##
Updated at UTC 2026-07-10T23:40:09.505218
| CVE | CVSS | EPSS | Posts | Repos | Nuclei | Updated | Description |
|---|---|---|---|---|---|---|---|
| CVE-2026-57850 | 8.3 | 0.00% | 2 | 0 | 2026-07-10T21:32:40 | RustDesk before 1.4.9 does not enforce a session's authorized connection scope o | |
| CVE-2026-61460 | 8.8 | 0.00% | 2 | 0 | 2026-07-10T21:32:32 | Krayin CRM through 2.2.3 contains an insecure direct object reference vulnerabil | |
| CVE-2026-61459 | 9.8 | 0.00% | 2 | 0 | 2026-07-10T21:32:32 | MCP Server Kubernetes before 3.9.0 contains an argument injection vulnerability | |
| CVE-2026-5801 | 9.8 | 0.00% | 2 | 0 | 2026-07-10T21:32:32 | Improper neutralization of special elements used in an SQL command ('SQL injecti | |
| CVE-2026-58499 | 8.2 | 0.00% | 2 | 0 | 2026-07-10T21:17:00.197000 | EverOS is a memory runtime for agents. Prior to 1.0.1, EverOS is vulnerable to p | |
| CVE-2026-57807 | 9.8 | 0.00% | 2 | 0 | 2026-07-10T21:16:59.947000 | Authentication Bypass Using an Alternate Path or Channel vulnerability in miniOr | |
| CVE-2026-57220 | 7.5 | 0.00% | 2 | 0 | 2026-07-10T21:16:59.180000 | RabbitMQ is a messaging and streaming broker. Prior to 4.2.6, the RabbitMQ strea | |
| CVE-2026-55879 | 9.3 | 0.00% | 2 | 0 | 2026-07-10T21:16:57.367000 | OpenReplay is a self-hosted session replay suite. From 1.24.0 before 1.25.0, the | |
| CVE-2026-55659 | 7.7 | 0.00% | 2 | 0 | 2026-07-10T21:16:56.577000 | Grist is spreadsheet software using Python as its formula language. Prior to 1.7 | |
| CVE-2026-55213 | 7.5 | 0.00% | 2 | 0 | 2026-07-10T21:16:55.497000 | h2o is an HTTP server with support for HTTP/1.x, HTTP/2 and HTTP/3. Prior to com | |
| CVE-2026-55789 | 8.5 | 0.00% | 2 | 0 | 2026-07-10T20:16:47.933000 | Logto is the modern, open-source auth infrastructure for SaaS and AI apps. Prior | |
| CVE-2026-12598 | 8.1 | 0.35% | 1 | 0 | 2026-07-10T19:17:20.113000 | The LoginPress Pro plugin for WordPress is vulnerable to authentication bypass i | |
| CVE-2026-54527 | 0 | 0.28% | 1 | 0 | 2026-07-10T19:05:27.310000 | JupyterLab Git is a Git extension for JupyterLab. From 0.30.0b3 before 0.54.0, t | |
| CVE-2026-60105 | 8.6 | 0.31% | 1 | 0 | 2026-07-10T18:46:32.250000 | Monsta FTP before 2.14.5 contains a server-side request forgery vulnerability in | |
| CVE-2025-45422 | 8.1 | 0.22% | 1 | 1 | 2026-07-10T18:33:14 | Incorrect access control in Proximus b-box v8c.725A allows authenticated attacke | |
| CVE-2026-56291 | 9.8 | 0.28% | 7 | 0 | 2026-07-10T18:33:13 | The Joomla extension Balbooa Forms is vulnerable to an unauthenticated arbitrary | |
| CVE-2026-0288 | 7.5 | 0.52% | 2 | 0 | 2026-07-10T18:33:13 | Multiple buffer overflow vulnerabilities in the User-ID Terminal Server Agent (T | |
| CVE-2026-15143 | 9.3 | 0.00% | 2 | 0 | 2026-07-10T18:32:26 | A flaw was found in the file_type content detector of guardrails-detectors. This | |
| CVE-2026-33382 | 7.5 | 0.00% | 2 | 0 | 2026-07-10T18:32:26 | Several Grafana API endpoints, some of them unauthenticated, do not limit the si | |
| CVE-2026-48939 | 9.8 | 0.56% | 6 | 2 | 2026-07-10T18:32:03 | A vulnerability in the iCagenda extension for Joomla allows the upload of arbitr | |
| CVE-2026-12685 | 7.5 | 0.14% | 1 | 0 | 2026-07-10T17:56:00.910000 | The EscortWP escortwp WordPress theme through 3.6.2 was distributed with a vendo | |
| CVE-2026-57026 | 7.5 | 0.46% | 1 | 0 | 2026-07-10T17:49:57.737000 | An Improper Validation of Syntactic Correctness of Input vulnerability in the SI | |
| CVE-2026-57589 | 7.4 | 0.12% | 9 | 0 | 2026-07-10T16:39:52.480000 | sys/kern/sysv_sem.c in OpenBSD through 7.9 has a use-after-free allowing local p | |
| CVE-2026-59832 | 7.7 | 0.32% | 1 | 0 | 2026-07-10T16:16:38.187000 | SiYuan is an open-source personal knowledge management system. Prior to 3.7.1, t | |
| CVE-2026-54771 | 8.1 | 0.39% | 1 | 0 | 2026-07-10T15:49:19.093000 | Langroid is a framework for building large-language-model-powered applications. | |
| CVE-2026-41880 | 0 | 1.33% | 1 | 0 | 2026-07-10T15:46:07.777000 | R-SOFT DMS is vulnerable to OS Command Injection in the Optical Character Recogn | |
| CVE-2026-56689 | 7.7 | 0.00% | 1 | 0 | 2026-07-10T15:45:33.663000 | Dell PowerFlex Manager, Version prior to 5.1.0.1, contain(s) an Improper Neutral | |
| CVE-2026-14894 | 9.8 | 0.52% | 2 | 0 | 2026-07-10T15:43:30.330000 | The Super Forms – Drag & Drop Form Builder plugin for WordPress is vulnerable to | |
| CVE-2026-56688 | 9.1 | 0.00% | 1 | 0 | 2026-07-10T12:31:56 | Dell PowerFlex Manager, Version prior to 5.1.0.1, contain(s) an Improper Neutral | |
| CVE-2026-15378 | 9.3 | 0.42% | 3 | 0 | 2026-07-10T12:31:55 | A flaw was found in the `guardrails-detectors` component. This vulnerability all | |
| CVE-2026-54423 | 8.2 | 0.52% | 1 | 0 | 2026-07-10T09:31:36 | In OpenStack Ironic before 37.0.1, an Ironic user with the ability to deploy nod | |
| CVE-2026-15300 | 9.1 | 0.35% | 1 | 0 | 2026-07-10T06:31:33 | The GEO my WP plugin for WordPress was vulnerable to SQL Injection via the 'dist | |
| CVE-2026-15070 | 8.8 | 0.26% | 1 | 0 | 2026-07-10T06:31:28 | The Salon Booking System – Free Version plugin for WordPress is vulnerable to Cr | |
| CVE-2026-46215 | 7.8 | 0.13% | 1 | 1 | 2026-07-10T05:16:37.103000 | In the Linux kernel, the following vulnerability has been resolved: drm: Set ol | |
| CVE-2026-15112 | 8.8 | 0.26% | 1 | 0 | 2026-07-10T05:16:28.503000 | Use after free in Ozone in Google Chrome prior to 150.0.7871.115 allowed a remot | |
| CVE-2026-12597 | 8.1 | 0.42% | 1 | 0 | 2026-07-10T00:31:34 | The LoginPress Pro plugin for WordPress is vulnerable to Authentication Bypass v | |
| CVE-2026-58123 | 9.8 | 0.93% | 2 | 0 | 2026-07-10T00:31:34 | Hermes WebUI before 0.51.788 contains an unauthenticated remote code execution v | |
| CVE-2026-12595 | 8.1 | 0.35% | 1 | 0 | 2026-07-10T00:31:34 | The LoginPress Pro plugin for WordPress is vulnerable to Authentication Bypass v | |
| CVE-2026-57023 | 7.5 | 0.46% | 1 | 0 | 2026-07-10T00:31:33 | An Improper Validation of Specified Quantity in Input vulnerability in the TCP p | |
| CVE-2026-58122 | 9.1 | 0.29% | 2 | 0 | 2026-07-10T00:31:33 | Hermes WebUI before 0.51.307 contains an authentication bypass vulnerability tha | |
| CVE-2026-58143 | 8.8 | 0.18% | 1 | 0 | 2026-07-10T00:31:33 | Cotonti Siena 0.9.26 and earlier contains a cross-site request forgery vulnerabi | |
| CVE-2026-58473 | 9.1 | 0.37% | 1 | 0 | 2026-07-09T19:37:12.317000 | Cognee before 1.2.0 contains an improper access control vulnerability that allow | |
| CVE-2026-15130 | 4.3 | 0.17% | 1 | 0 | 2026-07-09T17:49:42.217000 | Insufficient policy enforcement in Navigation in Google Chrome prior to 150.0.78 | |
| CVE-2026-13698 | 7.5 | 0.55% | 1 | 0 | 2026-07-09T15:32:20 | A memory leak in OpenVPN version 2.5.0 through 2.5.11, 2.6.0 through 2.6.20 and | |
| CVE-2026-15128 | 6.1 | 0.14% | 1 | 0 | 2026-07-09T12:31:30 | Inappropriate implementation in Forms in Google Chrome prior to 150.0.7871.115 a | |
| CVE-2026-15129 | 8.8 | 0.22% | 1 | 0 | 2026-07-09T12:31:30 | Use after free in Views in Google Chrome prior to 150.0.7871.115 allowed a remot | |
| CVE-2026-9253 | 7.2 | 0.20% | 1 | 0 | 2026-07-09T12:30:35 | The WP Cost Estimation & Payment Forms Builder (E&P Forms) plugin for WordPress | |
| CVE-2026-14245 | 9.8 | 0.59% | 1 | 0 | 2026-07-09T09:30:40 | The miniOrange OTP Login, Verification and SMS Notifications plugin for WordPres | |
| CVE-2026-46242 | 7.8 | 0.12% | 4 | 2 | 2026-07-09T01:19:06.807000 | In the Linux kernel, the following vulnerability has been resolved: eventpoll: | |
| CVE-2026-43499 | 7.8 | 0.12% | 8 | 7 | 2026-07-09T00:32:11 | In the Linux kernel, the following vulnerability has been resolved: rtmutex: Us | |
| CVE-2026-47646 | 9.3 | 0.27% | 1 | 0 | 2026-07-09T00:31:25 | Improper neutralization of input during web page generation ('cross-site scripti | |
| CVE-2026-6896 | 8.7 | 0.28% | 2 | 0 | 2026-07-08T21:30:42 | GitLab has remediated an issue in GitLab EE affecting all versions from 13.11 be | |
| CVE-2026-58525 | 8.2 | 0.36% | 1 | 0 | 2026-07-08T21:30:37 | Improper access control in Microsoft Edge (Chromium-based) allows an unauthorize | |
| CVE-2026-53481 | 9.8 | 0.63% | 1 | 0 | 2026-07-08T19:57:35.883000 | Dell PowerProtect Data Domain, versions 7.7.1.0 through 8.7, LTS2026 release ver | |
| CVE-2026-33264 | 9.8 | 1.65% | 1 | 0 | 2026-07-08T19:37:10.507000 | A bug in `BaseSerialization.deserialize()` allowed unrestricted `import_string() | |
| CVE-2026-11405 | 9.8 | 0.67% | 6 | 1 | 2026-07-08T15:32:52 | The web server binary /bin/httpd contains a hidden backdoor authentication mecha | |
| CVE-2026-11903 | 8.0 | 0.30% | 1 | 0 | 2026-07-08T15:32:13 | Improper neutralization of input during web page generation ('cross-site scripti | |
| CVE-2026-58480 | 9.8 | 0.60% | 1 | 0 | 2026-07-08T15:28:15.630000 | Blocksy Companion Pro plugin for WordPress before 2.1.47 contains an unauthentic | |
| CVE-2026-55255 | 8.4 | 0.47% | 7 | 1 | 2026-07-08T13:39:12.593000 | Langflow is a tool for building and deploying AI-powered agents and workflows. P | |
| CVE-2026-12378 | 8.1 | 0.39% | 1 | 0 | 2026-07-08T12:31:28 | The Appointment Booking Calendar Plugin and Scheduling Plugin WordPress plugin | |
| CVE-2026-9695 | 9.8 | 0.33% | 1 | 0 | 2026-07-08T09:31:48 | An Improper Authentication vulnerability affecting DELMIA Apriso from Release 20 | |
| CVE-2026-60002 | 7.7 | 0.26% | 1 | 0 | 2026-07-08T03:30:33 | ssh in OpenSSH before 10.4 can have a use-after-free when a server changes its h | |
| CVE-2026-56843 | 9.9 | 0.34% | 1 | 0 | 2026-07-08T03:30:33 | Incorrect authorization in the XML-RPC API of WebPros Plesk before 18.0.78.4 all | |
| CVE-2026-59706 | 9.3 | 0.26% | 1 | 0 | 2026-07-08T00:38:03 | mem0 contains unauthenticated config API endpoints that expose LLM API keys in p | |
| CVE-2026-56290 | 9.8 | 2.91% | 8 | 3 | 2026-07-07T21:32:33 | The Joomla extension Page Builder CK is vulnerable to an unauthenticated arbitra | |
| CVE-2026-48282 | 10.0 | 28.58% | 11 | 2 | template | 2026-07-07T21:32:33 | ColdFusion versions 2025.9, 2023.20 and earlier are affected by an Improper Limi |
| CVE-2026-48908 | 9.8 | 1.57% | 4 | 9 | 2026-07-07T21:31:26 | A vulnerability in the SP Page Builder for Joomla allows the upload of arbitrary | |
| CVE-2026-54060 | 7.5 | 0.36% | 1 | 0 | 2026-07-07T18:58:45.827000 | Pillow is a Python imaging library. Prior to 12.3.0, PIL/FontFile.py FontFile.co | |
| CVE-2026-12375 | 9.8 | 0.30% | 1 | 0 | 2026-07-07T15:33:58 | The uncanny-automator-pro WordPress plugin before 7.3.0.6 was distributed with m | |
| CVE-2026-4375 | 9.0 | 0.25% | 1 | 0 | 2026-07-07T15:33:58 | The DoLeads Integrator WordPress plugin through 0.65, wp2epub WordPress plugin t | |
| CVE-2026-34168 | 8.8 | 0.40% | 1 | 0 | 2026-07-07T15:16:44.500000 | Coolify is an open-source and self-hostable tool for managing servers, applicati | |
| CVE-2026-42200 | 8.8 | 0.54% | 1 | 0 | 2026-07-07T13:22:13.557000 | Coolify is an open-source and self-hostable tool for managing servers, applicati | |
| CVE-2026-33655 | 7.7 | 0.44% | 1 | 0 | 2026-07-07T13:01:13 | ## Summary The default SSRF protection configuration did not apply IP filtering | |
| CVE-2026-14345 | 9.8 | 0.74% | 1 | 0 | 2026-07-07T06:31:27 | The WPFunnels – Funnel Builder for WooCommerce with Checkout & One Click Upsell | |
| CVE-2026-55500 | 9.9 | 0.00% | 1 | 0 | 2026-07-06T21:37:49 | ## Summary The `/api/settings/database` endpoint allows full database export (c | |
| CVE-2026-13753 | 7.5 | 0.27% | 1 | 0 | 2026-07-06T21:30:38 | A missing authorization vulnerability exists in the embedded webserver of HP Des | |
| CVE-2026-53359 | None | 0.18% | 6 | 5 | 2026-07-06T21:30:34 | In the Linux kernel, the following vulnerability has been resolved: KVM: x86: F | |
| CVE-2026-54769 | 10.0 | 0.91% | 1 | 0 | 2026-07-06T20:42:02 | ### Advisory Details **Title**: Sandbox Escape to Remote Code Execution via Inco | |
| CVE-2026-13768 | 10.0 | 0.56% | 1 | 1 | 2026-07-06T19:42:32.890000 | Gardyn devices expose a privileged iothubowner key. Access to this key will allo | |
| CVE-2026-14544 | 9.8 | 0.51% | 1 | 0 | 2026-07-03T09:31:35 | A flaw was found in HPLIP (HP Linux Imaging and Printing Software). This vulnera | |
| CVE-2026-57517 | 9.8 | 0.59% | 1 | 2 | 2026-07-02T20:17:04.450000 | Control Web Panel before 0.9.8.1225 contains a blind SQL injection vulnerability | |
| CVE-2026-50746 | 10.0 | 0.83% | 3 | 1 | 2026-07-02T15:32:12 | A malicious actor with access to the network could exploit an Improper Access Co | |
