulnerability in Adam Retail Automation Ltd. MobilMen 20T allows SQL Injection.
This issue affects MobilMen 20T: from v3 through 10072026. NOTE: The vendor was ...
🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-2397/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##updated 2026-07-10T18:32:03
3 posts
2 repos
🚨 [CISA-2026:0710] CISA Adds 2 Known Exploited Vulnerabilities to Catalog (https://secdb.nttzen.cloud/security-advisory/detail/CISA-2026:0710)
CISA has added 2 new vulnerabilities to its Known Exploited Vulnerabilities Catalog, based on evidence of active exploitation. These types of vulnerabilities are a frequent attack vector for malicious cyber actors and pose significant risk to the federal enterprise.
⚠️ CVE-2026-48939 (https://secdb.nttzen.cloud/cve/detail/CVE-2026-48939)
- Name: iCagenda Unrestricted Upload of File with Dangerous Type Vulnerability
- Action: Apply mitigations in accordance with vendor instructions, ensuring compliance with CISA’s BOD 26-04 Prioritizing Security Updates Based on Risk (see URL in Notes) guidance and CISA’s “Forensics Triage Requirements” (see URL in Notes). Follow applicable BOD 26-04 guidance for cloud services or discontinue use of the product if mitigations are unavailable. Stakeholders are responsible for evaluating each asset's internet exposure and ensuring adherence to BOD 26-04 patching guidelines.
- Known To Be Used in Ransomware Campaigns? Unknown
- Vendor: iCagenda
- Product: iCagenda
- Notes: https://www.icagenda.com/#download ; BOD 26-04: https://www.cisa.gov/news-events/directives/bod-26-04-prioritizing-security-updates-based-risk ; Forensics Triage Requirements: https://www.cisa.gov/news-events/directives/bod-26-04-implementation-guidance-prioritizing-security-updates-based-risk ; https://nvd.nist.gov/vuln/detail/CVE-2026-48939
⚠️ CVE-2026-56291 (https://secdb.nttzen.cloud/cve/detail/CVE-2026-56291)
- Name: Balbooa Forms Unrestricted Upload of File with Dangerous Type Vulnerability
- Action: Apply mitigations in accordance with vendor instructions, ensuring compliance with CISA’s BOD 26-04 Prioritizing Security Updates Based on Risk (see URL in Notes) guidance and CISA’s “Forensics Triage Requirements” (see URL in Notes). Follow applicable BOD 26-04 guidance for cloud services or discontinue use of the product if mitigations are unavailable. Stakeholders are responsible for evaluating each asset's internet exposure and ensuring adherence to BOD 26-04 patching guidelines.
- Known To Be Used in Ransomware Campaigns? Unknown
- Vendor: Balbooa
- Product: Forms
- Notes: https://www.balbooa.com/joomla-forms ; BOD 26-04: https://www.cisa.gov/news-events/directives/bod-26-04-prioritizing-security-updates-based-risk ; Forensics Triage Requirements: https://www.cisa.gov/news-events/directives/bod-26-04-implementation-guidance-prioritizing-security-updates-based-risk ; https://nvd.nist.gov/vuln/detail/CVE-2026-56291
#ZEN #SecDB #InfoSec #CVE #CISA_KEV #cisa_20260710 #cisa20260710 #cve_2026_48939 #cve_2026_56291 #cve202648939 #cve202656291
##CVE ID: CVE-2026-48939
Vendor: iCagenda
Product: iCagenda
Date Added: 2026-07-10
CVE URL: https://nvd.nist.gov/vuln/detail/CVE-2026-48939
CISA has added two vulnerabilities to the KEV catalogue.
- CVE-2026-48939: iCagenda Unrestricted Upload of File with Dangerous Type Vulnerability https://www.cve.org/CVERecord?id=CVE-2026-48939
- CVE-2026-56291: Balbooa Forms Unrestricted Upload of File with Dangerous Type Vulnerability https://www.cve.org/CVERecord?id=CVE-2026-56291 #CISA #infosec #vulnerability
##updated 2026-07-10T18:16:20.733000
2 posts
1 repos
🟠 CVE-2026-2398 - High (8.8)
Authorization bypass through User-Controlled key vulnerability in Adam Retail Automation Ltd. MobilMen 20T allows Privilege Escalation.
This issue affects MobilMen 20T: from v3 through 10072026. NOTE: The vendor was contacted early about this di...
🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-2398/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##🟠 CVE-2026-2398 - High (8.8)
Authorization bypass through User-Controlled key vulnerability in Adam Retail Automation Ltd. MobilMen 20T allows Privilege Escalation.
This issue affects MobilMen 20T: from v3 through 10072026. NOTE: The vendor was contacted early about this di...
🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-2398/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##updated 2026-07-10T18:01:31.563000
2 posts
🟠 CVE-2026-59796 - High (8.1)
In JetBrains TeamCity before 2026.1.2 pipeline modification was possible due to improper permission checks
🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-59796/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##🟠 CVE-2026-59796 - High (8.1)
In JetBrains TeamCity before 2026.1.2 pipeline modification was possible due to improper permission checks
🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-59796/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##updated 2026-07-10T18:01:31.563000
2 posts
🟠 CVE-2026-59795 - High (8.1)
In JetBrains TeamCity before 2026.1.2 stored XSS via unauthenticated agent registration was possible
🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-59795/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##🟠 CVE-2026-59795 - High (8.1)
In JetBrains TeamCity before 2026.1.2 stored XSS via unauthenticated agent registration was possible
🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-59795/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##updated 2026-07-10T18:01:31.563000
1 posts
🟠 CVE-2026-33382 - High (7.5)
Several Grafana API endpoints, some of them unauthenticated, do not limit the size of the request body before processing it. An attacker can send very large payloads that force excessive memory allocation, potentially exhausting memory and causing...
🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-33382/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##updated 2026-07-10T17:49:57.737000
3 posts
🔴 CVE-2026-15143 - Critical (9.3)
A flaw was found in the file_type content detector of guardrails-detectors. This vulnerability allows a remote attacker to supply an arbitrary XML Schema Definition (XSD) string, which is processed without proper restrictions. This can lead to ser...
🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-15143/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##🔴 CVE-2026-15143 - Critical (9.3)
A flaw was found in the file_type content detector of guardrails-detectors. This vulnerability allows a remote attacker to supply an arbitrary XML Schema Definition (XSD) string, which is processed without proper restrictions. This can lead to ser...
🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-15143/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##https://access.redhat.com/security/cve/cve-2026-15143
A flaw was found in the file_type content detector of guardrails-detectors. This vulnerability allows a remote attacker to supply an arbitrary XML Schema Definition (XSD) string, which is processed without proper restrictions.
:neobot_giggle:
##updated 2026-07-10T17:49:57.737000
2 posts
(there is more, actually, lol https://access.redhat.com/security/cve/cve-2026-15378 )
##Red Hat OpenShift AI hit by CRITICAL SSRF (CVE-2026-15378): guardrails-detectors flaw allows remote attackers to access cloud metadata, K8s API, and secrets via crafted XSD. Monitor for exploitation & restrict egress. https://radar.offseq.com/threat/cve-2026-15378-server-side-request-forgery-ssrf-in-6764a44d8dfc74c1 #OffSeq #CVE202615378 #RedHat #Infosec
##updated 2026-07-10T17:49:57.737000
1 posts
🟠 CVE-2026-57026 - High (7.5)
An Improper Validation of Syntactic Correctness of Input vulnerability in the SIP plugin of Juniper Networks Junos OS on MX Series with SPC3 and SRX Series allows an unauthenticated, network-based attacker to cause a Denial-of-Service (DoS).If the...
🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-57026/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##updated 2026-07-10T17:41:47.303000
2 posts
🟠 CVE-2026-61437 - High (7.8)
PraisonAI (pip package praisonaiagents) before 1.6.78 contains an unsafe dynamic module loading vulnerability in AgentFlow._resolve_pydantic_class (src/praisonai-agents/praisonaiagents/workflows/workflows.py). When a workflow step uses a string ou...
🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-61437/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##🟠 CVE-2026-61437 - High (7.8)
PraisonAI (pip package praisonaiagents) before 1.6.78 contains an unsafe dynamic module loading vulnerability in AgentFlow._resolve_pydantic_class (src/praisonai-agents/praisonaiagents/workflows/workflows.py). When a workflow step uses a string ou...
🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-61437/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##updated 2026-07-10T17:41:47.303000
2 posts
🟠 CVE-2026-61434 - High (8.8)
PraisonAI versions before 4.6.78 contain an allowlist bypass vulnerability in shell command execution that allows attackers to execute restricted commands via find's built-in -exec, -execdir, and -delete actions. Attackers can craft find commands ...
🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-61434/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##🟠 CVE-2026-61434 - High (8.8)
PraisonAI versions before 4.6.78 contain an allowlist bypass vulnerability in shell command execution that allows attackers to execute restricted commands via find's built-in -exec, -execdir, and -delete actions. Attackers can craft find commands ...
🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-61434/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##updated 2026-07-10T17:17:01.213000
1 posts
Dell PowerFlex Manager <5.1.0.1 faces CRITICAL OS command injection (CVE-2026-56688, CVSS 9.1). High-priv attackers can execute root commands — full compromise risk. No patch yet. Limit admin remote access & monitor activity. https://radar.offseq.com/threat/cve-2026-56688-cwe-78-improper-neutralization-of-s-de5ccc00f15b9022 #OffSeq #Dell #Vuln #Infosec
##updated 2026-07-10T16:39:52.480000
8 posts
OpenBSD has a use-after-free allowing local privilege escalation to root
##OpenBSD has a use-after-free allowing local privilege escalation to root
Link: https://nvd.nist.gov/vuln/detail/cve-2026-57589
Discussion: https://news.ycombinator.com/item?id=48831658
OpenBSD has a use-after-free allowing local privilege escalation to root
Link: https://nvd.nist.gov/vuln/detail/cve-2026-57589
Comments: https://news.ycombinator.com/item?id=48831658
OpenBSD has a use-after-free allowing local privilege escalation to root
Link: https://nvd.nist.gov/vuln/detail/cve-2026-57589
Discussion: https://news.ycombinator.com/item?id=48831658
OpenBSD has a use-after-free allowing local privilege escalation to root - https://nvd.nist.gov/vuln/detail/cve-2026-57589
##Oh, joy! 😒 A riveting tale of OpenBSD's latest "oopsie-daisy" moment, where users can magically escalate privileges—because who doesn't love a good #security blunder? Meanwhile, the article itself is a masterpiece of accessibility: blocked by Cloudflare like a bouncer at a club for nerds. 🕵️♂️🔒
https://nvd.nist.gov/vuln/detail/cve-2026-57589 #OpenBSD #Blunder #Accessibility #Issues #HackerNews #PrivilegeEscalation #HackerNews #ngated
OpenBSD has a use-after-free allowing local privilege escalation to root
https://nvd.nist.gov/vuln/detail/cve-2026-57589
Comments: https://news.ycombinator.com/item?id=48831658
#HackerNews #OpenBSD #UseAfterFree #PrivilegeEscalation #Cybersecurity #Vulnerability #CVE-2026-57589
##OpenBSD has a use-after-free allowing local privilege escalation to root
##updated 2026-07-10T16:16:25.080000
1 posts
🟠 CVE-2026-12597 - High (8.1)
The LoginPress Pro plugin for WordPress is vulnerable to Authentication Bypass via the GitHub OAuth callback in versions up to, and including, 6.2.3. The vulnerability exists in the loginpress_on_github_login() function, which blindly trusts the f...
🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-12597/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##updated 2026-07-10T15:49:19.093000
1 posts
CVE-2026-54003 (CRITICAL, CVSS 9.1): getkirby Kirby CMS sites w/o users & behind certain reverse proxies risk remote admin creation via trusted IP headers. Upgrade to 4.9.4/5.4.4+ ASAP. More: https://radar.offseq.com/threat/cve-2026-54003-cwe-454-external-initialization-of--015a5d4d7df10357 #OffSeq #Vulnerability #KirbyCMS #InfoSec
##updated 2026-07-10T15:49:19.093000
1 posts
🟠 CVE-2026-54771 - High (8.1)
Langroid is a framework for building large-language-model-powered applications. Prior to version 0.65.3, a Langroid application exposing a chat interface to untrusted users may allow direct tool invocation via raw JSON payloads, even when tools ar...
🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-54771/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##updated 2026-07-10T15:49:19.093000
1 posts
🔴 CVE-2026-54769 - Critical (10)
Langroid is a framework for building large-language-model-powered applications. Versions prior to 0.65.2 are vulnerable to a critical Sandbox Escape leading to Remote Code Execution (RCE) in its `TableChatAgent` and `VectorStore` capabilities. Whe...
🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-54769/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##updated 2026-07-10T15:45:17.463000
2 posts
A PAN-OS buffer overflow, CVE-2026-0288, enables arbitrary code execution on Palo Alto firewalls. Patch now.
#PANOS #PaloAltoNetworks #BufferOverflow #ArbitraryCodeExecution #CVE #FirewallSecurity #PatchNow #InfoSec
https://securityonline.info/pan-os-cve-2026-0288/?utm_source=mastodon&utm_medium=jetpack_social
##Broadcom has a long list of advisories today, addressing at least two critical vulnerabilities https://support.broadcom.com/web/ecx/security-advisory
Palo Alto:
CRITICAL: CVE-2026-0288 PAN-OS: Buffer Overflow Vulnerabilities in User-ID Terminal Server Agent https://security.paloaltonetworks.com/CVE-2026-0288
Dell: Security Update for Dell Networking Products for Multiple Vulnerabilities https://www.dell.com/support/kbdoc/en-us/000362452/dsa-2025-250-security-update-for-dell-networking-products-for-multiple-vulnerabilities #Broascom #infosec #vulnerability #Dell #Intel
##updated 2026-07-10T15:43:30.330000
2 posts
1 repos
🔴 CVE-2026-14894 - Critical (9.8)
The Super Forms – Drag & Drop Form Builder plugin for WordPress is vulnerable to Arbitrary File Upload in all versions up to, and including, 6.3.313 via the submit_form function. This is due to missing file type validation and the absence of any...
🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-14894/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##CVE-2026-14894 (CRITICAL, CVSS 9.8): Arbitrary file upload in Super Forms – Drag & Drop Form Builder <=6.3.313 enables unauthenticated RCE. Restrict plugin use & monitor for uploads. Await vendor patch. https://radar.offseq.com/threat/cve-2026-14894-cwe-434-unrestricted-upload-of-file-eb119ea8c0c00613 #OffSeq #WordPress #Infosec #Vulnerability
##updated 2026-07-10T12:31:56
1 posts
CVE-2026-41880 | CRITICAL OS Command Injection in R-SOFT SERWIS DMS OCR module. Authenticated users can execute root commands via crafted uploads. Patched in v3.19-2862/3.17-2580. Upgrade now: https://radar.offseq.com/threat/cve-2026-41880-cwe-78-improper-neutralization-of-s-9acc4d130ed96ca2 #OffSeq #infosec #vulnerability #CVE202641880
##updated 2026-07-10T09:31:36
1 posts
🟠 CVE-2026-54423 - High (8.2)
In OpenStack Ironic before 37.0.1, an Ironic user with the ability to deploy nodes using the IPMI management interface can maliciously use the send_raw step to send arbitrary IPMI commands to a node, bypassing Ironic's access control.
🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-54423/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##updated 2026-07-10T06:31:33
1 posts
SQL Injection vuln (CRITICAL, CVE-2026-15300) in GEO my WP <=4.5.4 lets attackers exploit 'distance', 'lat', 'lng' via query string. Upgrade to 4.5.5 for numeric validation & input casting. https://radar.offseq.com/threat/cve-2026-15300-cwe-89-improper-neutralization-of-s-9618cb6f0d2ba913 #OffSeq #WordPress #Security #CVE202615300
##updated 2026-07-10T06:31:28
1 posts
🟠 CVE-2026-15070 - High (8.8)
The Salon Booking System – Free Version plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 10.30.32. This is due to missing or incorrect nonce validation on the setCustomText function. This mak...
🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-15070/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##updated 2026-07-10T05:16:37.520000
1 posts
🔴 CVE-2026-54782 - Critical (10)
CoreWCF is a port of the service side of Windows Communication Foundation (WCF) to .NET Core. Prior to 1.8.1 and 1.9.1, CoreWCF SAML 1.1 and SAML 2.0 token validation does not correctly resolve the issuer signing key or require signed tokens when ...
🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-54782/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##updated 2026-07-10T05:16:37.103000
1 posts
2 repos
https://github.com/bluedragonsecurity/CVE-2026-46215-EXPLOIT
Public PoC and write-up detail a Linux kernel privilege escalation flaw (CVE-2026-46215) in DRM GEM. A local user gets root in ~99% of runs.
#Linux #KernelSecurity #CVE202646215 #PrivilegeEscalation #DRM
##updated 2026-07-10T05:16:28.503000
1 posts
CVE-2026-15112: CRITICAL use-after-free in Chrome Ozone (<150.0.7871.115). Remote attackers could trigger heap corruption via crafted HTML. No exploits seen yet. Check vendor guidance: https://radar.offseq.com/threat/cve-2026-15112-use-after-free-in-google-chrome-74d88a97c05d80e2 #OffSeq #Chrome #Vuln #AppSec
##updated 2026-07-10T00:31:34
1 posts
🟠 CVE-2026-12598 - High (8.1)
The LoginPress Pro plugin for WordPress is vulnerable to authentication bypass in versions up to and including 6.2.3 via the Spotify Social Login addon. This is due to the loginpress_on_spotify_login() function trusting the unverified 'email' fiel...
🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-12598/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##updated 2026-07-10T00:31:34
2 posts
CVE-2026-58123 | CRITICAL RCE in nesquena hermes-webui <0.51.788: Unauthenticated attackers can execute arbitrary shell commands via terminal API in 4 HTTP requests. Restrict endpoint access until patch confirmed. https://radar.offseq.com/threat/cve-2026-58123-missing-authentication-for-critical-9dba2eca75059736 #OffSeq #RCE #infosec #CVE
##🔴 CVE-2026-58123 - Critical (9.8)
Hermes WebUI before 0.51.788 contains an unauthenticated remote code execution vulnerability that allows remote attackers to execute arbitrary shell commands by accessing the embedded terminal API endpoints without credentials. Attackers can creat...
🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-58123/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##updated 2026-07-10T00:31:34
1 posts
🟠 CVE-2026-12595 - High (8.1)
The LoginPress Pro plugin for WordPress is vulnerable to Authentication Bypass via Unverified OAuth Email in all versions up to and including 6.2.3. The vulnerability exists in the loginpress_on_discord_login() Discord OAuth callback handler, whic...
🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-12595/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##updated 2026-07-10T00:31:33
1 posts
🟠 CVE-2026-57023 - High (7.5)
An Improper Validation of Specified Quantity in Input vulnerability in the TCP proxy plugin of Juniper Networks Junos OS on MX Series with SPC3, and SRX Series allows an unauthenticated, network-based attacker to cause a complete Denial of Service...
🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-57023/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##updated 2026-07-10T00:31:33
1 posts
🟠 CVE-2026-58143 - High (8.8)
Cotonti Siena 0.9.26 and earlier contains a cross-site request forgery vulnerability that allows unauthenticated attackers to modify administrator configuration by tricking a logged-in administrator into submitting a forged POST request to the adm...
🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-58143/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##updated 2026-07-09T20:59:06
1 posts
2 repos
https://github.com/gagaltotal/CVE-2026-44825-Apache-Solr-Scanner
💥 CVE-2026-44825: A scanner for Apache Solr instances that may be affected by CVE-2026-44825, related to Velocity Template Remote Code Execution (RCE) conditions.
GitHub: https://github.com/gagaltotal/CVE-2026-44825-Apache-Solr-Scanner
##updated 2026-07-09T19:17:05.330000
1 posts
🔴 CVE-2026-47646 - Critical (9.3)
Improper neutralization of input during web page generation ('cross-site scripting') in Dynamics 365 Customer Voice allows an unauthorized attacker to perform spoofing over a network.
🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-47646/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##updated 2026-07-09T17:16:53.867000
1 posts
🟠 CVE-2026-58525 - High (8.2)
Improper access control in Microsoft Edge (Chromium-based) allows an unauthorized attacker to bypass a security feature over a network.
🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-58525/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##updated 2026-07-09T16:36:21.363000
1 posts
OpenSSH 10.4 ships eight security fixes, including a client use-after-free (CVE-2026-60002) plus SFTP and SCP path bugs. Update now.