| CVE-2026-43503 | 8.8 | 0.14% | 1 | 9 | 2026-07-02T12:31:55 | In the Linux kernel, the following vulnerability has been resolved: net: skbuff | |
| CVE-2026-23537 | 9.1 | 0.57% | 1 | 0 | 2026-07-02T12:16:57.127000 | A vulnerability has been identified in the Feast Feature Server’s `/save-documen | |
| CVE-2026-10539 | 9.0 | 0.24% | 1 | 0 | 2026-07-01T19:59:44.537000 | A Control-M/Server communication command does not sufficiently filter or sanitiz | |
| CVE-2026-8451 | 7.5 | 0.50% | 2 | 5 | 2026-07-01T18:31:24 | Insufficient input validation in NetScaler ADC and NetScaler Gateway leading to | |
| CVE-2026-13602 | None | 0.24% | 1 | 0 | 2026-07-01T15:35:27 | We found a chain of combining multiple weaknesses in the product that could allo | |
| CVE-2026-8037 | 9.6 | 29.64% | 1 | 2 | template | 2026-07-01T05:16:25.290000 | OS Command Injection Remote Code Execution Vulnerability in API in Progress ADC |
| CVE-2026-41717 | 8.1 | 0.33% | 1 | 0 | 2026-06-30T22:16:53.940000 | Spring Data MongoDB contains a SpEL (Spring Expression Language) expression inje | |
| CVE-2026-23111 | 7.8 | 0.34% | 1 | 8 | 2026-06-30T03:36:36 | In the Linux kernel, the following vulnerability has been resolved: netfilter: | |
| CVE-2018-1273 | 9.8 | 95.65% | 1 | 8 | template | 2026-06-26T18:44:14.703000 | Spring Data Commons, versions prior to 1.13 to 1.13.10, 2.0 to 2.0.5, and older |
| CVE-2026-53111 | None | 0.18% | 1 | 0 | 2026-06-24T18:32:50 | In the Linux kernel, the following vulnerability has been resolved: bpf: test_r | |
| CVE-2026-39999 | 9.1 | 0.39% | 1 | 0 | 2026-06-23T15:08:22.603000 | Authentication Bypass by Spoofing vulnerability in Apache APISIX. The attacker | |
| CVE-2026-54782 | 10.0 | 0.25% | 1 | 0 | 2026-06-19T20:47:13 | ### Impact Full impersonation of any principal the trusted STS could have issued | |
| CVE-2026-54003 | None | 0.55% | 1 | 0 | 2026-06-18T15:04:58 | ### TL;DR This vulnerability affects Kirby sites that have no configured user a | |
| CVE-2026-20190 | 7.5 | 0.41% | 1 | 0 | 2026-06-17T18:36:07 | A vulnerability in Cisco ISE and ISE-PIC could allow an unauthenticated, remote | |
| CVE-2026-20181 | 9.1 | 0.75% | 1 | 0 | 2026-06-17T18:36:07 | A vulnerability in Cisco ISE and ISE-PIC could allow an authenticated, remote at | |
| CVE-2026-47291 | 9.8 | 21.51% | 5 | 2 | 2026-06-17T10:54:28.290000 | Integer overflow or wraparound in Windows HTTP.sys allows an unauthorized attack | |
| CVE-2026-44825 | 8.1 | 0.53% | 1 | 2 | 2026-06-17T10:51:23.870000 | Hardcoded credentials in the Basic Authentication setup tool (bin/solr auth enab | |
| CVE-2026-44597 | 3.7 | 0.45% | 1 | 0 | 2026-06-17T10:51:07.977000 | Tor before 0.4.9.7 has an out-of-bounds read when an END, a TRUNCATE, or a TRUNC | |
| CVE-2026-41849 | 7.5 | 0.26% | 1 | 0 | 2026-06-17T10:47:06.763000 | An integer overflow vulnerability exists in the evaluation logic of the Spring E | |
| CVE-2026-27808 | 5.8 | 0.47% | 1 | 0 | 2026-06-17T10:27:43.150000 | Mailpit is an email testing tool and API for developers. Prior to version 1.29.2 | |
| CVE-2024-38808 | 4.3 | 0.54% | 1 | 0 | 2026-06-17T07:41:05.140000 | In Spring Framework versions 5.3.0 - 5.3.38 and older unsupported versions, it i | |
| CVE-2022-22950 | 6.5 | 35.83% | 1 | 0 | 2026-06-17T04:29:13.760000 | n Spring Framework versions 5.3.0 - 5.3.16 and older unsupported versions, it is | |
| CVE-2026-50656 | 7.8 | 3.39% | 3 | 2 | 2026-06-16T21:31:57 | Microsoft is aware of an elevation of privilege in the Microsoft Malware Protect | |
| CVE-2026-48611 | 9.8 | 2.86% | 1 | 3 | template | 2026-06-12T06:33:21 | Improper authentication checks in the OAuth implementation allow account hijacki |
| CVE-2026-48062 | 9.8 | 0.00% | 1 | 0 | 2026-06-11T17:16:09 | ### Impact The `ext_in` upload validation rule checked the MIME-derived guessed | |
| CVE-2026-41729 | 8.1 | 0.39% | 1 | 1 | 2026-06-10T00:31:59 | Spring Data REST is vulnerable to SpEL expression injection through map-typed pr | |
| CVE-2026-41719 | 6.4 | 0.20% | 1 | 0 | 2026-06-10T00:31:59 | A SpEL Injection vulnerability exists in the Spring Data KeyValue if unsanitized | |
| CVE-2026-41852 | 3.7 | 0.16% | 1 | 0 | 2026-06-09T06:32:07 | A vulnerability in Spring Expression Language (SpEL) evaluation logic allows for | |
| CVE-2026-41850 | 7.5 | 0.36% | 1 | 0 | 2026-06-09T06:32:06 | Applications that evaluate user-supplied Spring Expression Language (SpEL) expre | |
| CVE-2026-41851 | 5.3 | 0.36% | 1 | 0 | 2026-06-09T06:32:06 | Applications which accept user-supplied Spring Expression Language (SpEL) expres | |
| CVE-2026-1207 | None | 9.44% | 1 | 1 | template | 2026-06-05T16:24:43 | An issue was discovered in 6.0 before 6.0.2, 5.2 before 5.2.11, and 4.2 before 4 |
| CVE-2026-31694 | 7.8 | 0.13% | 1 | 1 | 2026-06-01T18:32:31 | In the Linux kernel, the following vulnerability has been resolved: fuse: rejec | |
| CVE-2026-43456 | 7.8 | 0.16% | 1 | 0 | 2026-05-20T18:32:38 | In the Linux kernel, the following vulnerability has been resolved: bonding: fi | |
| CVE-2026-42841 | 4.8 | 0.40% | 1 | 0 | 2026-05-13T13:52:11 | ### Summary An authenticated user with page editing permissions can inject an e | |
| CVE-2026-33112 | 8.8 | 2.11% | 1 | 0 | 2026-05-12T18:30:49 | Deserialization of untrusted data in Microsoft Office SharePoint allows an autho | |
| CVE-2026-38431 | 9.8 | 0.39% | 1 | 0 | 2026-05-06T18:31:37 | ERPNext v15.103.1 and before is vulnerable to Server-Side Template Injection (SS | |
| CVE-2025-49113 | 9.9 | 89.46% | 1 | 23 | template | 2026-02-20T21:48:11 | Roundcube Webmail before 1.5.10 and 1.6.x before 1.6.11 allows remote code execu |
| CVE-2025-41253 | 7.5 | 0.43% | 1 | 0 | 2026-02-19T22:00:42 | The following versions of Spring Cloud Gateway Server Webflux may be vulnerable | |
| CVE-2025-3248 | None | 99.99% | 3 | 27 | template | 2025-11-05T20:12:46 | Langflow versions prior to 1.3.0 are susceptible to code injection in the /api/v |
| CVE-2022-22963 | 9.8 | 99.94% | 1 | 38 | template | 2025-10-22T19:18:03 | In Spring Cloud Function versions 3.1.6, 3.2.2 and older unsupported versions, w |
| CVE-2024-42009 | 9.3 | 83.39% | 1 | 7 | template | 2025-10-22T00:34:11 | A Cross-Site Scripting vulnerability in Roundcube through 1.5.7 and 1.6.x throug |
| CVE-2023-20861 | 6.5 | 0.97% | 1 | 0 | 2025-02-25T18:40:06 | In Spring Framework versions 6.0.0 - 6.0.6, 5.3.0 - 5.3.25, 5.2.0.RELEASE - 5.2. | |
| CVE-2018-1260 | 9.8 | 8.35% | 1 | 1 | 2024-05-14T17:55:42 | Spring Security OAuth versions prior to 2.3.3, prior to 2.2.2, prior to 2.1.2, a | |
| CVE-2016-4977 | 8.8 | 79.18% | 1 | 2 | template | 2024-05-14T17:39:04 | When processing authorization requests using the whitelabel views in Spring Secu |
| CVE-2024-30326 | 7.8 | 0.91% | 1 | 0 | 2024-04-03T18:30:55 | Foxit PDF Reader Doc Object Use-After-Free Remote Code Execution Vulnerability. | |
| CVE-2024-26582 | 7.8 | 0.25% | 1 | 0 | 2024-03-15T15:30:43 | In the Linux kernel, the following vulnerability has been resolved: net: tls: f | |
| CVE-2022-22947 | 10.0 | 98.25% | 1 | 69 | template | 2023-07-24T19:30:19 | In Spring Cloud Gateway versions prior to 3.1.1+ and 3.0.7+ , applications are v |
| CVE-2017-8046 | 9.8 | 74.36% | 1 | 10 | template | 2023-02-02T05:01:22 | Malicious PATCH requests submitted to servers using Spring Data REST versions pr |
| CVE-2022-22980 | 9.0 | 16.90% | 1 | 8 | 2023-01-27T05:05:05 | A Spring Data MongoDB application is vulnerable to SpEL Injection when using @Qu | |
| CVE-2026-23530 | 0 | 0.44% | 1 | 0 | N/A | ||
| CVE-2026-55827 | 0 | 0.00% | 2 | 0 | N/A | ||
| CVE-2026-54149 | 0 | 0.00% | 2 | 0 | N/A | ||
| CVE-2026-12932 | 0 | 0.00% | 1 | 0 | N/A | ||
| CVE-2026-12996 | 0 | 0.00% | 1 | 0 | N/A | ||
| CVE-2026-13117 | 0 | 0.00% | 1 | 0 | N/A | ||
| CVE-2026-20896 | 0 | 0.78% | 5 | 3 | N/A | ||
| CVE-2026-55604 | 0 | 0.22% | 1 | 0 | N/A | ||
| CVE-2026-59834 | 0 | 0.38% | 1 | 0 | N/A | ||
| CVE-2026-54433 | 0 | 0.00% | 1 | 0 | N/A | ||
| CVE-2026-57155 | 0 | 0.00% | 2 | 0 | N/A | ||
| CVE-2026-59723 | 0 | 0.14% | 1 | 0 | N/A | ||
| CVE-2026-33697 | 0 | 0.06% | 1 | 0 | N/A | ||
| CVE-2026-54161 | 0 | 0.00% | 1 | 1 | N/A | ||
| CVE-2026-14380 | 0 | 0.49% | 1 | 0 | N/A | ||
| CVE-2026-54234 | 0 | 0.34% | 1 | 0 | N/A | ||
| CVE-2026-12943 | 0 | 0.00% | 1 | 0 | N/A | ||
| CVE-2026-34152 | 0 | 0.37% | 1 | 0 | N/A | ||
| CVE-2026-42143 | 0 | 0.43% | 1 | 0 | N/A | ||
| CVE-2026-34158 | 0 | 0.36% | 1 | 0 | N/A | ||
| CVE-2026-34048 | 0 | 0.40% | 1 | 0 | N/A | ||
| CVE-2026-34037 | 0 | 0.25% | 1 | 0 | N/A |
updated 2026-07-10T21:32:40
2 posts
🟠 CVE-2026-57850 - High (8.3)
RustDesk before 1.4.9 does not enforce a session's authorized connection scope on the server side, so a peer granted a limited session type (FileTransfer, PortForward, ViewCamera, or Terminal) can send control messages and login options reserved f...
🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-57850/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##🟠 CVE-2026-57850 - High (8.3)
RustDesk before 1.4.9 does not enforce a session's authorized connection scope on the server side, so a peer granted a limited session type (FileTransfer, PortForward, ViewCamera, or Terminal) can send control messages and login options reserved f...
🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-57850/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##updated 2026-07-10T21:32:32
2 posts
🟠 CVE-2026-61460 - High (8.8)
Krayin CRM through 2.2.3 contains an insecure direct object reference vulnerability in LeadController, PersonController, OrganizationController, QuoteController, and ActivityController that allows authenticated users to edit, update, or delete rec...
🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-61460/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##🟠 CVE-2026-61460 - High (8.8)
Krayin CRM through 2.2.3 contains an insecure direct object reference vulnerability in LeadController, PersonController, OrganizationController, QuoteController, and ActivityController that allows authenticated users to edit, update, or delete rec...
🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-61460/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##updated 2026-07-10T21:32:32
2 posts
🔴 CVE-2026-61459 - Critical (9.8)
MCP Server Kubernetes before 3.9.0 contains an argument injection vulnerability in structured tools (kubectl_get, kubectl_describe, kubectl_delete) that allows attackers to bypass the assertNoDangerousFlags security check by supplying resourceType...
🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-61459/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##🔴 CVE-2026-61459 - Critical (9.8)
MCP Server Kubernetes before 3.9.0 contains an argument injection vulnerability in structured tools (kubectl_get, kubectl_describe, kubectl_delete) that allows attackers to bypass the assertNoDangerousFlags security check by supplying resourceType...
🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-61459/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##updated 2026-07-10T21:32:32
2 posts
🔴 CVE-2026-5801 - Critical (9.8)
Improper neutralization of special elements used in an SQL command ('SQL injection') vulnerability in Semtek Informatics Software Consulting Trade Ltd. Co. SEM-PMP allows Command Line Execution through SQL Injection.
This issue affects SEM-PMP: t...
🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-5801/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##🔴 CVE-2026-5801 - Critical (9.8)
Improper neutralization of special elements used in an SQL command ('SQL injection') vulnerability in Semtek Informatics Software Consulting Trade Ltd. Co. SEM-PMP allows Command Line Execution through SQL Injection.
This issue affects SEM-PMP: t...
🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-5801/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##updated 2026-07-10T21:17:00.197000
2 posts
🟠 CVE-2026-58499 - High (8.2)
EverOS is a memory runtime for agents. Prior to 1.0.1, EverOS is vulnerable to path traversal in the POST /api/v1/memory/add ingestion endpoint because the per-message sender_id field was not validated as a path-safe identifier, unlike app_id and ...
🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-58499/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##🟠 CVE-2026-58499 - High (8.2)
EverOS is a memory runtime for agents. Prior to 1.0.1, EverOS is vulnerable to path traversal in the POST /api/v1/memory/add ingestion endpoint because the per-message sender_id field was not validated as a path-safe identifier, unlike app_id and ...
🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-58499/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##updated 2026-07-10T21:16:59.947000
2 posts
🔴 CVE-2026-57807 - Critical (9.8)
Authentication Bypass Using an Alternate Path or Channel vulnerability in miniOrange Security Software Pvt Ltd. OAuth Single Sign On - SSO (OAuth Client) allows Password Recovery Exploitation.
This issue affects OAuth Single Sign On - SSO (OAuth ...
🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-57807/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##🔴 CVE-2026-57807 - Critical (9.8)
Authentication Bypass Using an Alternate Path or Channel vulnerability in miniOrange Security Software Pvt Ltd. OAuth Single Sign On - SSO (OAuth Client) allows Password Recovery Exploitation.
This issue affects OAuth Single Sign On - SSO (OAuth ...
🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-57807/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##updated 2026-07-10T21:16:59.180000
2 posts
🟠 CVE-2026-57220 - High (7.5)
RabbitMQ is a messaging and streaming broker. Prior to 4.2.6, the RabbitMQ stream listener does not enforce the configured stream frame-size limit while assembling frames during authentication and before Tune negotiation, allowing an unauthenticat...
🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-57220/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##🟠 CVE-2026-57220 - High (7.5)
RabbitMQ is a messaging and streaming broker. Prior to 4.2.6, the RabbitMQ stream listener does not enforce the configured stream frame-size limit while assembling frames during authentication and before Tune negotiation, allowing an unauthenticat...
🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-57220/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##updated 2026-07-10T21:16:57.367000
2 posts
🔴 CVE-2026-55879 - Critical (9.3)
OpenReplay is a self-hosted session replay suite. From 1.24.0 before 1.25.0, the OpenReplay tracking SDK accepts custom event names and captured page URLs from any visitor using a public project key, stores them in ClickHouse without output encodi...
🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-55879/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##🔴 CVE-2026-55879 - Critical (9.3)
OpenReplay is a self-hosted session replay suite. From 1.24.0 before 1.25.0, the OpenReplay tracking SDK accepts custom event names and captured page URLs from any visitor using a public project key, stores them in ClickHouse without output encodi...
🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-55879/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##updated 2026-07-10T21:16:56.577000
2 posts
🟠 CVE-2026-55659 - High (7.7)
Grist is spreadsheet software using Python as its formula language. Prior to 1.7.15, several server-rendered Grist pages embedded user-controlled values into the page and into inline scripts without fully escaping them, allowing cross-site scripti...
🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-55659/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##🟠 CVE-2026-55659 - High (7.7)
Grist is spreadsheet software using Python as its formula language. Prior to 1.7.15, several server-rendered Grist pages embedded user-controlled values into the page and into inline scripts without fully escaping them, allowing cross-site scripti...
🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-55659/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##updated 2026-07-10T21:16:55.497000
2 posts
🟠 CVE-2026-55213 - High (7.5)
h2o is an HTTP server with support for HTTP/1.x, HTTP/2 and HTTP/3. Prior to commit edd7a120bfc4af11ac0cbebce2a43cc1f93f9af1, when h2o processes a QPACK instruction sent from the peer over HTTP/3, lib/http3/qpack.c might allocate an on-stack buffe...
🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-55213/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##🟠 CVE-2026-55213 - High (7.5)
h2o is an HTTP server with support for HTTP/1.x, HTTP/2 and HTTP/3. Prior to commit edd7a120bfc4af11ac0cbebce2a43cc1f93f9af1, when h2o processes a QPACK instruction sent from the peer over HTTP/3, lib/http3/qpack.c might allocate an on-stack buffe...
🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-55213/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##updated 2026-07-10T20:16:47.933000
2 posts
🟠 CVE-2026-55789 - High (8.5)
Logto is the modern, open-source auth infrastructure for SaaS and AI apps. Prior to 1.41.0, Logto's self-hosted SAML application IdP built the signed SAML response and assertion by string-substituting user-controlled profile attributes such as nam...
🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-55789/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##🟠 CVE-2026-55789 - High (8.5)
Logto is the modern, open-source auth infrastructure for SaaS and AI apps. Prior to 1.41.0, Logto's self-hosted SAML application IdP built the signed SAML response and assertion by string-substituting user-controlled profile attributes such as nam...
🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-55789/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##updated 2026-07-10T19:17:20.113000
1 posts
🟠 CVE-2026-12598 - High (8.1)
The LoginPress Pro plugin for WordPress is vulnerable to authentication bypass in versions up to and including 6.2.3 via the Spotify Social Login addon. This is due to the loginpress_on_spotify_login() function trusting the unverified 'email' fiel...
🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-12598/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##updated 2026-07-10T19:05:27.310000
1 posts
CVE-2026-54527: CRITICAL XSS in jupyterlab-git (<0.54.0). Malicious Git filenames can execute JavaScript when viewed in the Git History tab — risking session hijack & data theft. Upgrade to 0.54.0+ ASAP. https://radar.offseq.com/threat/cve-2026-54527-cwe-79-improper-neutralization-of-i-859af0d357310c79 #OffSeq #XSS #jupyterlab #security
##updated 2026-07-10T18:46:32.250000
1 posts
🟠 CVE-2026-60105 - High (8.6)
Monsta FTP before 2.14.5 contains a server-side request forgery vulnerability in the fetchRemoteFile action caused by an incomplete IP blocklist check in the isBlockedIP() function, which fails to detect embedded IPv4 addresses within IPv4-mapped ...
🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-60105/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##updated 2026-07-10T18:33:14
1 posts
1 repos
CVE-2025-45422: Proximus b-box UPnP Persistence & Access Control Bypass https://github.com/Cedrico03/CVE-2025-45422---Bbox
##updated 2026-07-10T18:33:13
7 posts
🚨 [CISA-2026:0710] CISA Adds 2 Known Exploited Vulnerabilities to Catalog (https://secdb.nttzen.cloud/security-advisory/detail/CISA-2026:0710)
CISA has added 2 new vulnerabilities to its Known Exploited Vulnerabilities Catalog, based on evidence of active exploitation. These types of vulnerabilities are a frequent attack vector for malicious cyber actors and pose significant risk to the federal enterprise.
⚠️ CVE-2026-48939 (https://secdb.nttzen.cloud/cve/detail/CVE-2026-48939)
- Name: iCagenda Unrestricted Upload of File with Dangerous Type Vulnerability
- Action: Apply mitigations in accordance with vendor instructions, ensuring compliance with CISA’s BOD 26-04 Prioritizing Security Updates Based on Risk (see URL in Notes) guidance and CISA’s “Forensics Triage Requirements” (see URL in Notes). Follow applicable BOD 26-04 guidance for cloud services or discontinue use of the product if mitigations are unavailable. Stakeholders are responsible for evaluating each asset's internet exposure and ensuring adherence to BOD 26-04 patching guidelines.
- Known To Be Used in Ransomware Campaigns? Unknown
- Vendor: iCagenda
- Product: iCagenda
- Notes: https://www.icagenda.com/#download ; BOD 26-04: https://www.cisa.gov/news-events/directives/bod-26-04-prioritizing-security-updates-based-risk ; Forensics Triage Requirements: https://www.cisa.gov/news-events/directives/bod-26-04-implementation-guidance-prioritizing-security-updates-based-risk ; https://nvd.nist.gov/vuln/detail/CVE-2026-48939
⚠️ CVE-2026-56291 (https://secdb.nttzen.cloud/cve/detail/CVE-2026-56291)
- Name: Balbooa Forms Unrestricted Upload of File with Dangerous Type Vulnerability
- Action: Apply mitigations in accordance with vendor instructions, ensuring compliance with CISA’s BOD 26-04 Prioritizing Security Updates Based on Risk (see URL in Notes) guidance and CISA’s “Forensics Triage Requirements” (see URL in Notes). Follow applicable BOD 26-04 guidance for cloud services or discontinue use of the product if mitigations are unavailable. Stakeholders are responsible for evaluating each asset's internet exposure and ensuring adherence to BOD 26-04 patching guidelines.
- Known To Be Used in Ransomware Campaigns? Unknown
- Vendor: Balbooa
- Product: Forms
- Notes: https://www.balbooa.com/joomla-forms ; BOD 26-04: https://www.cisa.gov/news-events/directives/bod-26-04-prioritizing-security-updates-based-risk ; Forensics Triage Requirements: https://www.cisa.gov/news-events/directives/bod-26-04-implementation-guidance-prioritizing-security-updates-based-risk ; https://nvd.nist.gov/vuln/detail/CVE-2026-56291
#ZEN #SecDB #InfoSec #CVE #CISA_KEV #cisa_20260710 #cisa20260710 #cve_2026_48939 #cve_2026_56291 #cve202648939 #cve202656291
##CVE ID: CVE-2026-56291
Vendor: Balbooa
Product: Forms
Date Added: 2026-07-10
CVE URL: https://nvd.nist.gov/vuln/detail/CVE-2026-56291
CISA has added two vulnerabilities to the KEV catalogue.
- CVE-2026-48939: iCagenda Unrestricted Upload of File with Dangerous Type Vulnerability https://www.cve.org/CVERecord?id=CVE-2026-48939
- CVE-2026-56291: Balbooa Forms Unrestricted Upload of File with Dangerous Type Vulnerability https://www.cve.org/CVERecord?id=CVE-2026-56291 #CISA #infosec #vulnerability
##🚨 [CISA-2026:0710] CISA Adds 2 Known Exploited Vulnerabilities to Catalog (https://secdb.nttzen.cloud/security-advisory/detail/CISA-2026:0710)
CISA has added 2 new vulnerabilities to its Known Exploited Vulnerabilities Catalog, based on evidence of active exploitation. These types of vulnerabilities are a frequent attack vector for malicious cyber actors and pose significant risk to the federal enterprise.
⚠️ CVE-2026-48939 (https://secdb.nttzen.cloud/cve/detail/CVE-2026-48939)
- Name: iCagenda Unrestricted Upload of File with Dangerous Type Vulnerability
- Action: Apply mitigations in accordance with vendor instructions, ensuring compliance with CISA’s BOD 26-04 Prioritizing Security Updates Based on Risk (see URL in Notes) guidance and CISA’s “Forensics Triage Requirements” (see URL in Notes). Follow applicable BOD 26-04 guidance for cloud services or discontinue use of the product if mitigations are unavailable. Stakeholders are responsible for evaluating each asset's internet exposure and ensuring adherence to BOD 26-04 patching guidelines.
- Known To Be Used in Ransomware Campaigns? Unknown
- Vendor: iCagenda
- Product: iCagenda
- Notes: https://www.icagenda.com/#download ; BOD 26-04: https://www.cisa.gov/news-events/directives/bod-26-04-prioritizing-security-updates-based-risk ; Forensics Triage Requirements: https://www.cisa.gov/news-events/directives/bod-26-04-implementation-guidance-prioritizing-security-updates-based-risk ; https://nvd.nist.gov/vuln/detail/CVE-2026-48939
⚠️ CVE-2026-56291 (https://secdb.nttzen.cloud/cve/detail/CVE-2026-56291)
- Name: Balbooa Forms Unrestricted Upload of File with Dangerous Type Vulnerability
- Action: Apply mitigations in accordance with vendor instructions, ensuring compliance with CISA’s BOD 26-04 Prioritizing Security Updates Based on Risk (see URL in Notes) guidance and CISA’s “Forensics Triage Requirements” (see URL in Notes). Follow applicable BOD 26-04 guidance for cloud services or discontinue use of the product if mitigations are unavailable. Stakeholders are responsible for evaluating each asset's internet exposure and ensuring adherence to BOD 26-04 patching guidelines.
- Known To Be Used in Ransomware Campaigns? Unknown
- Vendor: Balbooa
- Product: Forms
- Notes: https://www.balbooa.com/joomla-forms ; BOD 26-04: https://www.cisa.gov/news-events/directives/bod-26-04-prioritizing-security-updates-based-risk ; Forensics Triage Requirements: https://www.cisa.gov/news-events/directives/bod-26-04-implementation-guidance-prioritizing-security-updates-based-risk ; https://nvd.nist.gov/vuln/detail/CVE-2026-56291
#ZEN #SecDB #InfoSec #CVE #CISA_KEV #cisa_20260710 #cisa20260710 #cve_2026_48939 #cve_2026_56291 #cve202648939 #cve202656291
##CVE ID: CVE-2026-56291
Vendor: Balbooa
Product: Forms
Date Added: 2026-07-10
CVE URL: https://nvd.nist.gov/vuln/detail/CVE-2026-56291
CISA has added two vulnerabilities to the KEV catalogue.
- CVE-2026-48939: iCagenda Unrestricted Upload of File with Dangerous Type Vulnerability https://www.cve.org/CVERecord?id=CVE-2026-48939
- CVE-2026-56291: Balbooa Forms Unrestricted Upload of File with Dangerous Type Vulnerability https://www.cve.org/CVERecord?id=CVE-2026-56291 #CISA #infosec #vulnerability
##CVE-2026-56291 | CRITICAL: Balbooa Forms for Joomla (v1.0 – 2.4.0) allows unauthenticated RCE via arbitrary file upload (CWE-434). No patch yet. Disable or restrict access until fixed. https://radar.offseq.com/threat/cve-2026-56291-cwe-434-unrestricted-upload-of-file-aa89baa3213ad239 #OffSeq #Joomla #RCE #Vuln
##updated 2026-07-10T18:33:13
2 posts
A PAN-OS buffer overflow, CVE-2026-0288, enables arbitrary code execution on Palo Alto firewalls. Patch now.
#PANOS #PaloAltoNetworks #BufferOverflow #ArbitraryCodeExecution #CVE #FirewallSecurity #PatchNow #InfoSec
https://securityonline.info/pan-os-cve-2026-0288/?utm_source=mastodon&utm_medium=jetpack_social
##Broadcom has a long list of advisories today, addressing at least two critical vulnerabilities https://support.broadcom.com/web/ecx/security-advisory
Palo Alto:
CRITICAL: CVE-2026-0288 PAN-OS: Buffer Overflow Vulnerabilities in User-ID Terminal Server Agent https://security.paloaltonetworks.com/CVE-2026-0288
Dell: Security Update for Dell Networking Products for Multiple Vulnerabilities https://www.dell.com/support/kbdoc/en-us/000362452/dsa-2025-250-security-update-for-dell-networking-products-for-multiple-vulnerabilities #Broascom #infosec #vulnerability #Dell #Intel
##updated 2026-07-10T18:32:26
2 posts
https://access.redhat.com/security/cve/cve-2026-15143
A flaw was found in the file_type content detector of guardrails-detectors. This vulnerability allows a remote attacker to supply an arbitrary XML Schema Definition (XSD) string, which is processed without proper restrictions.
:neobot_giggle:
##https://access.redhat.com/security/cve/cve-2026-15143
A flaw was found in the file_type content detector of guardrails-detectors. This vulnerability allows a remote attacker to supply an arbitrary XML Schema Definition (XSD) string, which is processed without proper restrictions.
:neobot_giggle:
##updated 2026-07-10T18:32:26
2 posts
🟠 CVE-2026-33382 - High (7.5)
Several Grafana API endpoints, some of them unauthenticated, do not limit the size of the request body before processing it. An attacker can send very large payloads that force excessive memory allocation, potentially exhausting memory and causing...
🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-33382/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##🟠 CVE-2026-33382 - High (7.5)
Several Grafana API endpoints, some of them unauthenticated, do not limit the size of the request body before processing it. An attacker can send very large payloads that force excessive memory allocation, potentially exhausting memory and causing...
🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-33382/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##updated 2026-07-10T18:32:03
6 posts
2 repos
🚨 [CISA-2026:0710] CISA Adds 2 Known Exploited Vulnerabilities to Catalog (https://secdb.nttzen.cloud/security-advisory/detail/CISA-2026:0710)
CISA has added 2 new vulnerabilities to its Known Exploited Vulnerabilities Catalog, based on evidence of active exploitation. These types of vulnerabilities are a frequent attack vector for malicious cyber actors and pose significant risk to the federal enterprise.