##updated 2026-07-09T16:20:12.533000
1 posts
CVE-2026-14245: CRITICAL vuln in miniOrange OTP Login ≤5.5.1. Auth bypass allows admin takeover if Ultimate Member Password Reset Form is enabled. Disable that integration or enforce phone-only reset until patched. https://radar.offseq.com/threat/cve-2026-14245-cwe-862-missing-authorization-in-cy-f05bec899fe71393 #OffSeq #WordPress #Infosec #Vuln
##updated 2026-07-09T13:05:30.767000
1 posts
v4.01 of our Windows client is at https://cryptostorm.is/windows#widget
See attached for client-side fixes.
Servers were updated to OpenVPN 2.7.5 on the 2nd, and v4.01 bundles 2.7.5, so we're good on CVE-2026-12996, CVE-2026-13117, CVE-2026-12932, and CVE-2026-13698.
##updated 2026-07-09T12:31:30
1 posts
CVE-2026-15128 (HIGH): Google Chrome <150.0.7871.115 vulnerable to remote UXSS via crafted HTML. Patch available — update now to block script injection. Details: https://radar.offseq.com/threat/cve-2026-15128-inappropriate-implementation-in-goo-a214c2dee3b7e04b #OffSeq #Chrome #Vuln #PatchTuesday #InfoSec
##updated 2026-07-09T12:31:30
1 posts
CVE-2026-15130 (HIGH): Chrome <150.0.7871.115 has an insufficient policy enforcement bug, letting remote attackers bypass site isolation with crafted HTML. No exploits reported. Check https://radar.offseq.com/threat/cve-2026-15130-insufficient-policy-enforcement-in--933c1db80d107c58 for updates. #OffSeq #Chrome #BrowserSecurity #Vulnerability
##updated 2026-07-09T12:31:30
1 posts
Google Chrome <150.0.7871.115 impacted by CRITICAL CVE-2026-15129 (use-after-free in Views). Remote code execution possible via malicious HTML. Patch status not confirmed — monitor advisory: https://radar.offseq.com/threat/cve-2026-15129-use-after-free-in-google-chrome-aca2929fc0214ef5 #OffSeq #Chrome #Infosec #CVE202615129
##updated 2026-07-09T12:30:35
1 posts
CVE-2026-9253: WP Cost Estimation & Payment Forms Builder ≤10.5.97 has a HIGH severity stored XSS via 'customerInfos'. Unauthenticated attackers can inject scripts. Patch status unconfirmed — restrict plugin use for now. https://radar.offseq.com/threat/cve-2026-9253-cwe-79-improper-neutralization-of-in-2f00c010407cb3e3 #OffSeq #WordPress #Vuln #XSS
##updated 2026-07-09T03:33:50
2 posts
3 repos
https://github.com/0xBlackash/CVE-2026-46242
Here's your weekly batch of Linux local privilege escalation vulnerabilities:
CVE-2026-43499 "GhostLock"
https://nebusec.ai/research/ionstack-part-2/
CVE-2026-46242 "Bad Epoll"
https://github.com/J-jaeyoung/bad-epoll
Enjoy! ✌️
##📰 New 'Bad Epoll' Linux Kernel Zero-Day (CVE-2026-46242) Grants Full Root Access
🚨 CRITICAL ZERO-DAY: 'Bad Epoll' (CVE-2026-46242) in Linux Kernel allows any local user to gain full root access. The use-after-free bug affects servers, desktops & Android. PoC exists. Patch immediately! 🐧💥 #Linux #CyberSecurity #ZeroDay #Infosec
🌐 cyber[.]netsecops[.]io
##updated 2026-07-09T00:32:11
6 posts
7 repos
https://github.com/inforcqb/CVE-2026-43499-pja110
https://github.com/pubglite55/oppo-ghostlock
https://github.com/0xBlackash/CVE-2026-43499
https://github.com/caspy123/CVE-2026-43499
https://github.com/tc3650/CVE-2026-43499-armv7
📢 GhostLock (CVE-2026-43499) : stack-UAF dans le noyau Linux depuis 15 ans, exploit stable à 97%
📝 ## 🔍 Contexte
Publié le 7 juillet 2026 par Nebula Security (nebusec.ai), cet article de recherche détaille **GhostLock (CVE-2026-43499)...
📖 cyberveille : https://cyberveille.ch/posts/2026-07-11-ghostlock-cve-2026-43499-stack-uaf-dans-le-noyau-linux-depuis-15-ans-exploit-stable-a-97/
🌐 source : https://nebusec.ai/research/ionstack-part-2/
#CVE_2026_43499 #GhostLock #Cyberveille
Postei no BR-Linux to avisando, e é sobre bug novo/velho.
VULNERABILIDADE GHOSTLOCK PERMITE QUE USUÁRIOS LOCAIS VIREM ROOT
A vulnerabilidade CVE-2026-43499, batizada de GhostLock, é um bug de sincronização divulgado esta semana, que ficou oculto por 15 anos no kernel Linux, e expõe a acesso root por usuários locais.
https://br-linux.org/2026/01/vulnerabilidade-ghostlock-permite-que-usuarios-locais-virem-root.html
##Huj, fuffzehn jahre alt. Der kleine verkacker im kernel ist ja fast volljährig geworden, bis ihn mal jemand bemerkt hat… und etwas im kontäjhner laufenzulassen, ist auch kein schutz.
Spielt eure sicherheitsaktualisierungen ein!
#Epic #Fail #Link #Linux #Linuxnews #Security ##15-Year-Old Linux Kernel GhostLock Flaw Lets Local Users Gain Root
CVE-2026-43499, dubbed GhostLock by Nebula Security, exposes a long-standing Linux kernel futex bug that can lead to local root access.
#kernel #linux-&-open-source-news #software #vulnerability
https://linuxiac.com/15-year-old-linux-kernel-ghostlock-flaw-lets-local-users-gain-root/
https://thecybersecguru.com/news/ghostlock-cve-2026-43499-linux-kernel-0day/
##Here's your weekly batch of Linux local privilege escalation vulnerabilities:
CVE-2026-43499 "GhostLock"
https://nebusec.ai/research/ionstack-part-2/
CVE-2026-46242 "Bad Epoll"
https://github.com/J-jaeyoung/bad-epoll
Enjoy! ✌️
##updated 2026-07-08T21:30:42
2 posts
The GitLab patch release fixes 8 flaws, including a high-severity cross-site scripting bug (CVE-2026-6896). Update to 19.1.2 now.
#GitLab #GitLabSecurity #XSS #CrossSiteScripting #CVE #DevSecOps #PatchNow #InfoSec
##🟠 CVE-2026-6896 - High (8.7)
GitLab has remediated an issue in GitLab EE affecting all versions from 13.11 before 18.11.7, 19.0 before 19.0.4, and 19.1 before 19.1.2 that under certain conditions could have allowed an authenticated user with developer-role permissions to exec...
🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-6896/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##updated 2026-07-08T15:32:52
5 posts
1 repos
📢 Backdoor d'authentification cachée dans plusieurs firmwares Tenda (CVE-2026-11405)
📝 ## 🔍 Contexte
Le CERT/CC (Carnegie Mellon University) a publié le 6 juillet 2026 la note de vulnérabilité **VU#213560** concernant la découverte d'une **backdoor d'authent...
📖 cyberveille : https://cyberveille.ch/posts/2026-07-11-backdoor-d-authentification-cachee-dans-plusieurs-firmwares-tenda-cve-2026-11405/
🌐 source : https://kb.cert.org/vuls/id/213560
#CVE_2026_11405 #IOC #Cyberveille
📢 Backdoor d'authentification cachée dans plusieurs firmwares Tenda (CVE-2026-11405)
📝 ## 🔍 Contexte
Le CERT/CC (Carnegie Mellon University) a publié le 6 juillet 2026 la note de vulnérabilité **VU#213560** concernant la découverte d'une **backdoor d'authent...
📖 cyberveille : https://cyberveille.ch/posts/2026-07-11-backdoor-d-authentification-cachee-dans-plusieurs-firmwares-tenda-cve-2026-11405/
🌐 source : https://kb.cert.org/vuls/id/213560
#CVE_2026_11405 #IOC #Cyberveille
Tenda Routers Contain Undocumented Authentication Backdoor
Tenda routers contain a hardcoded authentication backdoor (CVE-2026-11405) that allows attackers to gain full administrative control by bypassing standard login credentials. The vulnerability is not patched, and the vendor has not yet responded to the disclosure.
**If you use Tenda routers check your firmware version. If it's one of FH1201, W15E, AC10, AC5, AC6, immediately disable remote web management interface or at least isolate it from the internet. Only manage the device from your trusted local network. Since this backdoor is built into the firmware and Tenda has not released a fix, if there is no patch plan to replace these routers soon. As an extra step, change LAN IP address from the default to make them harder for attackers to find.**
#cybersecurity #infosec #advisory #vulnerability
https://beyondmachines.net/event_details/tenda-routers-contain-undocumented-authentication-backdoor-x-7-n-s-6/gD2P6Ple2L
CERT/CC Warns of Unpatched Admin Backdoor in Tenda Router Firmware
CERT/CC warned that several Tenda firmware versions contain an undocumented authentication backdoor that can give attackers administrative access to affected devices. The flaw, tracked as CVE-2026-11405, remains unpatched and could allow attackers to modify device settings, disable security features, or take full control of the device.
**Check your network for affected Tenda devices and reduce exposure immediately. No patch is available, so disable remote web management, block untrusted access to the router’s web interface, and change the default LAN IP address to reduce discovery by automated scanners.**
#cybersecurity #infosec #advisory #vulnerability
https://beyondmachines.net/event_details/cert-cc-warns-of-unpatched-admin-backdoor-in-tenda-router-firmware-q-b-l-n-g/gD2P6Ple2L
Hidden backdoor in Tenda routers goes unpatched as company ignores warnings from cybersecurity researchers — Chinese company's firmware allows admin access without a password
CERT/CC has disclosed a critical authentication backdoor affecting multiple Tenda router firmware versions. Tracked as CVE-2026-11405, the flaw grants full administrator access without valid credentials, and no vendor patch is currently available after CERT failed to reach Tenda.
#hardware
https://www.tomshardware.com/tech-industry/cyber-security/hidden-backdoor-found-in-tenda-routers-goes-unpatched-despite-warnings-from-cybersecurity-researchers-affected-firmware-allows-admin-access-without-a-password
updated 2026-07-08T15:32:13
1 posts
Progress patched three MOVEit Transfer flaws, including a stored XSS bug (CVE-2026-11903). No exploitation is confirmed. Update now.
#MOVEit #MOVEitTransfer #StoredXSS #XSS #CVE #ProgressSoftware #PatchNow #InfoSec
##updated 2026-07-08T15:28:15.630000
1 posts
I keep hearing how AI and LLMs are the future but they sure keep feeling like shitty applications from 20 years ago.
https://nvd.nist.gov/vuln/detail/CVE-2026-59706
##mem0 contains unauthenticated config API endpoints that expose LLM API keys in plaintext and allow server-side request forgery via attacker-controlled ollama_base_url parameter. Unauthenticated attackers can retrieve stored secrets like OpenAI API keys via GET /api/v1/config/ or trigger SSRF attacks by setting ollama_base_url to internal addresses like cloud IMDS via PUT /api/v1/config/mem0/llm endpoint.
updated 2026-07-08T13:37:08.977000
4 posts
3 repos
https://github.com/shinthink/pbck-exploit
https://github.com/Jenderal92/CVE-2026-56290
https://github.com/sagsooz/PageBuilderCK-CVE-2026-56290-Exploit
Critical Alert: Joomlack Page Builder CVE-2026-56290 allows unauthenticated attackers to upload PHP web shells and achieve full RCE. Protect your Joomla site now with our forensic deep-dive, detection queries, and hardening protocols. Don’t wait—patch today. https://thecybermind.co/6r3l
##Critical Alert: Joomlack Page Builder CVE-2026-56290 allows unauthenticated attackers to upload PHP web shells and achieve full RCE. Protect your Joomla site now with our forensic deep-dive, detection queries, and hardening protocols. Don’t wait—patch today. https://thecybermind.co/6r3l
##Critical Alert: Joomlack Page Builder CVE-2026-56290 allows for unauthorized access control bypasses. Secure your perimeter now with our latest forensic deep-dive, featuring detection queries and hardening protocols. Don’t wait for the breach—patch today
##Critical alert for Adobe ColdFusion users: CVE-2026-56290 allows for potential RCE. Our latest forensic deep-dive breaks down the technical impact and provides the hardening steps you need to secure your production environment. Don't wait for the breach—patch today.
https://thecybermind.co/2026/07/10/cve-2026-48282-adobe-coldfusion-path-2/
##updated 2026-07-07T22:14:37
4 posts
1 repos
Executive Alert: Langflow CVE-2026-55255 allows unauthorized flow execution, compromising tenant isolation. Our latest CSUITE Brief details the strategic remediation and hardening protocols required to secure your enterprise environment. Protect your perimeter today. https://thecybermind.co/4dix
##Executive Alert: Langflow CVE-2026-55255 allows unauthorized flow execution, compromising tenant isolation. Our latest CSUITE Brief details the strategic remediation and hardening protocols required to secure your enterprise environment. Protect your perimeter today. https://thecybermind.co/4dix
##Alert: Langflow CVE-2026-55255 allows authenticated attackers to execute arbitrary flows by manipulating flow IDs. Secure your tenant isolation now with our latest forensic deep-dive, featuring detection queries and hardening protocols. https://thecybermind.co/4912
##Here's a summary of the latest geopolitical, technology, and cybersecurity news from the last 24 hours:
Geopolitical tensions escalate as the US conducted strikes on Iran, defying an earlier ceasefire agreement. In technology, Apple lost its appeal against the EU's Digital Markets Act, maintaining its "gatekeeper" designation. Cybersecurity concerns rise with CISA warning of active exploitation of the Langflow vulnerability (CVE-2026-55255) for credential harvesting, and Accenture confirming a data breach involving alleged source code theft. Additionally, a new "ghost phishing" technique, using encrypted HTML, has been observed bypassing traditional email security.
##updated 2026-07-07T21:32:33
6 posts
2 repos
https://github.com/imbas007/CVE-2026-48282
https://github.com/g0thamRabb1t/CVE-2026-48282-coldfusion-rds-detection
📰 Patch Now: Critical Adobe ColdFusion RCE Flaw (CVE-2026-48282) Under Active Exploitation
🚨 CRITICAL FLAW: Adobe ColdFusion vulnerability (CVE-2026-48282) with a 9.8 CVSS score is being actively exploited. Unauthenticated RCE allows full server takeover. Patch immediately! #Adobe #ColdFusion #CyberSecurity #RCE
🌐 cyber[.]netsecops[.]io
##Executive Alert: Adobe ColdFusion CVE-2026-48282 allows path traversal attacks, creating significant security gaps. Our latest CSUITE Brief details the governance and hardening required to protect your enterprise. https://thecybermind.co/t3pk
##Executive Alert: Adobe ColdFusion CVE-2026-48282 allows path traversal attacks, creating significant security gaps. Our latest CSUITE Brief details the governance and hardening required to protect your enterprise. https://thecybermind.co/t3pk
##Critical alert for Adobe ColdFusion users: CVE-2026-56290 allows for potential RCE. Our latest forensic deep-dive breaks down the technical impact and provides the hardening steps you need to secure your production environment. Don't wait for the breach—patch today.
https://thecybermind.co/2026/07/10/cve-2026-48282-adobe-coldfusion-path-2/
##⚪️ Critical Adobe ColdFusion bug already exploited in attacks
🗨️ Attackers began exploiting a fresh vulnerability in Adobe ColdFusion (CVE-2026-48282) about two hours after information about it was published. The developers fixed the issue last week and strongly recommended that administrators install the updates as soon as possible. The CVE-2026-48282…
##⚠️ Actively Exploited: CVE-2026-48282 (CVSS 10.0) in Adobe ColdFusion. CISA KEV deadline is July 10. We just dropped the paywall on our TS-MAN runbook. Get the exact Splunk, Sentinel, and CrowdStrike queries to hunt this unauthenticated RCE right now. 👇
https://thecybermind.co/1m24
updated 2026-07-07T17:49:04.433000
2 posts
Three Apache IoTDB vulnerabilities include a critical path traversal (CVE-2026-24014) and an authentication bypass. Upgrade to 2.0.8 now.
#ApacheIoTDB #PathTraversal #AuthBypass #CVE #IoTSecurity #InfoSec
##Three Apache IoTDB vulnerabilities include a critical path traversal (CVE-2026-24014) and an authentication bypass. Upgrade to 2.0.8 now.
#ApacheIoTDB #PathTraversal #AuthBypass #CVE #IoTSecurity #InfoSec
##updated 2026-07-06T21:37:49
1 posts
🔴 CVE-2026-55500 - Critical (9.9)
9Router is an AI router & token saver. Prior to 0.4.80, the /api/settings/database endpoint allows full database export (containing all credentials, API keys, OAuth tokens, and settings) and full database import (complete overwrite) without any au...
🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-55500/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##updated 2026-07-06T21:30:34
1 posts
5 repos
https://github.com/chuzhongyun/CVE-2026-53359-Kernel-Fix
https://github.com/xj2268-TA/KVM-Januscape
https://github.com/Aoripus-LTD/Januscape-Hotfix
🆕 Vulnerability-Lookup now imports Microsoft CSAF VEX documents from MSRC — joining the Red Hat VEX feed as a vendor VEX enrichment source.
Per-CVE VEX statements (product status, severity) are attached directly to CVE records, visible on the vulnerability page and via the API with the full CSAF documents.
Example with both Red Hat and Microsoft VEX:
https://vulnerability.circl.lu/vuln/CVE-2026-53359#vex
updated 2026-07-06T20:16:29.737000
1 posts
CVE-2026-13753 exposes a missing authorization vulnerability in HP Deskjet 2800 printers. Unauthenticated attackers can extract sensitive Wi-Fi credentials.
#CVE202613753 #HPDeskjet #CyberSecurity #Vulnerability #PrinterSecurity
##updated 2026-07-06T19:42:32.890000
1 posts
2 repos
CISA warns of a Gardyn IoT Hub flaw. CVE-2026-13768 (CVSS 10) enables unauthenticated remote code execution on smart garden devices. Update now.
#Gardyn #IoTSecurity #RCE #CISA #SmartGarden #CyberSecurity #Vulnerability #InfoSec
##updated 2026-07-03T09:31:35
1 posts
A critical HPLIP vulnerability, CVE-2026-14544 (CVSS 9.8), lets a remote attacker gain arbitrary code execution via crafted print data. Patch now.
#HPLIP #LinuxSecurity #RCE #CVE #hpcups #CyberSecurity #Vulnerability #InfoSec
##updated 2026-07-02T15:16:59.813000
1 posts
1 repos
Public PoC and full details are out for CVE-2026-31694, a Linux kernel FUSE page cache overflow that gives local privilege escalation to root. Patch now.
#LinuxKernel #FUSE #CVE202631694 #PrivilegeEscalation #InfoSec
##updated 2026-07-02T12:32:04
1 posts
A critical Feast Feature Server flaw (CVE-2026-23537) lets unauthenticated attackers perform arbitrary file write and risk remote code execution. Act now.