⚠️ CVE-2026-48939 (https://secdb.nttzen.cloud/cve/detail/CVE-2026-48939)
- Name: iCagenda Unrestricted Upload of File with Dangerous Type Vulnerability
- Action: Apply mitigations in accordance with vendor instructions, ensuring compliance with CISA’s BOD 26-04 Prioritizing Security Updates Based on Risk (see URL in Notes) guidance and CISA’s “Forensics Triage Requirements” (see URL in Notes). Follow applicable BOD 26-04 guidance for cloud services or discontinue use of the product if mitigations are unavailable. Stakeholders are responsible for evaluating each asset's internet exposure and ensuring adherence to BOD 26-04 patching guidelines.
- Known To Be Used in Ransomware Campaigns? Unknown
- Vendor: iCagenda
- Product: iCagenda
- Notes: https://www.icagenda.com/#download ; BOD 26-04: https://www.cisa.gov/news-events/directives/bod-26-04-prioritizing-security-updates-based-risk ; Forensics Triage Requirements: https://www.cisa.gov/news-events/directives/bod-26-04-implementation-guidance-prioritizing-security-updates-based-risk ; https://nvd.nist.gov/vuln/detail/CVE-2026-48939
⚠️ CVE-2026-56291 (https://secdb.nttzen.cloud/cve/detail/CVE-2026-56291)
- Name: Balbooa Forms Unrestricted Upload of File with Dangerous Type Vulnerability
- Action: Apply mitigations in accordance with vendor instructions, ensuring compliance with CISA’s BOD 26-04 Prioritizing Security Updates Based on Risk (see URL in Notes) guidance and CISA’s “Forensics Triage Requirements” (see URL in Notes). Follow applicable BOD 26-04 guidance for cloud services or discontinue use of the product if mitigations are unavailable. Stakeholders are responsible for evaluating each asset's internet exposure and ensuring adherence to BOD 26-04 patching guidelines.
- Known To Be Used in Ransomware Campaigns? Unknown
- Vendor: Balbooa
- Product: Forms
- Notes: https://www.balbooa.com/joomla-forms ; BOD 26-04: https://www.cisa.gov/news-events/directives/bod-26-04-prioritizing-security-updates-based-risk ; Forensics Triage Requirements: https://www.cisa.gov/news-events/directives/bod-26-04-implementation-guidance-prioritizing-security-updates-based-risk ; https://nvd.nist.gov/vuln/detail/CVE-2026-56291
#ZEN #SecDB #InfoSec #CVE #CISA_KEV #cisa_20260710 #cisa20260710 #cve_2026_48939 #cve_2026_56291 #cve202648939 #cve202656291
##CVE ID: CVE-2026-48939
Vendor: iCagenda
Product: iCagenda
Date Added: 2026-07-10
CVE URL: https://nvd.nist.gov/vuln/detail/CVE-2026-48939
CISA has added two vulnerabilities to the KEV catalogue.
- CVE-2026-48939: iCagenda Unrestricted Upload of File with Dangerous Type Vulnerability https://www.cve.org/CVERecord?id=CVE-2026-48939
- CVE-2026-56291: Balbooa Forms Unrestricted Upload of File with Dangerous Type Vulnerability https://www.cve.org/CVERecord?id=CVE-2026-56291 #CISA #infosec #vulnerability
##🚨 [CISA-2026:0710] CISA Adds 2 Known Exploited Vulnerabilities to Catalog (https://secdb.nttzen.cloud/security-advisory/detail/CISA-2026:0710)
CISA has added 2 new vulnerabilities to its Known Exploited Vulnerabilities Catalog, based on evidence of active exploitation. These types of vulnerabilities are a frequent attack vector for malicious cyber actors and pose significant risk to the federal enterprise.
⚠️ CVE-2026-48939 (https://secdb.nttzen.cloud/cve/detail/CVE-2026-48939)
- Name: iCagenda Unrestricted Upload of File with Dangerous Type Vulnerability
- Action: Apply mitigations in accordance with vendor instructions, ensuring compliance with CISA’s BOD 26-04 Prioritizing Security Updates Based on Risk (see URL in Notes) guidance and CISA’s “Forensics Triage Requirements” (see URL in Notes). Follow applicable BOD 26-04 guidance for cloud services or discontinue use of the product if mitigations are unavailable. Stakeholders are responsible for evaluating each asset's internet exposure and ensuring adherence to BOD 26-04 patching guidelines.
- Known To Be Used in Ransomware Campaigns? Unknown
- Vendor: iCagenda
- Product: iCagenda
- Notes: https://www.icagenda.com/#download ; BOD 26-04: https://www.cisa.gov/news-events/directives/bod-26-04-prioritizing-security-updates-based-risk ; Forensics Triage Requirements: https://www.cisa.gov/news-events/directives/bod-26-04-implementation-guidance-prioritizing-security-updates-based-risk ; https://nvd.nist.gov/vuln/detail/CVE-2026-48939
⚠️ CVE-2026-56291 (https://secdb.nttzen.cloud/cve/detail/CVE-2026-56291)
- Name: Balbooa Forms Unrestricted Upload of File with Dangerous Type Vulnerability
- Action: Apply mitigations in accordance with vendor instructions, ensuring compliance with CISA’s BOD 26-04 Prioritizing Security Updates Based on Risk (see URL in Notes) guidance and CISA’s “Forensics Triage Requirements” (see URL in Notes). Follow applicable BOD 26-04 guidance for cloud services or discontinue use of the product if mitigations are unavailable. Stakeholders are responsible for evaluating each asset's internet exposure and ensuring adherence to BOD 26-04 patching guidelines.
- Known To Be Used in Ransomware Campaigns? Unknown
- Vendor: Balbooa
- Product: Forms
- Notes: https://www.balbooa.com/joomla-forms ; BOD 26-04: https://www.cisa.gov/news-events/directives/bod-26-04-prioritizing-security-updates-based-risk ; Forensics Triage Requirements: https://www.cisa.gov/news-events/directives/bod-26-04-implementation-guidance-prioritizing-security-updates-based-risk ; https://nvd.nist.gov/vuln/detail/CVE-2026-56291
#ZEN #SecDB #InfoSec #CVE #CISA_KEV #cisa_20260710 #cisa20260710 #cve_2026_48939 #cve_2026_56291 #cve202648939 #cve202656291
##CVE ID: CVE-2026-48939
Vendor: iCagenda
Product: iCagenda
Date Added: 2026-07-10
CVE URL: https://nvd.nist.gov/vuln/detail/CVE-2026-48939
CISA has added two vulnerabilities to the KEV catalogue.
- CVE-2026-48939: iCagenda Unrestricted Upload of File with Dangerous Type Vulnerability https://www.cve.org/CVERecord?id=CVE-2026-48939
- CVE-2026-56291: Balbooa Forms Unrestricted Upload of File with Dangerous Type Vulnerability https://www.cve.org/CVERecord?id=CVE-2026-56291 #CISA #infosec #vulnerability
##updated 2026-07-10T17:56:00.910000
1 posts
CVE-2026-12685 | EscortWP ≤3.6.2: CRITICAL backdoor (CWE-912) enables unauthenticated data wipe & exfiltrates site/admin info via hard-coded key. No patch available — replace theme & monitor vendor. https://radar.offseq.com/threat/cve-2026-12685-cwe-912-hidden-functionality-in-esc-2444ba57a4fc890e #OffSeq #WordPress #Infosec #CVE2026_12685
##updated 2026-07-10T17:49:57.737000
1 posts
🟠 CVE-2026-57026 - High (7.5)
An Improper Validation of Syntactic Correctness of Input vulnerability in the SIP plugin of Juniper Networks Junos OS on MX Series with SPC3 and SRX Series allows an unauthenticated, network-based attacker to cause a Denial-of-Service (DoS).If the...
🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-57026/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##updated 2026-07-10T16:39:52.480000
9 posts
OpenBSD has a use-after-free allowing local privilege escalation to root
##OpenBSD has a use-after-free allowing local privilege escalation to root
Link: https://nvd.nist.gov/vuln/detail/cve-2026-57589
Discussion: https://news.ycombinator.com/item?id=48831658
OpenBSD has a use-after-free allowing local privilege escalation to root
Link: https://nvd.nist.gov/vuln/detail/cve-2026-57589
Comments: https://news.ycombinator.com/item?id=48831658
OpenBSD has a use-after-free allowing local privilege escalation to root
Link: https://nvd.nist.gov/vuln/detail/cve-2026-57589
Discussion: https://news.ycombinator.com/item?id=48831658
OpenBSD has a use-after-free allowing local privilege escalation to root - https://nvd.nist.gov/vuln/detail/cve-2026-57589
##Oh, joy! 😒 A riveting tale of OpenBSD's latest "oopsie-daisy" moment, where users can magically escalate privileges—because who doesn't love a good #security blunder? Meanwhile, the article itself is a masterpiece of accessibility: blocked by Cloudflare like a bouncer at a club for nerds. 🕵️♂️🔒
https://nvd.nist.gov/vuln/detail/cve-2026-57589 #OpenBSD #Blunder #Accessibility #Issues #HackerNews #PrivilegeEscalation #HackerNews #ngated
OpenBSD has a use-after-free allowing local privilege escalation to root
https://nvd.nist.gov/vuln/detail/cve-2026-57589
Comments: https://news.ycombinator.com/item?id=48831658
#HackerNews #OpenBSD #UseAfterFree #PrivilegeEscalation #Cybersecurity #Vulnerability #CVE-2026-57589
##OpenBSD has a use-after-free allowing local privilege escalation to root
##OpenBSD through 7.9 has a use-after-free allowing local privilege escalation to root (CVE-2026-57589) https://lobste.rs/s/7hmu0w #openbsd #security
https://nvd.nist.gov/vuln/detail/cve-2026-57589
updated 2026-07-10T16:16:38.187000
1 posts
🟠 CVE-2026-59832 - High (7.7)
SiYuan is an open-source personal knowledge management system. Prior to 3.7.1, the /snippets/*filepath route handler serveSnippets in kernel/server/serve.go joins a single-decoded request path with the snippets directory without subpath containmen...
🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-59832/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##updated 2026-07-10T15:49:19.093000
1 posts
🟠 CVE-2026-54771 - High (8.1)
Langroid is a framework for building large-language-model-powered applications. Prior to version 0.65.3, a Langroid application exposing a chat interface to untrusted users may allow direct tool invocation via raw JSON payloads, even when tools ar...
🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-54771/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##updated 2026-07-10T15:46:07.777000
1 posts
CVE-2026-41880 | CRITICAL OS Command Injection in R-SOFT SERWIS DMS OCR module. Authenticated users can execute root commands via crafted uploads. Patched in v3.19-2862/3.17-2580. Upgrade now: https://radar.offseq.com/threat/cve-2026-41880-cwe-78-improper-neutralization-of-s-9acc4d130ed96ca2 #OffSeq #infosec #vulnerability #CVE202641880
##updated 2026-07-10T15:45:33.663000
1 posts
CVE-2026-56689 - SQL Injection in Dell PowerFlex Manager <5.1.0.1. Low-priv remote attacker can exploit for info disclosure. CVSS 7.7. No patch available. Monitor for updates. #CVE #Dell #infosec
##updated 2026-07-10T15:43:30.330000
2 posts
🔴 CVE-2026-14894 - Critical (9.8)
The Super Forms – Drag & Drop Form Builder plugin for WordPress is vulnerable to Arbitrary File Upload in all versions up to, and including, 6.3.313 via the submit_form function. This is due to missing file type validation and the absence of any...
🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-14894/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##CVE-2026-14894 (CRITICAL, CVSS 9.8): Arbitrary file upload in Super Forms – Drag & Drop Form Builder <=6.3.313 enables unauthenticated RCE. Restrict plugin use & monitor for uploads. Await vendor patch. https://radar.offseq.com/threat/cve-2026-14894-cwe-434-unrestricted-upload-of-file-eb119ea8c0c00613 #OffSeq #WordPress #Infosec #Vulnerability
##updated 2026-07-10T12:31:56
1 posts
Dell PowerFlex Manager <5.1.0.1 faces CRITICAL OS command injection (CVE-2026-56688, CVSS 9.1). High-priv attackers can execute root commands — full compromise risk. No patch yet. Limit admin remote access & monitor activity. https://radar.offseq.com/threat/cve-2026-56688-cwe-78-improper-neutralization-of-s-de5ccc00f15b9022 #OffSeq #Dell #Vuln #Infosec
##updated 2026-07-10T12:31:55
3 posts
(there is more, actually, lol https://access.redhat.com/security/cve/cve-2026-15378 )
##(there is more, actually, lol https://access.redhat.com/security/cve/cve-2026-15378 )
##Red Hat OpenShift AI hit by CRITICAL SSRF (CVE-2026-15378): guardrails-detectors flaw allows remote attackers to access cloud metadata, K8s API, and secrets via crafted XSD. Monitor for exploitation & restrict egress. https://radar.offseq.com/threat/cve-2026-15378-server-side-request-forgery-ssrf-in-6764a44d8dfc74c1 #OffSeq #CVE202615378 #RedHat #Infosec
##updated 2026-07-10T09:31:36
1 posts
🟠 CVE-2026-54423 - High (8.2)
In OpenStack Ironic before 37.0.1, an Ironic user with the ability to deploy nodes using the IPMI management interface can maliciously use the send_raw step to send arbitrary IPMI commands to a node, bypassing Ironic's access control.
🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-54423/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##updated 2026-07-10T06:31:33
1 posts
SQL Injection vuln (CRITICAL, CVE-2026-15300) in GEO my WP <=4.5.4 lets attackers exploit 'distance', 'lat', 'lng' via query string. Upgrade to 4.5.5 for numeric validation & input casting. https://radar.offseq.com/threat/cve-2026-15300-cwe-89-improper-neutralization-of-s-9618cb6f0d2ba913 #OffSeq #WordPress #Security #CVE202615300
##updated 2026-07-10T06:31:28
1 posts
🟠 CVE-2026-15070 - High (8.8)
The Salon Booking System – Free Version plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 10.30.32. This is due to missing or incorrect nonce validation on the setCustomText function. This mak...
🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-15070/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##updated 2026-07-10T05:16:37.103000
1 posts
1 repos
Public PoC and write-up detail a Linux kernel privilege escalation flaw (CVE-2026-46215) in DRM GEM. A local user gets root in ~99% of runs.
#Linux #KernelSecurity #CVE202646215 #PrivilegeEscalation #DRM
##updated 2026-07-10T05:16:28.503000
1 posts
CVE-2026-15112: CRITICAL use-after-free in Chrome Ozone (<150.0.7871.115). Remote attackers could trigger heap corruption via crafted HTML. No exploits seen yet. Check vendor guidance: https://radar.offseq.com/threat/cve-2026-15112-use-after-free-in-google-chrome-74d88a97c05d80e2 #OffSeq #Chrome #Vuln #AppSec
##updated 2026-07-10T00:31:34
1 posts
🟠 CVE-2026-12597 - High (8.1)
The LoginPress Pro plugin for WordPress is vulnerable to Authentication Bypass via the GitHub OAuth callback in versions up to, and including, 6.2.3. The vulnerability exists in the loginpress_on_github_login() function, which blindly trusts the f...
🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-12597/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##updated 2026-07-10T00:31:34
2 posts
CVE-2026-58123 | CRITICAL RCE in nesquena hermes-webui <0.51.788: Unauthenticated attackers can execute arbitrary shell commands via terminal API in 4 HTTP requests. Restrict endpoint access until patch confirmed. https://radar.offseq.com/threat/cve-2026-58123-missing-authentication-for-critical-9dba2eca75059736 #OffSeq #RCE #infosec #CVE
##🔴 CVE-2026-58123 - Critical (9.8)
Hermes WebUI before 0.51.788 contains an unauthenticated remote code execution vulnerability that allows remote attackers to execute arbitrary shell commands by accessing the embedded terminal API endpoints without credentials. Attackers can creat...
🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-58123/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##updated 2026-07-10T00:31:34
1 posts
🟠 CVE-2026-12595 - High (8.1)
The LoginPress Pro plugin for WordPress is vulnerable to Authentication Bypass via Unverified OAuth Email in all versions up to and including 6.2.3. The vulnerability exists in the loginpress_on_discord_login() Discord OAuth callback handler, whic...
🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-12595/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##updated 2026-07-10T00:31:33
1 posts
🟠 CVE-2026-57023 - High (7.5)
An Improper Validation of Specified Quantity in Input vulnerability in the TCP proxy plugin of Juniper Networks Junos OS on MX Series with SPC3, and SRX Series allows an unauthenticated, network-based attacker to cause a complete Denial of Service...
🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-57023/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##updated 2026-07-10T00:31:33
2 posts
CVE-2026-58122 (CRITICAL): Hermes WebUI <0.51.307 lets remote attackers bypass local IP restrictions via spoofed X-Forwarded-For — enabling SSRF, config overwrite, and OAuth token theft. Restrict header spoofing & monitor access. https://radar.offseq.com/threat/cve-2026-58122-use-of-less-trusted-source-in-nesqu-c1a99cec42d28f9e #OffSeq #CVE202658122 #infosec #SSRF
##🔴 CVE-2026-58122 - Critical (9.1)
Hermes WebUI before 0.51.307 contains an authentication bypass vulnerability that allows unauthenticated remote attackers to circumvent local-origin IP restrictions on onboarding endpoints by supplying a spoofed X-Forwarded-For header with a loopb...
🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-58122/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##updated 2026-07-10T00:31:33
1 posts
🟠 CVE-2026-58143 - High (8.8)
Cotonti Siena 0.9.26 and earlier contains a cross-site request forgery vulnerability that allows unauthenticated attackers to modify administrator configuration by tricking a logged-in administrator into submitting a forged POST request to the adm...
🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-58143/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##updated 2026-07-09T19:37:12.317000
1 posts
topoteretes cognee (<1.2.0) is affected by CVE-2026-58473 (CRITICAL, CVSS 9.3): improper access control lets unauth attackers overwrite LLM provider config & exfiltrate sensitive data. Restrict endpoint, monitor configs. https://radar.offseq.com/threat/cve-2026-58473-missing-authorization-in-topoterete-619eb25f0ae3e3eb #OffSeq #CVE #Infosec
##updated 2026-07-09T17:49:42.217000
1 posts
CVE-2026-15130 (HIGH): Chrome <150.0.7871.115 has an insufficient policy enforcement bug, letting remote attackers bypass site isolation with crafted HTML. No exploits reported. Check https://radar.offseq.com/threat/cve-2026-15130-insufficient-policy-enforcement-in--933c1db80d107c58 for updates. #OffSeq #Chrome #BrowserSecurity #Vulnerability
##updated 2026-07-09T15:32:20
1 posts
v4.01 of our Windows client is at https://cryptostorm.is/windows#widget
See attached for client-side fixes.
Servers were updated to OpenVPN 2.7.5 on the 2nd, and v4.01 bundles 2.7.5, so we're good on CVE-2026-12996, CVE-2026-13117, CVE-2026-12932, and CVE-2026-13698.
##updated 2026-07-09T12:31:30
1 posts
CVE-2026-15128 (HIGH): Google Chrome <150.0.7871.115 vulnerable to remote UXSS via crafted HTML. Patch available — update now to block script injection. Details: https://radar.offseq.com/threat/cve-2026-15128-inappropriate-implementation-in-goo-a214c2dee3b7e04b #OffSeq #Chrome #Vuln #PatchTuesday #InfoSec
##updated 2026-07-09T12:31:30
1 posts
Google Chrome <150.0.7871.115 impacted by CRITICAL CVE-2026-15129 (use-after-free in Views). Remote code execution possible via malicious HTML. Patch status not confirmed — monitor advisory: https://radar.offseq.com/threat/cve-2026-15129-use-after-free-in-google-chrome-aca2929fc0214ef5 #OffSeq #Chrome #Infosec #CVE202615129
##updated 2026-07-09T12:30:35
1 posts
CVE-2026-9253: WP Cost Estimation & Payment Forms Builder ≤10.5.97 has a HIGH severity stored XSS via 'customerInfos'. Unauthenticated attackers can inject scripts. Patch status unconfirmed — restrict plugin use for now. https://radar.offseq.com/threat/cve-2026-9253-cwe-79-improper-neutralization-of-in-2f00c010407cb3e3 #OffSeq #WordPress #Vuln #XSS
##updated 2026-07-09T09:30:40
1 posts
CVE-2026-14245: CRITICAL vuln in miniOrange OTP Login ≤5.5.1. Auth bypass allows admin takeover if Ultimate Member Password Reset Form is enabled. Disable that integration or enforce phone-only reset until patched. https://radar.offseq.com/threat/cve-2026-14245-cwe-862-missing-authorization-in-cy-f05bec899fe71393 #OffSeq #WordPress #Infosec #Vuln
##updated 2026-07-09T01:19:06.807000
4 posts
2 repos
Here's your weekly batch of Linux local privilege escalation vulnerabilities:
CVE-2026-43499 "GhostLock"
https://nebusec.ai/research/ionstack-part-2/
CVE-2026-46242 "Bad Epoll"
https://github.com/J-jaeyoung/bad-epoll
Enjoy! ✌️
##📰 New 'Bad Epoll' Linux Kernel Zero-Day (CVE-2026-46242) Grants Full Root Access
🚨 CRITICAL ZERO-DAY: 'Bad Epoll' (CVE-2026-46242) in Linux Kernel allows any local user to gain full root access. The use-after-free bug affects servers, desktops & Android. PoC exists. Patch immediately! 🐧💥 #Linux #CyberSecurity #ZeroDay #Infosec
🌐 cyber[.]netsecops[.]io
##Geopolitical: The NATO Summit commenced in Ankara on July 7, addressing defense spending and new air power deals. Ukraine executed long-range drone strikes on Russia's Omsk refinery on July 7. Cybersecurity: A critical Adobe ColdFusion vulnerability (CVE-2026-48282) is being actively exploited. A Linux 'Bad Epoll' root exploit (CVE-2026-46242) has also been publicly released. Technology: The UN Global Dialogue on AI Governance started July 6 in Geneva. Microsoft announced 4,800 job cuts, notably affecting its Xbox division, on July 6.
##⚠️ CRITICAL: Proof-of-Concept Exploit Released for Linux ‘Bad Epoll’ Root Access Vulnerability
A public proof-of-concept exploit is now available for CVE-2026-46242, a race-condition use-after-free bug in the Linux kernel epoll facility that allows unprivileged local processes to escalate to root. This affects kernel versions 6.4 and newer, including Android devices. Any system running vulne…
##updated 2026-07-09T00:32:11
8 posts
7 repos
https://github.com/caspy123/CVE-2026-43499
https://github.com/inforcqb/CVE-2026-43499-pja110
https://github.com/pubglite55/oppo-ghostlock
https://github.com/0xBlackash/CVE-2026-43499
https://github.com/tc3650/CVE-2026-43499-armv7
GhostLock (CVE-2026-43499): What It Is and Why We Patched All Managed Servers
This article provides an overview of recently patched #security vulnerability, Ghostlock (CVE-2026-43499).
GhostLock (CVE-2026-43499): What It Is, Why It Matters, and How Rad Web Hosting Protected Customer Servers
Published: July 10, 2026
When a critical operating system vulnerability is disclosed, every hour counts. That's why ...
Continued 👉 https://blog.radwebhosting.com/ghostlock-cve-2026-43499-what-it-is-and-why-we-patched-all-managed-servers/?utm_source=mastodon&utm_medium=social&utm_campaign=mastodon.social #privilegeescalation #criticalvulnerability
GhostLock (CVE-2026-43499): What It Is and Why We Patched All Managed Servers
This article provides an overview of recently patched #security vulnerability, Ghostlock (CVE-2026-43499).
GhostLock (CVE-2026-43499): What It Is, Why It Matters, and How Rad Web Hosting Protected Customer Servers
Published: July 10, 2026
When a critical operating system vulnerability is disclosed, every hour counts. That's why ...
Continued 👉 https://blog.radwebhosting.com/ghostlock-cve-2026-43499-what-it-is-and-why-we-patched-all-managed-servers/?utm_source=mastodon&utm_medium=social&utm_campaign=mastodon.social #privilegeescalation #criticalvulnerability
Postei no BR-Linux to avisando, e é sobre bug novo/velho.
VULNERABILIDADE GHOSTLOCK PERMITE QUE USUÁRIOS LOCAIS VIREM ROOT
A vulnerabilidade CVE-2026-43499, batizada de GhostLock, é um bug de sincronização divulgado esta semana, que ficou oculto por 15 anos no kernel Linux, e expõe a acesso root por usuários locais.
https://br-linux.org/2026/01/vulnerabilidade-ghostlock-permite-que-usuarios-locais-virem-root.html
##Huj, fuffzehn jahre alt. Der kleine verkacker im kernel ist ja fast volljährig geworden, bis ihn mal jemand bemerkt hat… und etwas im kontäjhner laufenzulassen, ist auch kein schutz.
Spielt eure sicherheitsaktualisierungen ein!
#Epic #Fail #Link #Linux #Linuxnews #Security ##15-Year-Old Linux Kernel GhostLock Flaw Lets Local Users Gain Root
CVE-2026-43499, dubbed GhostLock by Nebula Security, exposes a long-standing Linux kernel futex bug that can lead to local root access.
#kernel #linux-&-open-source-news #software #vulnerability
https://linuxiac.com/15-year-old-linux-kernel-ghostlock-flaw-lets-local-users-gain-root/
https://thecybersecguru.com/news/ghostlock-cve-2026-43499-linux-kernel-0day/
##Here's your weekly batch of Linux local privilege escalation vulnerabilities:
CVE-2026-43499 "GhostLock"
https://nebusec.ai/research/ionstack-part-2/
CVE-2026-46242 "Bad Epoll"
https://github.com/J-jaeyoung/bad-epoll
Enjoy! ✌️
##Researchers disclosed GhostLock (CVE-2026-43499) with public PoC code. The 15-year Linux kernel bug enables privilege escalation and container escape.
#GhostLock #CVE202643499 #LinuxKernel #PrivilegeEscalation #ContainerEscape #InfoSec
https://securityonline.info/ghostlock-cve-2026-43499/?utm_source=mastodon&utm_medium=jetpack_social
##updated 2026-07-09T00:31:25
1 posts
🔴 CVE-2026-47646 - Critical (9.3)
Improper neutralization of input during web page generation ('cross-site scripting') in Dynamics 365 Customer Voice allows an unauthorized attacker to perform spoofing over a network.
🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-47646/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##updated 2026-07-08T21:30:42
2 posts
The GitLab patch release fixes 8 flaws, including a high-severity cross-site scripting bug (CVE-2026-6896). Update to 19.1.2 now.
#GitLab #GitLabSecurity #XSS #CrossSiteScripting #CVE #DevSecOps #PatchNow #InfoSec
##🟠 CVE-2026-6896 - High (8.7)
GitLab has remediated an issue in GitLab EE affecting all versions from 13.11 before 18.11.7, 19.0 before 19.0.4, and 19.1 before 19.1.2 that under certain conditions could have allowed an authenticated user with developer-role permissions to exec...
🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-6896/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##updated 2026-07-08T21:30:37
1 posts
🟠 CVE-2026-58525 - High (8.2)
Improper access control in Microsoft Edge (Chromium-based) allows an unauthorized attacker to bypass a security feature over a network.
🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-58525/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##updated 2026-07-08T19:57:35.883000
1 posts
Dell PowerProtect Data Domain is affected by CRITICAL path traversal (CVE-2026-53481, CVSS 9.8). Remote, unauthenticated attackers can gain full system control. No patch yet — monitor Dell advisories. https://radar.offseq.com/threat/cve-2026-53481-cwe-22-improper-limitation-of-a-pat-89b94eec9af59b79 #OffSeq #Dell #CVE202653481 #infosec
##updated 2026-07-08T19:37:10.507000
1 posts
CVE-2026-33264: Apache Airflow <3.3.0 has a CRITICAL deserialization flaw. DAG authors can trigger remote code execution on Scheduler/API Server. Upgrade to 3.3.0+ and restrict allowed_deserialization_classes. Details: https://radar.offseq.com/threat/cve-2026-33264-cwe-502-deserialization-of-untruste-8bbc1aa55d6c3415 #OffSeq #Airflow #Infosec #CVE202633264
##updated 2026-07-08T15:32:52
6 posts
1 repos
Tenda Routers Contain Undocumented Authentication Backdoor
Tenda routers contain a hardcoded authentication backdoor (CVE-2026-11405) that allows attackers to gain full administrative control by bypassing standard login credentials. The vulnerability is not patched, and the vendor has not yet responded to the disclosure.
**If you use Tenda routers check your firmware version. If it's one of FH1201, W15E, AC10, AC5, AC6, immediately disable remote web management interface or at least isolate it from the internet. Only manage the device from your trusted local network. Since this backdoor is built into the firmware and Tenda has not released a fix, if there is no patch plan to replace these routers soon. As an extra step, change LAN IP address from the default to make them harder for attackers to find.**
#cybersecurity #infosec #advisory #vulnerability
https://beyondmachines.net/event_details/tenda-routers-contain-undocumented-authentication-backdoor-x-7-n-s-6/gD2P6Ple2L
CERT/CC Warns of Unpatched Admin Backdoor in Tenda Router Firmware
CERT/CC warned that several Tenda firmware versions contain an undocumented authentication backdoor that can give attackers administrative access to affected devices. The flaw, tracked as CVE-2026-11405, remains unpatched and could allow attackers to modify device settings, disable security features, or take full control of the device.
**Check your network for affected Tenda devices and reduce exposure immediately. No patch is available, so disable remote web management, block untrusted access to the router’s web interface, and change the default LAN IP address to reduce discovery by automated scanners.**
#cybersecurity #infosec #advisory #vulnerability
https://beyondmachines.net/event_details/cert-cc-warns-of-unpatched-admin-backdoor-in-tenda-router-firmware-q-b-l-n-g/gD2P6Ple2L
Hidden backdoor in Tenda routers goes unpatched as company ignores warnings from cybersecurity researchers — Chinese company's firmware allows admin access without a password
CERT/CC has disclosed a critical authentication backdoor affecting multiple Tenda router firmware versions. Tracked as CVE-2026-11405, the flaw grants full administrator access without valid credentials, and no vendor patch is currently available after CERT failed to reach Tenda.
#hardware
https://www.tomshardware.com/tech-industry/cyber-security/hidden-backdoor-found-in-tenda-routers-goes-unpatched-despite-warnings-from-cybersecurity-researchers-affected-firmware-allows-admin-access-without-a-password
@tugatech é preciso avisar as pessoas disto: https://discourse.ifin.network/t/cve-2026-11405-multiple-tenda-routers-have-an-admin-backdoor/646
##‼️ New Dark Web Informer Blog Post!
Title: When the Password Check Fails, You're In: The Hidden Admin Backdoor in Tenda Router Firmware (CVE-2026-11405)
##CVE-2026-11405 is a Tenda authentication backdoor. It allows full administrative access without valid credentials. Protect your network with these steps.
#CVE202611405 #Tenda #AuthenticationBackdoor #CyberSecurity #RouterSecurity
##updated 2026-07-08T15:32:13
1 posts
Progress patched three MOVEit Transfer flaws, including a stored XSS bug (CVE-2026-11903). No exploitation is confirmed. Update now.