#Feast #FeatureStore #MachineLearning #ArbitraryFileWrite #RCE #CVE202623537 #CyberSecurity
##updated 2026-07-01T18:31:24
1 posts
5 repos
https://github.com/watchtowrlabs/watchTowr-vs-Netscaler-CVE-2026-8451
https://github.com/0xBlackash/CVE-2026-8451
https://github.com/attarwahyup/Netscaler-CVE-2026-8451
CitrixBleed To Infinity And Beyond (Citrix NetScaler Pre-Auth Memory Overread CVE-2026-8451) https://labs.watchtowr.com/citrixbleed-to-infinity-and-beyond-citrix-netscaler-pre-auth-memory-overread-cve-2026-8451/
##updated 2026-06-30T22:16:54.697000
1 posts
A decade of #Spring SpEL CVEs: CVE-2026-41852, CVE-2026-41851, CVE-2026-41850, CVE-2026-41849, CVE-2026-41729, CVE-2026-41719, CVE-2026-41717, CVE-2025-41253, CVE-2024-38808, CVE-2023-20861, CVE-2022-22980, CVE-2022-22963, CVE-2022-22950, CVE-2022-22947, CVE-2018-1273, CVE-2018-1260, CVE-2017-8046, CVE-2016-4977. RCE, DoS, you name it
##updated 2026-06-27T21:16:30.530000
1 posts
A decade of #Spring SpEL CVEs: CVE-2026-41852, CVE-2026-41851, CVE-2026-41850, CVE-2026-41849, CVE-2026-41729, CVE-2026-41719, CVE-2026-41717, CVE-2025-41253, CVE-2024-38808, CVE-2023-20861, CVE-2022-22980, CVE-2022-22963, CVE-2022-22950, CVE-2022-22947, CVE-2018-1273, CVE-2018-1260, CVE-2017-8046, CVE-2016-4977. RCE, DoS, you name it
##updated 2026-06-27T21:16:30.420000
1 posts
A decade of #Spring SpEL CVEs: CVE-2026-41852, CVE-2026-41851, CVE-2026-41850, CVE-2026-41849, CVE-2026-41729, CVE-2026-41719, CVE-2026-41717, CVE-2025-41253, CVE-2024-38808, CVE-2023-20861, CVE-2022-22980, CVE-2022-22963, CVE-2022-22950, CVE-2022-22947, CVE-2018-1273, CVE-2018-1260, CVE-2017-8046, CVE-2016-4977. RCE, DoS, you name it
##updated 2026-06-27T21:16:30.313000
1 posts
A decade of #Spring SpEL CVEs: CVE-2026-41852, CVE-2026-41851, CVE-2026-41850, CVE-2026-41849, CVE-2026-41729, CVE-2026-41719, CVE-2026-41717, CVE-2025-41253, CVE-2024-38808, CVE-2023-20861, CVE-2022-22980, CVE-2022-22963, CVE-2022-22950, CVE-2022-22947, CVE-2018-1273, CVE-2018-1260, CVE-2017-8046, CVE-2016-4977. RCE, DoS, you name it
##updated 2026-06-23T23:12:05
2 posts
🟠 CVE-2026-54329 - High (8.5)
Snipe-IT is an IT asset/license management system. Prior to 8.6.2, the Accessories API create path mass-assigns request parameters to the Accessory model while company_id is mass assignable, allowing a low-privileged authenticated user in one comp...
🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-54329/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##🟠 CVE-2026-54329 - High (8.5)
Snipe-IT is an IT asset/license management system. Prior to 8.6.2, the Accessories API create path mass-assigns request parameters to the Accessory model while company_id is mass assignable, allowing a low-privileged authenticated user in one comp...
🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-54329/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##updated 2026-06-22T12:10:33.533000
1 posts
1 repos
A decade of #Spring SpEL CVEs: CVE-2026-41852, CVE-2026-41851, CVE-2026-41850, CVE-2026-41849, CVE-2026-41729, CVE-2026-41719, CVE-2026-41717, CVE-2025-41253, CVE-2024-38808, CVE-2023-20861, CVE-2022-22980, CVE-2022-22963, CVE-2022-22950, CVE-2022-22947, CVE-2018-1273, CVE-2018-1260, CVE-2017-8046, CVE-2016-4977. RCE, DoS, you name it
##updated 2026-06-19T19:36:06
1 posts
CVE-2026-54527: CRITICAL XSS in jupyterlab-git (<0.54.0). Malicious Git filenames can execute JavaScript when viewed in the Git History tab — risking session hijack & data theft. Upgrade to 0.54.0+ ASAP. https://radar.offseq.com/threat/cve-2026-54527-cwe-79-improper-neutralization-of-i-859af0d357310c79 #OffSeq #XSS #jupyterlab #security
##updated 2026-06-18T13:04:55
2 posts
🟠 CVE-2026-55229 - High (7.5)
Gotenberg is a Docker-powered stateless API for PDF files. Prior to 8.34.0, Gotenberg's /forms/libreoffice/convert endpoint allows a specially crafted document to cause LibreOffice to automatically retrieve external HTTP(S) resources and local fil...
🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-55229/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##🟠 CVE-2026-55229 - High (7.5)
Gotenberg is a Docker-powered stateless API for PDF files. Prior to 8.34.0, Gotenberg's /forms/libreoffice/convert endpoint allows a specially crafted document to cause LibreOffice to automatically retrieve external HTTP(S) resources and local fil...
🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-55229/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##updated 2026-06-17T18:39:57
2 posts
🟠 CVE-2026-55405 - High (7.6)
LangChain4j is a Java library for building LLM-powered applications on the JVM. Prior to 1.2.1-beta8, 1.5.1-beta11, 1.11.8-beta19, and 1.16.3-beta26, the MariaDB and pgvector embedding stores build metadata-filter SQL by string-concatenating filt...
🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-55405/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##🟠 CVE-2026-55405 - High (7.6)
LangChain4j is a Java library for building LLM-powered applications on the JVM. Prior to 1.2.1-beta8, 1.5.1-beta11, 1.11.8-beta19, and 1.16.3-beta26, the MariaDB and pgvector embedding stores build metadata-filter SQL by string-concatenating filt...
🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-55405/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##updated 2026-06-17T10:37:56.487000
1 posts
The high-severity Attested TLS vulnerability CVE-2026-33697 allows attackers to relay traffic and compromise secure cloud environments.
#AttestedTLS #CVE202633697 #CloudSecurity #Cryptography #Vulnerability
##updated 2026-06-17T09:22:40.703000
1 posts
A decade of #Spring SpEL CVEs: CVE-2026-41852, CVE-2026-41851, CVE-2026-41850, CVE-2026-41849, CVE-2026-41729, CVE-2026-41719, CVE-2026-41717, CVE-2025-41253, CVE-2024-38808, CVE-2023-20861, CVE-2022-22980, CVE-2022-22963, CVE-2022-22950, CVE-2022-22947, CVE-2018-1273, CVE-2018-1260, CVE-2017-8046, CVE-2016-4977. RCE, DoS, you name it
##updated 2026-06-17T07:41:05.140000
1 posts
A decade of #Spring SpEL CVEs: CVE-2026-41852, CVE-2026-41851, CVE-2026-41850, CVE-2026-41849, CVE-2026-41729, CVE-2026-41719, CVE-2026-41717, CVE-2025-41253, CVE-2024-38808, CVE-2023-20861, CVE-2022-22980, CVE-2022-22963, CVE-2022-22950, CVE-2022-22947, CVE-2018-1273, CVE-2018-1260, CVE-2017-8046, CVE-2016-4977. RCE, DoS, you name it
##updated 2026-06-17T05:31:02.403000
1 posts
A decade of #Spring SpEL CVEs: CVE-2026-41852, CVE-2026-41851, CVE-2026-41850, CVE-2026-41849, CVE-2026-41729, CVE-2026-41719, CVE-2026-41717, CVE-2025-41253, CVE-2024-38808, CVE-2023-20861, CVE-2022-22980, CVE-2022-22963, CVE-2022-22950, CVE-2022-22947, CVE-2018-1273, CVE-2018-1260, CVE-2017-8046, CVE-2016-4977. RCE, DoS, you name it
##updated 2026-06-17T00:48:32.683000
1 posts
2 repos
A decade of #Spring SpEL CVEs: CVE-2026-41852, CVE-2026-41851, CVE-2026-41850, CVE-2026-41849, CVE-2026-41729, CVE-2026-41719, CVE-2026-41717, CVE-2025-41253, CVE-2024-38808, CVE-2023-20861, CVE-2022-22980, CVE-2022-22963, CVE-2022-22950, CVE-2022-22947, CVE-2018-1273, CVE-2018-1260, CVE-2017-8046, CVE-2016-4977. RCE, DoS, you name it
##updated 2026-06-16T21:31:57
3 posts
2 repos
https://github.com/0xBlackash/CVE-2026-50656
https://github.com/g0thamRabb1t/CVE-2026-50656-rogueplanet-validation
The vulnerability, tracked as CVE-2026-50656 (CVSS score: 7.8), is a privilege escalation issue in the Microsoft Malware Protection Engine ("mpengine.dll"), which provides scanning, detection, and cleaning capabilities for its antivirus and antispyware software. https://thehackernews.com/2026/07/microsoft-patches-rogueplanet-defender.html
##Microsoft patched the RoguePlanet Microsoft Defender zero-day, CVE-2026-50656, a race condition that grants SYSTEM privileges. A public PoC exists.
#MicrosoftDefender #RoguePlanet #ZeroDay #CVE #PrivilegeEscalation #Windows #InfoSec #PatchNow
##📢 Microsoft corrige la zero-day RoguePlanet (CVE-2026-50656) dans Microsoft Defender
📝 ## 🗓️ Contexte
Source : BleepingComputer, publié le 9 juillet 2026.
📖 cyberveille : https://cyberveille.ch/posts/2026-07-09-microsoft-corrige-la-zero-day-rogueplanet-cve-2026-50656-dans-microsoft-defender/
🌐 source : https://www.bleepingcomputer.com/news/microsoft/microsoft-patches-rogueplanet-defender-zero-day-vulnerability/
#CVE_2026_50656 #IOC #Cyberveille
updated 2026-06-12T06:33:21
1 posts
3 repos
https://github.com/citruscitruscitruscitruscitrusci/CVE-2026-48611-poc
Here we go. Product updates - the June edition.
This month your coverage got a LOT wider.
80 new detections landed in the Network Scanner, including pre-auth RCE in Oracle PeopleSoft and an auth bypass in Palo Alto PAN-OS. If any are in your scope, you know where to look.
The rest of June:
🌐 Our research team found two authentication flaws in phpBB, one buried in the code for over a decade. There's a working PoC for each, and the Network Scanner now detects the most critical one - CVE-2026-48611 (9.4).
🤖 AI where it earns its place in the Website Scanner and URL Fuzzer: smarter logins, deeper crawling, fewer fake 200 pages.
🎯 the XSS Exploiter now gives you two delivery options: script tag or fetch plus eval.
🔌 API: a new info_text key on /scans tells you why a scan didn't start.
☁️ We're now on the Microsoft Azure Marketplace, so you can add us to your existing Azure billing.
Our colleague Stefan Perju walks you through all of it in the video.
Until next time: stay sharp. Stay human.