#MOVEit #MOVEitTransfer #StoredXSS #XSS #CVE #ProgressSoftware #PatchNow #InfoSec
##updated 2026-07-08T15:28:15.630000
1 posts
Blocksy Companion Pro <2.1.47 has a CRITICAL unauthenticated file upload flaw (CVE-2026-58480). Attackers can bypass extension checks and achieve remote code execution via crafted filenames. Patch ASAP. https://radar.offseq.com/threat/cve-2026-58480-unrestricted-upload-of-file-with-da-329cbb8c3408e021 #OffSeq #CVE202658480 #WordPress #Vuln
##updated 2026-07-08T13:39:12.593000
7 posts
1 repos
Alert: Langflow CVE-2026-55255 allows authenticated attackers to execute arbitrary flows by manipulating flow IDs. Secure your tenant isolation now with our latest forensic deep-dive, featuring detection queries and hardening protocols. https://thecybermind.co/4912
##Alert: Langflow CVE-2026-55255 allows authenticated attackers to execute arbitrary flows by manipulating flow IDs. Secure your tenant isolation now with our latest forensic deep-dive, featuring detection queries and hardening protocols. https://thecybermind.co/4912
##Here's a summary of the latest geopolitical, technology, and cybersecurity news from the last 24 hours:
Geopolitical tensions escalate as the US conducted strikes on Iran, defying an earlier ceasefire agreement. In technology, Apple lost its appeal against the EU's Digital Markets Act, maintaining its "gatekeeper" designation. Cybersecurity concerns rise with CISA warning of active exploitation of the Langflow vulnerability (CVE-2026-55255) for credential harvesting, and Accenture confirming a data breach involving alleged source code theft. Additionally, a new "ghost phishing" technique, using encrypted HTML, has been observed bypassing traditional email security.
##CRITICAL vulnerabilities in Adobe ColdFusion (CVE-2026-48282), Langflow (CVE-2026-55255), Joomla SP Page Builder (CVE-2026-48908), & Page Builder CK (CVE-2026-56290) are being actively exploited for remote code execution & backdoors. Patch ASAP! https://radar.offseq.com/threat/cisa-urges-immediate-patching-of-exploited-coldfus-c7b23bd787139571 #OffSeq #CyberSec #CVE
##🚨 [CISA-2026:0707] CISA Adds 3 Known Exploited Vulnerabilities to Catalog (https://secdb.nttzen.cloud/security-advisory/detail/CISA-2026:0707)
CISA has added 3 new vulnerabilities to its Known Exploited Vulnerabilities Catalog, based on evidence of active exploitation. These types of vulnerabilities are a frequent attack vector for malicious cyber actors and pose significant risk to the federal enterprise.
⚠️ CVE-2026-48908 (https://secdb.nttzen.cloud/cve/detail/CVE-2026-48908)
- Name: JoomShaper SP Page Builder Unrestricted Upload of File with Dangerous Type Vulnerability
- Action: Apply mitigations in accordance with vendor instructions, ensuring compliance with CISA’s BOD 26-04 Prioritizing Security Updates Based on Risk (see URL in Notes) guidance and CISA’s “Forensics Triage Requirements” (see URL in Notes). Follow applicable BOD 26-04 guidance for cloud services or discontinue use of the product if mitigations are unavailable. Stakeholders are responsible for evaluating each asset's internet exposure and ensuring adherence to BOD 26-04 patching guidelines.
- Known To Be Used in Ransomware Campaigns? Unknown
- Vendor: JoomShaper
- Product: SP Page Builder
- Notes: https://extensions.joomla.org/extension/sp-page-builder/ ; BOD 26-04: https://www.cisa.gov/news-events/directives/bod-26-04-prioritizing-security-updates-based-risk ; Forensics Triage Requirements: https://www.cisa.gov/news-events/directives/bod-26-04-implementation-guidance-prioritizing-security-updates-based-risk ; https://nvd.nist.gov/vuln/detail/CVE-2026-48908
⚠️ CVE-2026-55255 (https://secdb.nttzen.cloud/cve/detail/CVE-2026-55255)
- Name: Langflow Authorization Bypass Through User-Controlled Key Vulnerability
- Action: Apply mitigations in accordance with vendor instructions, ensuring compliance with CISA’s BOD 26-04 Prioritizing Security Updates Based on Risk (see URL in Notes) guidance and CISA’s “Forensics Triage Requirements” (see URL in Notes). Follow applicable BOD 26-04 guidance for cloud services or discontinue use of the product if mitigations are unavailable. Stakeholders are responsible for evaluating each asset's internet exposure and ensuring adherence to BOD 26-04 patching guidelines.
- Known To Be Used in Ransomware Campaigns? Unknown
- Vendor: Langflow
- Product: Langflow
- Notes: https://github.com/langflow-ai/langflow/security/advisories/GHSA-qrpv-q767-xqq2 ; BOD 26-04: https://www.cisa.gov/news-events/directives/bod-26-04-prioritizing-security-updates-based-risk ; Forensics Triage Requirements: https://www.cisa.gov/news-events/directives/bod-26-04-implementation-guidance-prioritizing-security-updates-based-risk ; https://nvd.nist.gov/vuln/detail/CVE-2026-55255
⚠️ CVE-2026-56290 (https://secdb.nttzen.cloud/cve/detail/CVE-2026-56290)
- Name: Joomlack Page Builder Improper Access Control Vulnerability
- Action: Apply mitigations in accordance with vendor instructions, ensuring compliance with CISA’s BOD 26-04 Prioritizing Security Updates Based on Risk (see URL in Notes) guidance and CISA’s “Forensics Triage Requirements” (see URL in Notes). Follow applicable BOD 26-04 guidance for cloud services or discontinue use of the product if mitigations are unavailable. Stakeholders are responsible for evaluating each asset's internet exposure and ensuring adherence to BOD 26-04 patching guidelines.
- Known To Be Used in Ransomware Campaigns? Unknown
- Vendor: Joomlack
- Product: Page Builder
- Notes: https://www.joomlack.fr/en/joomla-extensions/page-builder-ck ; BOD 26-04: https://www.cisa.gov/news-events/directives/bod-26-04-prioritizing-security-updates-based-risk ; Forensics Triage Requirements: https://www.cisa.gov/news-events/directives/bod-26-04-implementation-guidance-prioritizing-security-updates-based-risk ; https://nvd.nist.gov/vuln/detail/CVE-2026-56290
#ZEN #SecDB #InfoSec #CVE #CISA_KEV #cisa_20260707 #cisa20260707 #cve_2026_48908 #cve_2026_55255 #cve_2026_56290 #cve202648908 #cve202655255 #cve202656290
##CVE ID: CVE-2026-55255
Vendor: Langflow
Product: Langflow
Date Added: 2026-07-07
CVE URL: https://nvd.nist.gov/vuln/detail/CVE-2026-55255
CISA has updated the KEV catalogue.
- CVE-2026-56290: Joomlack Page Builder Improper Access Control Vulnerability https://www.cve.org/CVERecord?id=CVE-2026-56290
- CVE-2026-55255: Langflow Authorization Bypass Through User-Controlled Key Vulnerability https://www.cve.org/CVERecord?id=CVE-2026-55255
- CVE-2026-48908: JoomShaper SP Page Builder Unrestricted Upload of File with Dangerous Type Vulnerability https://www.cve.org/CVERecord?id=CVE-2026-48908
Several industrial vulnerabilities: https://www.cisa.gov/ #infosec #vulnerability #CISA
##updated 2026-07-08T12:31:28
1 posts
CRITICAL: CVE-2026-12378 — Deserialization of untrusted data in Appointment Booking Calendar & Scheduling Plugins (<=1.1.28) for WordPress. Unauthenticated attackers may achieve RCE. Restrict plugin use & monitor for patches. https://radar.offseq.com/threat/cve-2026-12378-cwe-502-deserialization-of-untruste-7e251cce3409b39a #OffSeq #WordPress #Vuln #RCE
##updated 2026-07-08T09:31:48
1 posts
CVE-2026-9695: CRITICAL improper authentication vuln in DELMIA Apriso (2020 – 2026). Allows unauthenticated privileged access — no patch yet. Restrict server access & monitor for anomalies. Details: https://radar.offseq.com/threat/cve-2026-9695-cwe-287-improper-authentication-in-d-f67e224c65e69eb9 #OffSeq #CVE20269695 #SCADA #Infosec
##updated 2026-07-08T03:30:33
1 posts
OpenSSH 10.4 ships eight security fixes, including a client use-after-free (CVE-2026-60002) plus SFTP and SCP path bugs. Update now.
##updated 2026-07-08T03:30:33
1 posts
CVE-2026-56843 (CRITICAL, CVSS 9.9): WebPros Plesk <18.0.78.4 has insufficient auth in XML-RPC API, letting low-privileged users access other tenants’ cleartext FTP creds & run code as them. Restrict API access & monitor. https://radar.offseq.com/threat/cve-2026-56843-cwe-522-insufficiently-protected-cr-45d7ae62ed3d3640 #OffSeq #Infosec #Plesk
##updated 2026-07-08T00:38:03
1 posts
I keep hearing how AI and LLMs are the future but they sure keep feeling like shitty applications from 20 years ago.
https://nvd.nist.gov/vuln/detail/CVE-2026-59706
##mem0 contains unauthenticated config API endpoints that expose LLM API keys in plaintext and allow server-side request forgery via attacker-controlled ollama_base_url parameter. Unauthenticated attackers can retrieve stored secrets like OpenAI API keys via GET /api/v1/config/ or trigger SSRF attacks by setting ollama_base_url to internal addresses like cloud IMDS via PUT /api/v1/config/mem0/llm endpoint.
updated 2026-07-07T21:32:33
8 posts
3 repos
https://github.com/Jenderal92/CVE-2026-56290
https://github.com/sagsooz/PageBuilderCK-CVE-2026-56290-Exploit
Critical Alert: Joomlack Page Builder CVE-2026-56290 allows for unauthorized access control bypasses. Secure your perimeter now with our latest forensic deep-dive, featuring detection queries and hardening protocols. Don’t wait for the breach—patch today
##Critical alert for Adobe ColdFusion users: CVE-2026-56290 allows for potential RCE. Our latest forensic deep-dive breaks down the technical impact and provides the hardening steps you need to secure your production environment. Don't wait for the breach—patch today.
https://thecybermind.co/2026/07/10/cve-2026-48282-adobe-coldfusion-path-2/
##Critical Alert: Joomlack Page Builder CVE-2026-56290 allows for unauthorized access control bypasses. Secure your perimeter now with our latest forensic deep-dive, featuring detection queries and hardening protocols. Don’t wait for the breach—patch today
##Critical alert for Adobe ColdFusion users: CVE-2026-56290 allows for potential RCE. Our latest forensic deep-dive breaks down the technical impact and provides the hardening steps you need to secure your production environment. Don't wait for the breach—patch today.
https://thecybermind.co/2026/07/10/cve-2026-48282-adobe-coldfusion-path-2/
##CRITICAL vulnerabilities in Adobe ColdFusion (CVE-2026-48282), Langflow (CVE-2026-55255), Joomla SP Page Builder (CVE-2026-48908), & Page Builder CK (CVE-2026-56290) are being actively exploited for remote code execution & backdoors. Patch ASAP! https://radar.offseq.com/threat/cisa-urges-immediate-patching-of-exploited-coldfus-c7b23bd787139571 #OffSeq #CyberSec #CVE
##🚨 [CISA-2026:0707] CISA Adds 3 Known Exploited Vulnerabilities to Catalog (https://secdb.nttzen.cloud/security-advisory/detail/CISA-2026:0707)
CISA has added 3 new vulnerabilities to its Known Exploited Vulnerabilities Catalog, based on evidence of active exploitation. These types of vulnerabilities are a frequent attack vector for malicious cyber actors and pose significant risk to the federal enterprise.
⚠️ CVE-2026-48908 (https://secdb.nttzen.cloud/cve/detail/CVE-2026-48908)
- Name: JoomShaper SP Page Builder Unrestricted Upload of File with Dangerous Type Vulnerability
- Action: Apply mitigations in accordance with vendor instructions, ensuring compliance with CISA’s BOD 26-04 Prioritizing Security Updates Based on Risk (see URL in Notes) guidance and CISA’s “Forensics Triage Requirements” (see URL in Notes). Follow applicable BOD 26-04 guidance for cloud services or discontinue use of the product if mitigations are unavailable. Stakeholders are responsible for evaluating each asset's internet exposure and ensuring adherence to BOD 26-04 patching guidelines.
- Known To Be Used in Ransomware Campaigns? Unknown
- Vendor: JoomShaper
- Product: SP Page Builder
- Notes: https://extensions.joomla.org/extension/sp-page-builder/ ; BOD 26-04: https://www.cisa.gov/news-events/directives/bod-26-04-prioritizing-security-updates-based-risk ; Forensics Triage Requirements: https://www.cisa.gov/news-events/directives/bod-26-04-implementation-guidance-prioritizing-security-updates-based-risk ; https://nvd.nist.gov/vuln/detail/CVE-2026-48908
⚠️ CVE-2026-55255 (https://secdb.nttzen.cloud/cve/detail/CVE-2026-55255)
- Name: Langflow Authorization Bypass Through User-Controlled Key Vulnerability
- Action: Apply mitigations in accordance with vendor instructions, ensuring compliance with CISA’s BOD 26-04 Prioritizing Security Updates Based on Risk (see URL in Notes) guidance and CISA’s “Forensics Triage Requirements” (see URL in Notes). Follow applicable BOD 26-04 guidance for cloud services or discontinue use of the product if mitigations are unavailable. Stakeholders are responsible for evaluating each asset's internet exposure and ensuring adherence to BOD 26-04 patching guidelines.
- Known To Be Used in Ransomware Campaigns? Unknown
- Vendor: Langflow
- Product: Langflow
- Notes: https://github.com/langflow-ai/langflow/security/advisories/GHSA-qrpv-q767-xqq2 ; BOD 26-04: https://www.cisa.gov/news-events/directives/bod-26-04-prioritizing-security-updates-based-risk ; Forensics Triage Requirements: https://www.cisa.gov/news-events/directives/bod-26-04-implementation-guidance-prioritizing-security-updates-based-risk ; https://nvd.nist.gov/vuln/detail/CVE-2026-55255
⚠️ CVE-2026-56290 (https://secdb.nttzen.cloud/cve/detail/CVE-2026-56290)
- Name: Joomlack Page Builder Improper Access Control Vulnerability
- Action: Apply mitigations in accordance with vendor instructions, ensuring compliance with CISA’s BOD 26-04 Prioritizing Security Updates Based on Risk (see URL in Notes) guidance and CISA’s “Forensics Triage Requirements” (see URL in Notes). Follow applicable BOD 26-04 guidance for cloud services or discontinue use of the product if mitigations are unavailable. Stakeholders are responsible for evaluating each asset's internet exposure and ensuring adherence to BOD 26-04 patching guidelines.
- Known To Be Used in Ransomware Campaigns? Unknown
- Vendor: Joomlack
- Product: Page Builder
- Notes: https://www.joomlack.fr/en/joomla-extensions/page-builder-ck ; BOD 26-04: https://www.cisa.gov/news-events/directives/bod-26-04-prioritizing-security-updates-based-risk ; Forensics Triage Requirements: https://www.cisa.gov/news-events/directives/bod-26-04-implementation-guidance-prioritizing-security-updates-based-risk ; https://nvd.nist.gov/vuln/detail/CVE-2026-56290
#ZEN #SecDB #InfoSec #CVE #CISA_KEV #cisa_20260707 #cisa20260707 #cve_2026_48908 #cve_2026_55255 #cve_2026_56290 #cve202648908 #cve202655255 #cve202656290
##CVE ID: CVE-2026-56290
Vendor: Joomlack
Product: Page Builder
Date Added: 2026-07-07
CVE URL: https://nvd.nist.gov/vuln/detail/CVE-2026-56290
CISA has updated the KEV catalogue.
- CVE-2026-56290: Joomlack Page Builder Improper Access Control Vulnerability https://www.cve.org/CVERecord?id=CVE-2026-56290
- CVE-2026-55255: Langflow Authorization Bypass Through User-Controlled Key Vulnerability https://www.cve.org/CVERecord?id=CVE-2026-55255
- CVE-2026-48908: JoomShaper SP Page Builder Unrestricted Upload of File with Dangerous Type Vulnerability https://www.cve.org/CVERecord?id=CVE-2026-48908
Several industrial vulnerabilities: https://www.cisa.gov/ #infosec #vulnerability #CISA
##updated 2026-07-07T21:32:33
11 posts
2 repos
https://github.com/g0thamRabb1t/CVE-2026-48282-coldfusion-rds-detection
Critical alert for Adobe ColdFusion users: CVE-2026-56290 allows for potential RCE. Our latest forensic deep-dive breaks down the technical impact and provides the hardening steps you need to secure your production environment. Don't wait for the breach—patch today.
https://thecybermind.co/2026/07/10/cve-2026-48282-adobe-coldfusion-path-2/
##Critical alert for Adobe ColdFusion users: CVE-2026-56290 allows for potential RCE. Our latest forensic deep-dive breaks down the technical impact and provides the hardening steps you need to secure your production environment. Don't wait for the breach—patch today.
https://thecybermind.co/2026/07/10/cve-2026-48282-adobe-coldfusion-path-2/
##⚪️ Critical Adobe ColdFusion bug already exploited in attacks
🗨️ Attackers began exploiting a fresh vulnerability in Adobe ColdFusion (CVE-2026-48282) about two hours after information about it was published. The developers fixed the issue last week and strongly recommended that administrators install the updates as soon as possible. The CVE-2026-48282…
##⚠️ Actively Exploited: CVE-2026-48282 (CVSS 10.0) in Adobe ColdFusion. CISA KEV deadline is July 10. We just dropped the paywall on our TS-MAN runbook. Get the exact Splunk, Sentinel, and CrowdStrike queries to hunt this unauthenticated RCE right now. 👇
https://thecybermind.co/1m24
CRITICAL vulnerabilities in Adobe ColdFusion (CVE-2026-48282), Langflow (CVE-2026-55255), Joomla SP Page Builder (CVE-2026-48908), & Page Builder CK (CVE-2026-56290) are being actively exploited for remote code execution & backdoors. Patch ASAP! https://radar.offseq.com/threat/cisa-urges-immediate-patching-of-exploited-coldfus-c7b23bd787139571 #OffSeq #CyberSec #CVE
##Recent events include heightened geopolitical tensions as the U.S. launched strikes on Iran following attacks in the Strait of Hormuz, pushing oil prices higher. In cybersecurity, Sysdig reported the first end-to-end AI agent ransomware attack, dubbed "JADEPUFFER." Additionally, CISA issued a warning regarding active exploitation of a critical Adobe ColdFusion vulnerability (CVE-2026-48282).
##Poc for CVE-2026-48282, a path traversal vulnerability in Adobe ColdFusion's Remote Development Service (RDS) https://github.com/imbas007/CVE-2026-48282
##🚨 CVE-2026-48282: PoC Path traversal vulnerability in Adobe ColdFusion's Remote Development Service (RDS) with a CVSS score of 10.0
##CVE ID: CVE-2026-48282
Vendor: Adobe
Product: ColdFusion
Date Added: 2026-07-07
CVE URL: https://nvd.nist.gov/vuln/detail/CVE-2026-48282
Geopolitical: The NATO Summit commenced in Ankara on July 7, addressing defense spending and new air power deals. Ukraine executed long-range drone strikes on Russia's Omsk refinery on July 7. Cybersecurity: A critical Adobe ColdFusion vulnerability (CVE-2026-48282) is being actively exploited. A Linux 'Bad Epoll' root exploit (CVE-2026-46242) has also been publicly released. Technology: The UN Global Dialogue on AI Governance started July 6 in Geneva. Microsoft announced 4,800 job cuts, notably affecting its Xbox division, on July 6.
##"Attackers are now exploiting a maximum-severity Adobe ColdFusion vulnerability tracked as CVE-2026-48282, according to vulnerability intelligence company KEVIntel.“
##updated 2026-07-07T21:31:26
4 posts
9 repos
https://github.com/cazzysoci/cve-2026-48908
https://github.com/Jenderal92/CVE-2026-48908
https://github.com/g0thamRabb1t/CVE-2026-48908-joomla-sp-page-builder-detection
https://github.com/papageo75/CVE-2026-48908-PoC
https://github.com/webshellseo8/CVE-2026-48908-POC
https://github.com/bayu06802/CVE-2026-48908
https://github.com/0xBlackash/CVE-2026-48908
https://github.com/gagaltotal/CVE-2026-48908-SP-Page-Builder-Joomla
CRITICAL vulnerabilities in Adobe ColdFusion (CVE-2026-48282), Langflow (CVE-2026-55255), Joomla SP Page Builder (CVE-2026-48908), & Page Builder CK (CVE-2026-56290) are being actively exploited for remote code execution & backdoors. Patch ASAP! https://radar.offseq.com/threat/cisa-urges-immediate-patching-of-exploited-coldfus-c7b23bd787139571 #OffSeq #CyberSec #CVE
##🚨 [CISA-2026:0707] CISA Adds 3 Known Exploited Vulnerabilities to Catalog (https://secdb.nttzen.cloud/security-advisory/detail/CISA-2026:0707)
CISA has added 3 new vulnerabilities to its Known Exploited Vulnerabilities Catalog, based on evidence of active exploitation. These types of vulnerabilities are a frequent attack vector for malicious cyber actors and pose significant risk to the federal enterprise.
⚠️ CVE-2026-48908 (https://secdb.nttzen.cloud/cve/detail/CVE-2026-48908)
- Name: JoomShaper SP Page Builder Unrestricted Upload of File with Dangerous Type Vulnerability
- Action: Apply mitigations in accordance with vendor instructions, ensuring compliance with CISA’s BOD 26-04 Prioritizing Security Updates Based on Risk (see URL in Notes) guidance and CISA’s “Forensics Triage Requirements” (see URL in Notes). Follow applicable BOD 26-04 guidance for cloud services or discontinue use of the product if mitigations are unavailable. Stakeholders are responsible for evaluating each asset's internet exposure and ensuring adherence to BOD 26-04 patching guidelines.
- Known To Be Used in Ransomware Campaigns? Unknown
- Vendor: JoomShaper
- Product: SP Page Builder
- Notes: https://extensions.joomla.org/extension/sp-page-builder/ ; BOD 26-04: https://www.cisa.gov/news-events/directives/bod-26-04-prioritizing-security-updates-based-risk ; Forensics Triage Requirements: https://www.cisa.gov/news-events/directives/bod-26-04-implementation-guidance-prioritizing-security-updates-based-risk ; https://nvd.nist.gov/vuln/detail/CVE-2026-48908
⚠️ CVE-2026-55255 (https://secdb.nttzen.cloud/cve/detail/CVE-2026-55255)
- Name: Langflow Authorization Bypass Through User-Controlled Key Vulnerability
- Action: Apply mitigations in accordance with vendor instructions, ensuring compliance with CISA’s BOD 26-04 Prioritizing Security Updates Based on Risk (see URL in Notes) guidance and CISA’s “Forensics Triage Requirements” (see URL in Notes). Follow applicable BOD 26-04 guidance for cloud services or discontinue use of the product if mitigations are unavailable. Stakeholders are responsible for evaluating each asset's internet exposure and ensuring adherence to BOD 26-04 patching guidelines.
- Known To Be Used in Ransomware Campaigns? Unknown
- Vendor: Langflow
- Product: Langflow
- Notes: https://github.com/langflow-ai/langflow/security/advisories/GHSA-qrpv-q767-xqq2 ; BOD 26-04: https://www.cisa.gov/news-events/directives/bod-26-04-prioritizing-security-updates-based-risk ; Forensics Triage Requirements: https://www.cisa.gov/news-events/directives/bod-26-04-implementation-guidance-prioritizing-security-updates-based-risk ; https://nvd.nist.gov/vuln/detail/CVE-2026-55255
⚠️ CVE-2026-56290 (https://secdb.nttzen.cloud/cve/detail/CVE-2026-56290)
- Name: Joomlack Page Builder Improper Access Control Vulnerability
- Action: Apply mitigations in accordance with vendor instructions, ensuring compliance with CISA’s BOD 26-04 Prioritizing Security Updates Based on Risk (see URL in Notes) guidance and CISA’s “Forensics Triage Requirements” (see URL in Notes). Follow applicable BOD 26-04 guidance for cloud services or discontinue use of the product if mitigations are unavailable. Stakeholders are responsible for evaluating each asset's internet exposure and ensuring adherence to BOD 26-04 patching guidelines.
- Known To Be Used in Ransomware Campaigns? Unknown
- Vendor: Joomlack
- Product: Page Builder
- Notes: https://www.joomlack.fr/en/joomla-extensions/page-builder-ck ; BOD 26-04: https://www.cisa.gov/news-events/directives/bod-26-04-prioritizing-security-updates-based-risk ; Forensics Triage Requirements: https://www.cisa.gov/news-events/directives/bod-26-04-implementation-guidance-prioritizing-security-updates-based-risk ; https://nvd.nist.gov/vuln/detail/CVE-2026-56290
#ZEN #SecDB #InfoSec #CVE #CISA_KEV #cisa_20260707 #cisa20260707 #cve_2026_48908 #cve_2026_55255 #cve_2026_56290 #cve202648908 #cve202655255 #cve202656290
##CVE ID: CVE-2026-48908
Vendor: JoomShaper
Product: SP Page Builder
Date Added: 2026-07-07
CVE URL: https://nvd.nist.gov/vuln/detail/CVE-2026-48908
CISA has updated the KEV catalogue.
- CVE-2026-56290: Joomlack Page Builder Improper Access Control Vulnerability https://www.cve.org/CVERecord?id=CVE-2026-56290
- CVE-2026-55255: Langflow Authorization Bypass Through User-Controlled Key Vulnerability https://www.cve.org/CVERecord?id=CVE-2026-55255
- CVE-2026-48908: JoomShaper SP Page Builder Unrestricted Upload of File with Dangerous Type Vulnerability https://www.cve.org/CVERecord?id=CVE-2026-48908
Several industrial vulnerabilities: https://www.cisa.gov/ #infosec #vulnerability #CISA
##updated 2026-07-07T18:58:45.827000
1 posts
CVE-2026-54060 - Supply chain attack in Pillow Python imaging library. FontFile.compile() bypasses decompression bomb check, enabling excessive memory allocation. CVSS 7.5. Update to Pillow 12.3.0 immediately. #CVE #infosec #Python
##updated 2026-07-07T15:33:58
1 posts
CVE-2026-12375 (CRITICAL): uncanny-automator-pro v7.3.0.5 distributed with a hidden backdoor due to vendor supply chain compromise. Attackers can gain admin access & exfiltrate secrets. Remove/disable this version now. https://radar.offseq.com/threat/cve-2026-12375-cwe-912-hidden-functionality-in-unc-f847b0208ffd2506 #OffSeq #WordPress #SupplyChain
##updated 2026-07-07T15:33:58
1 posts
CVE-2026-4375: CRITICAL code injection (CWE-94) in DoLeads Integrator & wp2epub WordPress plugins ≤0.65 allows RCE by unauthorized users. No patch yet — restrict plugin installs & monitor for changes. https://radar.offseq.com/threat/cve-2026-4375-cwe-94-improper-control-of-generatio-71c36276dd5a5ffb #OffSeq #WordPress #CVE20264375
##updated 2026-07-07T15:16:44.500000
1 posts
🟠 CVE-2026-34168 - High (8.8)
Coolify is an open-source and self-hostable tool for managing servers, applications, and databases. Prior to 4.0.0-beta.471, the LocalPersistentVolume.name field is interpolated directly into docker volume shell commands without shell argument esc...
🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-34168/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##updated 2026-07-07T13:22:13.557000
1 posts
🟠 CVE-2026-42200 - High (8.8)
Coolify is an open-source and self-hostable tool for managing servers, applications, and databases. Prior to 4.0.0-beta.474, PostgreSQL initialization script (generate_init_scripts() method in app/Actions/Database/StartPostgresql.php) filename han...
🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-42200/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##updated 2026-07-07T13:01:13
1 posts
🟠 CVE-2026-33655 - High (7.7)
New API is a large language mode (LLM) gateway and artificial intelligence (AI) asset management system. Prior to 0.12.0-alpha.1, the default SSRF protection configuration did not apply IP filtering to hostnames; with ApplyIPFilterForDomain disabl...
🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-33655/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##updated 2026-07-07T06:31:27
1 posts
🔴 CVE-2026-14345 - Critical (9.8)
The WPFunnels – Funnel Builder for WooCommerce with Checkout & One Click Upsell plugin for WordPress is vulnerable to Remote Code Execution in all versions up to, and including, 3.12.7 via the 'postData' parameter parameter. This is due to unsan...
🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-14345/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##updated 2026-07-06T21:37:49
1 posts
🔴 CVE-2026-55500 - Critical (9.9)
9Router is an AI router & token saver. Prior to 0.4.80, the /api/settings/database endpoint allows full database export (containing all credentials, API keys, OAuth tokens, and settings) and full database import (complete overwrite) without any au...
🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-55500/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##updated 2026-07-06T21:30:38
1 posts
CVE-2026-13753 exposes a missing authorization vulnerability in HP Deskjet 2800 printers. Unauthenticated attackers can extract sensitive Wi-Fi credentials.
#CVE202613753 #HPDeskjet #CyberSecurity #Vulnerability #PrinterSecurity
##updated 2026-07-06T21:30:34
6 posts
5 repos
https://github.com/Aoripus-LTD/Januscape-Hotfix
https://github.com/xj2268-TA/KVM-Januscape
https://github.com/chuzhongyun/CVE-2026-53359-Kernel-Fix
🆕 Vulnerability-Lookup now imports Microsoft CSAF VEX documents from MSRC — joining the Red Hat VEX feed as a vendor VEX enrichment source.
Per-CVE VEX statements (product status, severity) are attached directly to CVE records, visible on the vulnerability page and via the API with the full CSAF documents.
Example with both Red Hat and Microsoft VEX:
https://vulnerability.circl.lu/vuln/CVE-2026-53359#vex
🆕 Vulnerability-Lookup now imports Microsoft CSAF VEX documents from MSRC — joining the Red Hat VEX feed as a vendor VEX enrichment source.
Per-CVE VEX statements (product status, severity) are attached directly to CVE records, visible on the vulnerability page and via the API with the full CSAF documents.
Example with both Red Hat and Microsoft VEX:
https://vulnerability.circl.lu/vuln/CVE-2026-53359#vex
Januscape CVE-2026-53359 KVM Vulnerability
##Januscape Flaw in Linux KVM’s MMU Code Enables VM Escape on Intel and AMD
A newly disclosed Linux kernel vulnerability, CVE-2026-53359, dubbed Januscape, has exposed a critical weakness in the Linux Kernel-based Virtual...
🔗️ [Thecyberexpress] https://link.is.it/a1LDMj
##Januscape (CVE-2026-53359) Guest-to-Host Escape in KVM/x86 https://github.com/V4bel/Januscape
##Januscape: Guest-to-Host Escape in KVM/x86 [CVE-2026-53359]
Link: https://github.com/V4bel/Januscape
Discussion: https://news.ycombinator.com/item?id=48807908
updated 2026-07-06T20:42:02
1 posts
🔴 CVE-2026-54769 - Critical (10)
Langroid is a framework for building large-language-model-powered applications. Versions prior to 0.65.2 are vulnerable to a critical Sandbox Escape leading to Remote Code Execution (RCE) in its `TableChatAgent` and `VectorStore` capabilities. Whe...
🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-54769/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##updated 2026-07-06T19:42:32.890000
1 posts
1 repos
CISA warns of a Gardyn IoT Hub flaw. CVE-2026-13768 (CVSS 10) enables unauthenticated remote code execution on smart garden devices. Update now.
#Gardyn #IoTSecurity #RCE #CISA #SmartGarden #CyberSecurity #Vulnerability #InfoSec
##updated 2026-07-03T09:31:35
1 posts
A critical HPLIP vulnerability, CVE-2026-14544 (CVSS 9.8), lets a remote attacker gain arbitrary code execution via crafted print data. Patch now.