Everything that shipped can be found in the change-log: https://pentest-tools.com/change-log
The phpBB PoCs and full write-up: https://pentest-tools.com/research/phpbb-authentication-bypass
#offensivesecurity #vulnerabilitymanagement #infosec #penetrationtesting
##updated 2026-06-10T00:31:59
1 posts
A decade of #Spring SpEL CVEs: CVE-2026-41852, CVE-2026-41851, CVE-2026-41850, CVE-2026-41849, CVE-2026-41729, CVE-2026-41719, CVE-2026-41717, CVE-2025-41253, CVE-2024-38808, CVE-2023-20861, CVE-2022-22980, CVE-2022-22963, CVE-2022-22950, CVE-2022-22947, CVE-2018-1273, CVE-2018-1260, CVE-2017-8046, CVE-2016-4977. RCE, DoS, you name it
##updated 2026-06-09T18:30:58
5 posts
2 repos
https://github.com/dhmosfunk/CVE-2026-49160-CVE-2026-47291-HTTP.sys
Our research team is back looking at CVE-2026-47291 - a CVSS 9.8 RCE bug in #Windows HTTP.sys. They show root cause and look at why detection may be just as hard as exploitation. https://www.zerodayinitiative.com/blog/2026/7/9/cve-2026-47291-remote-code-execution-in-the-windows-httpsys
##Our research team is back looking at CVE-2026-47291 - a CVSS 9.8 RCE bug in #Windows HTTP.sys. They show root cause and look at why detection may be just as hard as exploitation. https://www.zerodayinitiative.com/blog/2026/7/9/cve-2026-47291-remote-code-execution-in-the-windows-httpsys
##Our research team is back looking at CVE-2026-47291 - a CVSS 9.8 RCE bug in #Windows HTTP.sys. They show root cause and look at why detection may be just as hard as exploitation. https://www.zerodayinitiative.com/blog/2026/7/9/cve-2026-47291-remote-code-execution-in-the-windows-httpsys
##Our research team is back looking at CVE-2026-47291 - a CVSS 9.8 RCE bug in #Windows HTTP.sys. They show root cause and look at why detection may be just as hard as exploitation. https://www.zerodayinitiative.com/blog/2026/7/9/cve-2026-47291-remote-code-execution-in-the-windows-httpsys
##Our research team is back looking at CVE-2026-47291 - a CVSS 9.8 RCE bug in #Windows HTTP.sys. They show root cause and look at why detection may be just as hard as exploitation. https://www.zerodayinitiative.com/blog/2026/7/9/cve-2026-47291-remote-code-execution-in-the-windows-httpsys
##updated 2026-06-09T06:32:06
1 posts
A decade of #Spring SpEL CVEs: CVE-2026-41852, CVE-2026-41851, CVE-2026-41850, CVE-2026-41849, CVE-2026-41729, CVE-2026-41719, CVE-2026-41717, CVE-2025-41253, CVE-2024-38808, CVE-2023-20861, CVE-2022-22980, CVE-2022-22963, CVE-2022-22950, CVE-2022-22947, CVE-2018-1273, CVE-2018-1260, CVE-2017-8046, CVE-2016-4977. RCE, DoS, you name it
##updated 2026-06-05T16:24:43
2 posts
1 repos
📰 Patch Now: High-Severity Django SQL Injection Flaw (CVE-2026-1207) Now Actively Exploited
⚠️ Active Exploitation Alert: A high-severity SQL injection flaw in Django's GeoDjango module (CVE-2026-1207) is now being attacked in the wild. Affects apps using a PostGIS backend. Patch immediately to protect your database! #Django #CyberSecurity ...
🌐 cyber[.]netsecops[.]io
🔗 https://cyber.netsecops.io/articles/django-sql-injection-flaw-cve-2026-1207-under-active-attack/?…
##CVE-2026-1207 is a Django SQL injection flaw (CVSS 8.3) in PostGIS raster lookups. Canada's CCCS says it is exploited in the wild. Patch now.
##updated 2026-05-06T18:31:37
1 posts
ERPNext Patches Critical Server-Side Template Injection Vulnerability
ERPNext addressed a critical server-side template injection vulnerability (CVE-2026-38431) that allows authenticated attackers to execute arbitrary SQL queries and gain full access to the application database.
**If you run ERPNext, update immediately to a version later than 15.103.1. Until you've updated, remove email template editing rights from every account that doesn't absolutely need them. After patching keep those rights limited to a few highly trusted admins only.**
#cybersecurity #infosec #advisory #vulnerability
https://beyondmachines.net/event_details/erpnext-patches-critical-server-side-template-injection-vulnerability-w-o-q-m-r/gD2P6Ple2L
updated 2026-02-20T21:48:11
1 posts
23 repos
https://github.com/hackmelocal/CVE-2025-49113-Simulation
https://github.com/Zuack55/Roundcube-1.6.10-Post-Auth-RCE-CVE-2025-49113-
https://github.com/BiiTts/Roundcube-CVE-2025-49113
https://github.com/punitdarji/roundcube-cve-2025-49113
https://github.com/SyFi/CVE-2025-49113
https://github.com/rasool13x/exploit-CVE-2025-49113
https://github.com/hakaioffsec/CVE-2025-49113-exploit
https://github.com/AC8999/CVE-2025-49113
https://github.com/Ademking/CVE-2025-49113-nuclei-template
https://github.com/SteamPunk424/CVE-2025-49113-Roundcube-RCE-PHP
https://github.com/Zwique/CVE-2025-49113
https://github.com/CyberQuestor-infosec/CVE-2025-49113-Roundcube_1.6.10
https://github.com/00xCanelo/CVE-2025-49113
https://github.com/fearsoff-org/CVE-2025-49113
https://github.com/Joelp03/CVE-2025-49113
https://github.com/Evillm/CVE-2025-49113-PoC
https://github.com/LeakForge/CVE-2025-49113
https://github.com/rippsec/CVE-2025-49113-Roundcube-RCE
https://github.com/rxerium/CVE-2025-49113
https://github.com/ankitpandey383/roundcube-cve-2025-49113-lab
https://github.com/mooder1/CVE-2025-49113
⚠️ CRITICAL: Suspected China-Aligned Hackers Exploit Roundcube Flaws Against Universities
China-aligned group UNK_MassTraction is actively exploiting critical Roundcube vulnerabilities (CVE-2024-42009, CVE-2025-49113) to target physics and engineering departments at U.S. and Canadian universities. Attackers are stealing credentials and deploying web shells for persistent access. If your…
##updated 2025-11-05T20:12:46
1 posts
27 repos
https://github.com/Vip3rLi0n/CVE-2025-3248
https://github.com/Kiraly07/Demo_CVE-2025-3248
https://github.com/peiqiF4ck/WebFrameworkTools-5.5-enhance
https://github.com/bambooqj/cve-2025-3248
https://github.com/min8282/CVE-2025-3248
https://github.com/drackyjr/cve-2025-3248-exploit
https://github.com/b0ySie7e/CVE-2025-3248-POC
https://github.com/EQSTLab/CVE-2025-3248
https://github.com/dennisec/Mass-CVE-2025-3248
https://github.com/vigilante-1337/CVE-2025-3248
https://github.com/ynsmroztas/CVE-2025-3248-Langflow-RCE
https://github.com/xuemian168/CVE-2025-3248
https://github.com/dennisec/CVE-2025-3248
https://github.com/0-d3y/langflow-rce-exploit
https://github.com/12-test-12/CVE-2025-3248
https://github.com/PuddinCat/CVE-2025-3248-POC
https://github.com/imbas007/CVE-2025-3248
https://github.com/0xgh057r3c0n/CVE-2025-3248
https://github.com/wand3rlust/CVE-2025-3248
https://github.com/Praison001/CVE-2025-3248
https://github.com/zapstiko/CVE-2025-3248
https://github.com/verylazytech/CVE-2025-3248
https://github.com/ill-deed/Langflow-CVE-2025-3248-Multi-target
https://github.com/r0otk3r/CVE-2025-3248
https://github.com/nebari-playground/langflow-cve-2025-3248
Sysdig documented JADEPUFFER, the first agentic ransomware run end-to-end by an AI agent. It breached Langflow via CVE-2025-3248 and extorted a database.
#JADEPUFFER #AgenticRansomware #AI #Ransomware #Langflow #Sysdig #CyberSecurity #InfoSec
##updated 2025-10-22T19:18:03
1 posts
38 repos
https://github.com/darryk10/CVE-2022-22963
https://github.com/AayushmanThapaMagar/CVE-2022-22963
https://github.com/randallbanner/Spring-Cloud-Function-Vulnerability-CVE-2022-22963-RCE
https://github.com/cyberager/CVE-2022-22963
https://github.com/stevemats/Spring0DayCoreExploit
https://github.com/me2nuk/CVE-2022-22963
https://github.com/Kirill89/CVE-2022-22963-PoC
https://github.com/nikn0laty/RCE-in-Spring-Cloud-CVE-2022-22963
https://github.com/SourM1lk/CVE-2022-22963-Exploit
https://github.com/xmqaq/CVE-2022-22963
https://github.com/75ACOL/CVE-2022-22963
https://github.com/charis3306/CVE-2022-22963
https://github.com/iliass-dahman/CVE-2022-22963-POC
https://github.com/gunzf0x/CVE-2022-22963
https://github.com/J0ey17/CVE-2022-22963_Reverse-Shell-Exploit
https://github.com/lemmyz4n3771/CVE-2022-22963-PoC
https://github.com/Qualys/spring4scanwin
https://github.com/G01d3nW01f/CVE-2022-22963
https://github.com/puckiestyle/CVE-2022-22963
https://github.com/kh4sh3i/Spring-CVE
https://github.com/hktalent/spring-spel-0day-poc
https://github.com/tpt11fb/SpringVulScan
https://github.com/AabyssZG/SpringBoot-Scan
https://github.com/jschauma/check-springshell
https://github.com/RanDengShiFu/CVE-2022-22963
https://github.com/twseptian/cve-2022-22963
https://github.com/Shayz614/CVE-2022-22963
https://github.com/k3rwin/spring-cloud-function-rce
https://github.com/WuliRuler/SBSCAN
https://github.com/west-wind/Spring4Shell-Detection
https://github.com/Mustafa1986/CVE-2022-22963
https://github.com/SealPaPaPa/SpringCloudFunction-Research
https://github.com/viemsr/Spring_Cloud_Function_memshell
https://github.com/jrbH4CK/CVE-2022-22963
https://github.com/dinosn/CVE-2022-22963
https://github.com/XuCcc/VulEnv
A decade of #Spring SpEL CVEs: CVE-2026-41852, CVE-2026-41851, CVE-2026-41850, CVE-2026-41849, CVE-2026-41729, CVE-2026-41719, CVE-2026-41717, CVE-2025-41253, CVE-2024-38808, CVE-2023-20861, CVE-2022-22980, CVE-2022-22963, CVE-2022-22950, CVE-2022-22947, CVE-2018-1273, CVE-2018-1260, CVE-2017-8046, CVE-2016-4977. RCE, DoS, you name it
##updated 2025-10-22T00:34:11
1 posts
7 repos
https://github.com/DaniTheHack3r/CVE-2024-42009-PoC
https://github.com/Shubhankargupta691/CVE-2024-42009
https://github.com/Bhanunamikaze/CVE-2024-42009
https://github.com/0xbassiouny1337/CVE-2024-42009
https://github.com/Foxer131/CVE-2024-42008-9-exploit
https://github.com/segunakinsoyinu/CVE-2024-42009-roundcube-xss
⚠️ CRITICAL: Suspected China-Aligned Hackers Exploit Roundcube Flaws Against Universities
China-aligned group UNK_MassTraction is actively exploiting critical Roundcube vulnerabilities (CVE-2024-42009, CVE-2025-49113) to target physics and engineering departments at U.S. and Canadian universities. Attackers are stealing credentials and deploying web shells for persistent access. If your…
##updated 2024-05-14T17:55:42
1 posts
1 repos
https://github.com/shoucheng3/SpringSource__spring-security-oauth_CVE-2018-1260_2-3-2-RELEASE
A decade of #Spring SpEL CVEs: CVE-2026-41852, CVE-2026-41851, CVE-2026-41850, CVE-2026-41849, CVE-2026-41729, CVE-2026-41719, CVE-2026-41717, CVE-2025-41253, CVE-2024-38808, CVE-2023-20861, CVE-2022-22980, CVE-2022-22963, CVE-2022-22950, CVE-2022-22947, CVE-2018-1273, CVE-2018-1260, CVE-2017-8046, CVE-2016-4977. RCE, DoS, you name it
##updated 2024-04-03T18:30:55
1 posts
‼️ New Dark Web Informer Blog Post!
Title: Foxit PDF Reader RCE Flaw CVE-2024-30326 Highlights PDF Attack Surface
Link: https://darkwebinformer.com/foxit-pdf-reader-rce-flaw-cve-2024-30326-highlights-pdf-attack-surface/
##updated 2024-03-20T14:20:44
1 posts
8 repos
https://github.com/WuliRuler/SBSCAN
https://github.com/AabyssZG/SpringBoot-Scan
https://github.com/webr0ck/poc-cve-2018-1273
https://github.com/hdgokani/CVE-2018-1273
https://github.com/cved-sources/cve-2018-1273
https://github.com/jas502n/cve-2018-1273
A decade of #Spring SpEL CVEs: CVE-2026-41852, CVE-2026-41851, CVE-2026-41850, CVE-2026-41849, CVE-2026-41729, CVE-2026-41719, CVE-2026-41717, CVE-2025-41253, CVE-2024-38808, CVE-2023-20861, CVE-2022-22980, CVE-2022-22963, CVE-2022-22950, CVE-2022-22947, CVE-2018-1273, CVE-2018-1260, CVE-2017-8046, CVE-2016-4977. RCE, DoS, you name it
##updated 2023-07-24T19:30:19
1 posts
69 repos
https://github.com/YutuSec/SpEL
https://github.com/tangxiaofeng7/CVE-2022-22947-Spring-Cloud-Gateway
https://github.com/kkx600/Burp_VulPscan
https://github.com/shoucheng3/spring-cloud__spring-cloud-gateway_CVE-2022-22947_3-0-6
https://github.com/Vancomycin-g/CVE-2022-22947
https://github.com/Jun-5heng/CVE-2022-22947
https://github.com/viemsr/spring_cloud_gateway_memshell
https://github.com/LY613313/CVE-2022-22947
https://github.com/nu0l/cve-2022-22947
https://github.com/skysliently/CVE-2022-22947-pb-ai
https://github.com/MoCh3n/CVE-2022-22947-Spring-Cloud-Gateway-SpelRCE
https://github.com/whwlsfb/cve-2022-22947-godzilla-memshell
https://github.com/hunzi0/CVE-2022-22947-Rce_POC
https://github.com/entr0pie/demo-cve-2022-22947
https://github.com/superneilcn/SpringExploitGUI
https://github.com/Nathaniel1025/CVE-2022-22947
https://github.com/Enokiy/cve-2022-22947-spring-cloud-gateway
https://github.com/Vulnmachines/spring-cve-2022-22947
https://github.com/PaoPaoLong-lab/Spring-CVE-2022-22947-
https://github.com/0x7eTeam/CVE-2022-22947
https://github.com/Wrin9/CVE-2022-22947
https://github.com/k3rwin/spring-cloud-gateway-rce
https://github.com/Greetdawn/CVE-2022-22947
https://github.com/Le1a/CVE-2022-22947
https://github.com/dbgee/CVE-2022-22947
https://github.com/bysinks/CVE-2022-22947
https://github.com/SecNN/CVE-2022-22947_Rce_Exp
https://github.com/lucksec/Spring-Cloud-Gateway-CVE-2022-22947
https://github.com/22ke/CVE-2022-22947
https://github.com/darkb1rd/cve-2022-22947
https://github.com/nanaao/CVE-2022-22947-POC
https://github.com/ciri3/spring-cloud-gateway-cve-2022-22947-report
https://github.com/stayfoolish777/CVE-2022-22947-POC
https://github.com/qq87234770/CVE-2022-22947
https://github.com/talentsec/Spring-Cloud-Gateway-CVE-2022-22947
https://github.com/B0rn2d/Spring-Cloud-Gateway-Nacos
https://github.com/hh-hunter/cve-2022-22947-docker
https://github.com/tpt11fb/SpringVulScan
https://github.com/AabyssZG/SpringBoot-Scan
https://github.com/scopion/cve-2022-22947
https://github.com/aesm1p/CVE-2022-22947-POC-Reproduce
https://github.com/SanderSchepers1993/CyberSec2026
https://github.com/SiJiDo/CVE-2022-22947
https://github.com/Bin4xin/bin4xin.github.io
https://github.com/0730Nophone/CVE-2022-22947-
https://github.com/scopion/CVE-2022-22947-exp
https://github.com/Summer177/Spring-Cloud-Gateway-CVE-2022-22947
https://github.com/kmahyyg/CVE-2022-22947
https://github.com/WuliRuler/SBSCAN
https://github.com/24-2021/EXP-POC
https://github.com/4nNns/CVE-2022-22947
https://github.com/Zh0um1/CVE-2022-22947
https://github.com/crowsec-edtech/CVE-2022-22947
https://github.com/sentryCyberSec/sentryCyberSec.github.io
https://github.com/BerMalBerIst/CVE-2022-22947
https://github.com/twseptian/cve-2022-22947
https://github.com/Sumitpathania03/CVE-2022-22947
https://github.com/Tas9er/SpringCloudGatewayRCE
https://github.com/flying0er/CVE-2022-22947-goby
https://github.com/Wrong-pixel/CVE-2022-22947-exp
https://github.com/sagaryadav8742/springcloudRCE
https://github.com/fbion/CVE-2022-22947
https://github.com/XuCcc/VulEnv
https://github.com/mrknow001/CVE-2022-22947
https://github.com/anansec/CVE-2022-22947_EXP
https://github.com/cc3305/CVE-2022-22947
https://github.com/Arrnitage/CVE-2022-22947_exp
A decade of #Spring SpEL CVEs: CVE-2026-41852, CVE-2026-41851, CVE-2026-41850, CVE-2026-41849, CVE-2026-41729, CVE-2026-41719, CVE-2026-41717, CVE-2025-41253, CVE-2024-38808, CVE-2023-20861, CVE-2022-22980, CVE-2022-22963, CVE-2022-22950, CVE-2022-22947, CVE-2018-1273, CVE-2018-1260, CVE-2017-8046, CVE-2016-4977. RCE, DoS, you name it
##updated 2023-03-28T22:26:11
1 posts
A decade of #Spring SpEL CVEs: CVE-2026-41852, CVE-2026-41851, CVE-2026-41850, CVE-2026-41849, CVE-2026-41729, CVE-2026-41719, CVE-2026-41717, CVE-2025-41253, CVE-2024-38808, CVE-2023-20861, CVE-2022-22980, CVE-2022-22963, CVE-2022-22950, CVE-2022-22947, CVE-2018-1273, CVE-2018-1260, CVE-2017-8046, CVE-2016-4977. RCE, DoS, you name it
##updated 2023-02-02T05:01:22
1 posts
10 repos
https://github.com/cved-sources/cve-2017-8046
https://github.com/m3ssap0/SpringBreakVulnerableApp
https://github.com/Soontao/CVE-2017-8046-DEMO
https://github.com/bkhablenko/CVE-2017-8046
https://github.com/sj/spring-data-rest-CVE-2017-8046
https://github.com/m3ssap0/spring-break_cve-2017-8046
https://github.com/guanjivip/CVE-2017-8046
https://github.com/FixYourFace/SpringBreakPoC
A decade of #Spring SpEL CVEs: CVE-2026-41852, CVE-2026-41851, CVE-2026-41850, CVE-2026-41849, CVE-2026-41729, CVE-2026-41719, CVE-2026-41717, CVE-2025-41253, CVE-2024-38808, CVE-2023-20861, CVE-2022-22980, CVE-2022-22963, CVE-2022-22950, CVE-2022-22947, CVE-2018-1273, CVE-2018-1260, CVE-2017-8046, CVE-2016-4977. RCE, DoS, you name it
##updated 2023-01-27T05:05:05
1 posts
8 repos
https://github.com/Vulnmachines/Spring_cve-2022-22980
https://github.com/jweny/cve-2022-22980
https://github.com/kuron3k0/Spring-Data-Mongodb-Example
https://github.com/W01fh4cker/Serein
https://github.com/Eliasdekiniweek/CVE-2022-22980
https://github.com/murataydemir/CVE-2022-22980
A decade of #Spring SpEL CVEs: CVE-2026-41852, CVE-2026-41851, CVE-2026-41850, CVE-2026-41849, CVE-2026-41729, CVE-2026-41719, CVE-2026-41717, CVE-2025-41253, CVE-2024-38808, CVE-2023-20861, CVE-2022-22980, CVE-2022-22963, CVE-2022-22950, CVE-2022-22947, CVE-2018-1273, CVE-2018-1260, CVE-2017-8046, CVE-2016-4977. RCE, DoS, you name it
##🟠 CVE-2026-55687 - High (7.5)
ESF-IDF is the Espressif Internet of Things (IOT) Development Framework. Versions 6.0.1, 5.5.4, 5.4.4, 5.3.5, and possibly prior contain an out-of-bounds write in jpeg_parse_dqt_marker() in components/esp_driver_jpeg/jpeg_parse_marker.c because th...
🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-55687/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##🟠 CVE-2026-55687 - High (7.5)
ESF-IDF is the Espressif Internet of Things (IOT) Development Framework. Versions 6.0.1, 5.5.4, 5.4.4, 5.3.5, and possibly prior contain an out-of-bounds write in jpeg_parse_dqt_marker() in components/esp_driver_jpeg/jpeg_parse_marker.c because th...
🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-55687/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##🟠 CVE-2026-55641 - High (8.2)
9Router is an AI router & token saver. Prior to 0.5.2, 9router determines whether a /v1 LLM proxy request is local by reading the client-controlled Host header, allowing a remote unauthenticated attacker to send Host: localhost and bypass API-key ...
🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-55641/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##🟠 CVE-2026-55641 - High (8.2)
9Router is an AI router & token saver. Prior to 0.5.2, 9router determines whether a /v1 LLM proxy request is local by reading the client-controlled Host header, allowing a remote unauthenticated attacker to send Host: localhost and bypass API-key ...
🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-55641/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##🟠 CVE-2026-55638 - High (8.6)
9Router is an AI router & token saver. Prior to 0.5.2, 9router protects /v1, /v1beta, /api/v1, and /api/v1beta in src/dashboardGuard.js but omits /codex before next.config.mjs rewrites /codex/* to /api/v1/responses. A remote unauthenticated attack...
🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-55638/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##🟠 CVE-2026-55638 - High (8.6)
9Router is an AI router & token saver. Prior to 0.5.2, 9router protects /v1, /v1beta, /api/v1, and /api/v1beta in src/dashboardGuard.js but omits /codex before next.config.mjs rewrites /codex/* to /api/v1/responses. A remote unauthenticated attack...
🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-55638/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##🟠 CVE-2026-56675 - High (8.3)
9Router is an AI router & token saver. Prior to 0.5.2, 9router treats loopback requests as trusted and allows /v1/* access without an API key, so a same-host reverse proxy that forwards public traffic to the backend through 127.0.0.1 causes src/da...
🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-56675/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##🟠 CVE-2026-56675 - High (8.3)
9Router is an AI router & token saver. Prior to 0.5.2, 9router treats loopback requests as trusted and allows /v1/* access without an API key, so a same-host reverse proxy that forwards public traffic to the backend through 127.0.0.1 causes src/da...
🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-56675/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##🟠 CVE-2026-56668 - High (8.1)
ZITADEL is an open source identity management platform. Prior to 4.15.3, ZITADEL's OAuth2 Token Exchange endpoint for urn:ietf:params:oauth:grant-type:token-exchange does not verify that the subject token belongs to the requesting client or that r...
🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-56668/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##🟠 CVE-2026-56668 - High (8.1)
ZITADEL is an open source identity management platform. Prior to 4.15.3, ZITADEL's OAuth2 Token Exchange endpoint for urn:ietf:params:oauth:grant-type:token-exchange does not verify that the subject token belongs to the requesting client or that r...
🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-56668/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##🟠 CVE-2026-55516 - High (7.7)
Snipe-IT is an IT asset/license management system. Prior to 8.6.2, PATCH or PUT /api/v1/maintenances/{maintenance_id} checks access to the current maintenance record and asset but then fills attacker-controlled fields including asset_id without re...
🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-55516/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##🟠 CVE-2026-55516 - High (7.7)
Snipe-IT is an IT asset/license management system. Prior to 8.6.2, PATCH or PUT /api/v1/maintenances/{maintenance_id} checks access to the current maintenance record and asset but then fills attacker-controlled fields including asset_id without re...
🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-55516/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##🟠 CVE-2026-55377 - High (8.1)
Logto is the modern, open-source auth infrastructure for SaaS and AI apps. Prior to 1.41.0, Logto's Account Center step-up check accepted any active verification record that belonged to the current user and had isVerified === true. A WebAuthn regi...
🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-55377/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##🟠 CVE-2026-55377 - High (8.1)
Logto is the modern, open-source auth infrastructure for SaaS and AI apps. Prior to 1.41.0, Logto's Account Center step-up check accepted any active verification record that belonged to the current user and had isVerified === true. A WebAuthn regi...
🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-55377/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##🟠 CVE-2026-52747 - High (8.6)
ModSecurity is an open source, cross platform web application firewall (WAF) engine for Apache, IIS and Nginx. Prior to 3.0.16, the multipart/form-data request body parser in libmodsecurity silently removes embedded line breaks from non-file form-...
🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-52747/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##🟠 CVE-2026-52747 - High (8.6)
ModSecurity is an open source, cross platform web application firewall (WAF) engine for Apache, IIS and Nginx. Prior to 3.0.16, the multipart/form-data request body parser in libmodsecurity silently removes embedded line breaks from non-file form-...
🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-52747/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##🟠 CVE-2026-49213 - High (8.1)
TypeBot is a chatbot builder tool. Prior to 3.17.2, Typebot's shared SSRF validator in packages/lib/src/ssrf/validateHttpReqUrl.ts can be bypassed with the IPv6 unspecified address :: because validateIPAddress blocks local, metadata, and private r...
🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-49213/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##🟠 CVE-2026-49213 - High (8.1)
TypeBot is a chatbot builder tool. Prior to 3.17.2, Typebot's shared SSRF validator in packages/lib/src/ssrf/validateHttpReqUrl.ts can be bypassed with the IPv6 unspecified address :: because validateIPAddress blocks local, metadata, and private r...
🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-49213/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##CVE-2026-55879 - Critical XSS in OpenReplay. Unauthenticated attackers can inject scripts via tracking SDK, steal session JWTs. CVSS 9.3. No patch available - disable public project keys immediately. #CVE #infosec #OpenReplay
##🔴 CVE-2026-55879 - Critical (9.3)
OpenReplay is a self-hosted session replay suite. From 1.24.0 before 1.25.0, the OpenReplay tracking SDK accepts custom event names and captured page URLs from any visitor using a public project key, stores them in ClickHouse without output encodi...
🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-55879/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##CVE-2026-54149 - Critical OS Command Injection in MaxKB. Authenticated users can execute arbitrary commands via malicious .tool import and MCP transport. CVSS 8.8. No patch available yet. Mitigate immediately. #CVE #MaxKB #infosec
##🟠 CVE-2026-54149 - High (8.8)
MaxKB is an open-source AI assistant for enterprise. Prior to 2.10.0-lts, MaxKB tool import functionality in apps/tools/serializers/tool.py and MCP referencing mode in apps/application/chat_pipeline/step/chat_step/impl/base_chat_step.py do not con...
🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-54149/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##🟠 CVE-2026-58499 - High (8.2)
EverOS is a memory runtime for agents. Prior to 1.0.1, EverOS is vulnerable to path traversal in the POST /api/v1/memory/add ingestion endpoint because the per-message sender_id field was not validated as a path-safe identifier, unlike app_id and ...
🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-58499/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##🟠 CVE-2026-55789 - High (8.5)
Logto is the modern, open-source auth infrastructure for SaaS and AI apps. Prior to 1.41.0, Logto's self-hosted SAML application IdP built the signed SAML response and assertion by string-substituting user-controlled profile attributes such as nam...
🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-55789/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##v4.01 of our Windows client is at https://cryptostorm.is/windows#widget
See attached for client-side fixes.
Servers were updated to OpenVPN 2.7.5 on the 2nd, and v4.01 bundles 2.7.5, so we're good on CVE-2026-12996, CVE-2026-13117, CVE-2026-12932, and CVE-2026-13698.
##v4.01 of our Windows client is at https://cryptostorm.is/windows#widget
See attached for client-side fixes.
Servers were updated to OpenVPN 2.7.5 on the 2nd, and v4.01 bundles 2.7.5, so we're good on CVE-2026-12996, CVE-2026-13117, CVE-2026-12932, and CVE-2026-13698.
##v4.01 of our Windows client is at https://cryptostorm.is/windows#widget
See attached for client-side fixes.
Servers were updated to OpenVPN 2.7.5 on the 2nd, and v4.01 bundles 2.7.5, so we're good on CVE-2026-12996, CVE-2026-13117, CVE-2026-12932, and CVE-2026-13698.
##2 posts
3 repos
https://github.com/kaleth4/CVE-2026-20896
Kibertámadók már 13 nappal a bejelentés után vizsgálják a Gitea Docker sebezhetőséget (CVE-2026-20896)
##⚠️ CRITICAL: Critical Gitea Flaw Under Active Exploitation, Researchers Warn
Critical vulnerability CVE-2026-20896 in Gitea's reverse-proxy authentication is under active exploitation. Attackers bypass authentication by spoofing a single HTTP header to gain unauthorized access to repositories and secrets. Gitea Docker images prior to version 1.26.3 are vulnerable due to def…
##🟠 CVE-2026-59834 - High (7.5)
SiYuan is an open-source personal knowledge management system. Prior to 3.7.1, the block search endpoint POST /api/search/fullTextSearchBlock concatenates attacker-controlled paths values into SQL predicates used by non-SQL search modes, allowing ...
🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-59834/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##🟠 CVE-2026-59832 - High (7.7)
SiYuan is an open-source personal knowledge management system. Prior to 3.7.1, the /snippets/*filepath route handler serveSnippets in kernel/server/serve.go joins a single-decoded request path with the snippets directory without subpath containmen...
🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-59832/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##A Roundcube zero-click XSS, CVE-2026-54433, lets an email run script with no click. Roundcube 1.7.2 also fixes a second stored XSS. Update now.
#Roundcube #XSS #ZeroClick #Webmail #StoredXSS #CyberSecurity #Vulnerability #InfoSec
##OPNsense root RCE flaws are public with PoC code. CVE-2026-57155 (9.9) chains an arbitrary file write to root. Patch 26.1.11 or 26.4.1p1 now.
#OPNsense #RootRCE #RCE #FirewallSecurity #CyberSecurity #Vulnerability #InfoSec #PoC
##