#HPLIP #LinuxSecurity #RCE #CVE #hpcups #CyberSecurity #Vulnerability #InfoSec
##updated 2026-07-02T20:17:04.450000
1 posts
2 repos
O Control Web Panel sofre uma falha crítica que exige atualização urgente nos servidores. A vulnerabilidade CVE-2026-57517 permite a execução remota de código sem autenticação prévia. 🚨
##updated 2026-07-02T15:32:12
3 posts
1 repos
The CVE-2026-50746 vulnerability affects UniFi Connect Application (versions 3.4.16 and earlier), a management software suite that Ubiquiti customers can use to automate and manage commercial building operations. https://www.bleepingcomputer.com/news/security/ubiquiti-warns-of-new-max-severity-unifi-os-vulnerability/
##CRITICAL: Ubiquiti UniFi OS hit by 7 flaws, incl. CVE-2026-50746 (command injection) in UniFi Connect ≤3.4.16. Exploitable w/ network access, no user interaction. Update to 3.4.20+ ASAP. No in-the-wild exploits yet. https://radar.offseq.com/threat/ubiquiti-warns-of-new-max-severity-unifi-os-vulner-d14602d3f7d74505 #OffSeq #Ubiquiti #Infosec #CVE202650746
##Ubiquiti's UniFi security advisory 066 patches 25 flaws, including a critical command injection (CVE-2026-50746) scoring 10.0. Update your devices now.
#Ubiquiti #UniFi #UniFiOS #UniFiProtect #CommandInjection #CyberSecurity
##updated 2026-07-02T12:31:55
1 posts
9 repos
https://github.com/mooder1/dirtyclone-CVE-2026-43503
https://github.com/douglasmun/pagecache-lpe-containment-kit
https://github.com/gl1tch0x1/DirtyClone
https://github.com/entra1337/DirtyClone
https://github.com/0xBlackash/CVE-2026-43503
https://github.com/lieehrdiansyah12/CVE-2026-43503
https://github.com/SecureWithUmer/CVE-2026-43503
Dirty Clone – kolejny sposób na roota pod Linuksem
Nie tak dawno pisaliśmy o serii podatności Dirty Frag występujących w większości nowoczesnych dystrybucji Linuksa. I choć mogłoby się wydawać, że deweloperzy naprawili błędy, to najnowsze badania pokazują, że problem nie został jednak wyeliminowany. W jądrze pozostała bowiem niezałatana luka, którą badacze z JFrog ochrzcili mianem Dirty Clone (CVE-2026-43503). Podobnie...
#Aktualności #Eskalacja #Hacking #Kernel #Linux #LocalRoot #Lpe #PageCache
https://sekurak.pl/dirty-clone-kolejny-sposob-na-roota-pod-linuksem/
##updated 2026-07-02T12:16:57.127000
1 posts
A critical Feast Feature Server flaw (CVE-2026-23537) lets unauthenticated attackers perform arbitrary file write and risk remote code execution. Act now.
#Feast #FeatureStore #MachineLearning #ArbitraryFileWrite #RCE #CVE202623537 #CyberSecurity
##updated 2026-07-01T19:59:44.537000
1 posts
BMC patches Control-M command injection flaw CVE-2026-10539, an unauthenticated remote command injection bug rated CVSS 9.5.
##updated 2026-07-01T18:31:24
2 posts
5 repos
https://github.com/derekpreston81/CVE_ADC_IOC_2026
https://github.com/0xBlackash/CVE-2026-8451
https://github.com/amnsecurity/CVE-2026-8451-CitrixBleed
https://github.com/attarwahyup/Netscaler-CVE-2026-8451
https://github.com/watchtowrlabs/watchTowr-vs-Netscaler-CVE-2026-8451
CitrixBleed To Infinity And Beyond (Citrix NetScaler Pre-Auth Memory Overread CVE-2026-8451) https://labs.watchtowr.com/citrixbleed-to-infinity-and-beyond-citrix-netscaler-pre-auth-memory-overread-cve-2026-8451/
##CitrixBleed To Infinity And Beyond (Citrix NetScaler Pre-Auth Memory Overread CVE-2026-8451) https://labs.watchtowr.com/citrixbleed-to-infinity-and-beyond-citrix-netscaler-pre-auth-memory-overread-cve-2026-8451/
##updated 2026-07-01T15:35:27
1 posts
New pretix vulnerabilities include a critical session takeover chain (CVE-2026-13602) and an SSRF API key leak. Update to 2026.5.3 now.
#pretix #SessionTakeover #SSRF #CyberSecurity #CVE202613602 #CVE202613603
https://securityonline.info/pretix-vulnerabilities/?utm_source=mastodon&utm_medium=jetpack_social
##updated 2026-07-01T05:16:25.290000
1 posts
2 repos
Enterprise Tech In, Shell Out (Progress Kemp LoadMaster Uninitialized Heap to Pre-Auth RCE CVE-2026-8037) https://labs.watchtowr.com/enterprise-tech-in-shell-out-progress-kemp-loadmaster-uninitialized-heap-to-pre-auth-rce-cve-2026-8037/
##updated 2026-06-30T22:16:53.940000
1 posts
A decade of #Spring SpEL CVEs: CVE-2026-41852, CVE-2026-41851, CVE-2026-41850, CVE-2026-41849, CVE-2026-41729, CVE-2026-41719, CVE-2026-41717, CVE-2025-41253, CVE-2024-38808, CVE-2023-20861, CVE-2022-22980, CVE-2022-22963, CVE-2022-22950, CVE-2022-22947, CVE-2018-1273, CVE-2018-1260, CVE-2017-8046, CVE-2016-4977. RCE, DoS, you name it
##updated 2026-06-30T03:36:36
1 posts
8 repos
https://github.com/bakano98/cve-2026-23111-poc
https://github.com/criann/check-cve-2026-23111
https://github.com/seguridadentrerios/CVE-2026-23111
https://github.com/0xBlackash/CVE-2026-23111
https://github.com/vrtlbob/Linux-Kernel-Vulnerabilities-CVE-2026-23111
https://github.com/ishankaru/CVE-2026-23111-nftables-lab
Root-Zugriff durch einen Linux-Kernel-Bug: Ein einzelnes falsch gesetztes Ausrufezeichen in Nftables (CVE-2026-23111) negierte eine Bedingung und öffnete eine Use-after-free-Lücke. Angreifer mit einfachen Rechten können Code als Root ausführen. Patch seit Feb. 2026. 🔒🐧 https://www.golem.de/news/root-zugriff-moeglich-falsch-gesetztes-zeichen-reisst-luecke-in-den-linux-kernel-2607-210595.html #Linux #Security #CVE #Nftables
##updated 2026-06-26T18:44:14.703000
1 posts
8 repos
https://github.com/WuliRuler/SBSCAN
https://github.com/knqyf263/CVE-2018-1273
https://github.com/hdgokani/CVE-2018-1273
https://github.com/jas502n/cve-2018-1273
https://github.com/AabyssZG/SpringBoot-Scan
https://github.com/webr0ck/poc-cve-2018-1273
A decade of #Spring SpEL CVEs: CVE-2026-41852, CVE-2026-41851, CVE-2026-41850, CVE-2026-41849, CVE-2026-41729, CVE-2026-41719, CVE-2026-41717, CVE-2025-41253, CVE-2024-38808, CVE-2023-20861, CVE-2022-22980, CVE-2022-22963, CVE-2022-22950, CVE-2022-22947, CVE-2018-1273, CVE-2018-1260, CVE-2017-8046, CVE-2016-4977. RCE, DoS, you name it
##updated 2026-06-24T18:32:50
1 posts
🛡️ Linux rocked by CVE-2026-53111: a single faulty character leads to a use-after-free flaw that can help unprivileged users evade sandbox defenses—and escalate to root. Researchers say the February kernel fix has been backported to major distros. #Linux #Security https://arstechnica.com/security/2026/06/a-single-errant-character-in-the-linux-kernel-allows-attacker-to-gain-root/
##updated 2026-06-23T15:08:22.603000
1 posts
APISIX authentication bypass CVE-2026-39999 lets attackers forge JWTs via algorithm confusion. APISIX 3.16.0 is affected; upgrade to 3.16.1.
#APISIX #ApacheAPISIX #JWT #AuthBypass #InfoSec
https://securityonline.info/apisix-jwt-auth-bypass/?utm_source=mastodon&utm_medium=jetpack_social
##updated 2026-06-19T20:47:13
1 posts
🔴 CVE-2026-54782 - Critical (10)
CoreWCF is a port of the service side of Windows Communication Foundation (WCF) to .NET Core. Prior to 1.8.1 and 1.9.1, CoreWCF SAML 1.1 and SAML 2.0 token validation does not correctly resolve the issuer signing key or require signed tokens when ...
🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-54782/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##updated 2026-06-18T15:04:58
1 posts
CVE-2026-54003 (CRITICAL, CVSS 9.1): getkirby Kirby CMS sites w/o users & behind certain reverse proxies risk remote admin creation via trusted IP headers. Upgrade to 4.9.4/5.4.4+ ASAP. More: https://radar.offseq.com/threat/cve-2026-54003-cwe-454-external-initialization-of--015a5d4d7df10357 #OffSeq #Vulnerability #KirbyCMS #InfoSec
##updated 2026-06-17T18:36:07
1 posts
If you missed this yesterday, Cisco posted this advisory on a critical vulnerability that was first published in June.
CRITICAL: CVE-2026-20181 and CVE-2026-20190: Cisco Identity Services Engine Remote Code Execution and Information Disclosure Vulnerabilities https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-ise-multi-G5WP8vv @TalosSecurity
More: https://sec.cloudapps.cisco.com/security/center/publicationListing.x #Cisco #infosec #vulnerability
##updated 2026-06-17T18:36:07
1 posts
If you missed this yesterday, Cisco posted this advisory on a critical vulnerability that was first published in June.
CRITICAL: CVE-2026-20181 and CVE-2026-20190: Cisco Identity Services Engine Remote Code Execution and Information Disclosure Vulnerabilities https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-ise-multi-G5WP8vv @TalosSecurity
More: https://sec.cloudapps.cisco.com/security/center/publicationListing.x #Cisco #infosec #vulnerability
##updated 2026-06-17T10:54:28.290000
5 posts
2 repos
https://github.com/dhmosfunk/CVE-2026-49160-CVE-2026-47291-HTTP.sys
Our research team is back looking at CVE-2026-47291 - a CVSS 9.8 RCE bug in #Windows HTTP.sys. They show root cause and look at why detection may be just as hard as exploitation. https://www.zerodayinitiative.com/blog/2026/7/9/cve-2026-47291-remote-code-execution-in-the-windows-httpsys
##Our research team is back looking at CVE-2026-47291 - a CVSS 9.8 RCE bug in #Windows HTTP.sys. They show root cause and look at why detection may be just as hard as exploitation. https://www.zerodayinitiative.com/blog/2026/7/9/cve-2026-47291-remote-code-execution-in-the-windows-httpsys
##Our research team is back looking at CVE-2026-47291 - a CVSS 9.8 RCE bug in #Windows HTTP.sys. They show root cause and look at why detection may be just as hard as exploitation. https://www.zerodayinitiative.com/blog/2026/7/9/cve-2026-47291-remote-code-execution-in-the-windows-httpsys
##Our research team is back looking at CVE-2026-47291 - a CVSS 9.8 RCE bug in #Windows HTTP.sys. They show root cause and look at why detection may be just as hard as exploitation. https://www.zerodayinitiative.com/blog/2026/7/9/cve-2026-47291-remote-code-execution-in-the-windows-httpsys
##Our research team is back looking at CVE-2026-47291 - a CVSS 9.8 RCE bug in #Windows HTTP.sys. They show root cause and look at why detection may be just as hard as exploitation. https://www.zerodayinitiative.com/blog/2026/7/9/cve-2026-47291-remote-code-execution-in-the-windows-httpsys
##updated 2026-06-17T10:51:23.870000
1 posts
2 repos
https://github.com/shinthink/solrradar
https://github.com/gagaltotal/CVE-2026-44825-Apache-Solr-Scanner
💥 CVE-2026-44825: A scanner for Apache Solr instances that may be affected by CVE-2026-44825, related to Velocity Template Remote Code Execution (RCE) conditions.
GitHub: https://github.com/gagaltotal/CVE-2026-44825-Apache-Solr-Scanner
##updated 2026-06-17T10:51:07.977000
1 posts
What a complete node meltdown. Tor craps the bed and umbrel nodes everywhere lose peers and channels from 3 CVE vulnerabilities.
https://github.com/getumbrel/umbrel/issues/2189
https://cve.halosecurity.com/cve-advisory/cve-2026-44597-torproject-tor-out-of-bounds-read
##updated 2026-06-17T10:47:06.763000
1 posts
A decade of #Spring SpEL CVEs: CVE-2026-41852, CVE-2026-41851, CVE-2026-41850, CVE-2026-41849, CVE-2026-41729, CVE-2026-41719, CVE-2026-41717, CVE-2025-41253, CVE-2024-38808, CVE-2023-20861, CVE-2022-22980, CVE-2022-22963, CVE-2022-22950, CVE-2022-22947, CVE-2018-1273, CVE-2018-1260, CVE-2017-8046, CVE-2016-4977. RCE, DoS, you name it
##updated 2026-06-17T10:27:43.150000
1 posts
🚨 EUVD-2026-43052
📊 Score: 5.8/10 (CVSS v3.1)
📦 Product: mailpit
🏢 Vendor: axllent
📅 Updated: 2026-07-10
📝 Mailpit is an email testing tool and API for developers. Prior to 1.30.2, the remediation shipped for CVE-2026-27808 is incomplete because the tools.IsInternalIP deny-list in internal/tools/net.go relies on Go's standard library classification helpers and do...
🔗 https://euvd.enisa.europa.eu/vulnerability/EUVD-2026-43052
##updated 2026-06-17T07:41:05.140000
1 posts
A decade of #Spring SpEL CVEs: CVE-2026-41852, CVE-2026-41851, CVE-2026-41850, CVE-2026-41849, CVE-2026-41729, CVE-2026-41719, CVE-2026-41717, CVE-2025-41253, CVE-2024-38808, CVE-2023-20861, CVE-2022-22980, CVE-2022-22963, CVE-2022-22950, CVE-2022-22947, CVE-2018-1273, CVE-2018-1260, CVE-2017-8046, CVE-2016-4977. RCE, DoS, you name it
##updated 2026-06-17T04:29:13.760000
1 posts
A decade of #Spring SpEL CVEs: CVE-2026-41852, CVE-2026-41851, CVE-2026-41850, CVE-2026-41849, CVE-2026-41729, CVE-2026-41719, CVE-2026-41717, CVE-2025-41253, CVE-2024-38808, CVE-2023-20861, CVE-2022-22980, CVE-2022-22963, CVE-2022-22950, CVE-2022-22947, CVE-2018-1273, CVE-2018-1260, CVE-2017-8046, CVE-2016-4977. RCE, DoS, you name it
##updated 2026-06-16T21:31:57
3 posts
2 repos
https://github.com/0xBlackash/CVE-2026-50656
https://github.com/g0thamRabb1t/CVE-2026-50656-rogueplanet-validation
The vulnerability, tracked as CVE-2026-50656 (CVSS score: 7.8), is a privilege escalation issue in the Microsoft Malware Protection Engine ("mpengine.dll"), which provides scanning, detection, and cleaning capabilities for its antivirus and antispyware software. https://thehackernews.com/2026/07/microsoft-patches-rogueplanet-defender.html
##Microsoft patched the RoguePlanet Microsoft Defender zero-day, CVE-2026-50656, a race condition that grants SYSTEM privileges. A public PoC exists.
#MicrosoftDefender #RoguePlanet #ZeroDay #CVE #PrivilegeEscalation #Windows #InfoSec #PatchNow
##📢 Microsoft corrige la zero-day RoguePlanet (CVE-2026-50656) dans Microsoft Defender
📝 ## 🗓️ Contexte
Source : BleepingComputer, publié le 9 juillet 2026.
📖 cyberveille : https://cyberveille.ch/posts/2026-07-09-microsoft-corrige-la-zero-day-rogueplanet-cve-2026-50656-dans-microsoft-defender/
🌐 source : https://www.bleepingcomputer.com/news/microsoft/microsoft-patches-rogueplanet-defender-zero-day-vulnerability/
#CVE_2026_50656 #IOC #Cyberveille
updated 2026-06-12T06:33:21
1 posts
3 repos
https://github.com/Diznev/CVE-2026-48611-EXPLOIT
https://github.com/wanmywan/CVE-2026-48611-phpBB
https://github.com/citruscitruscitruscitruscitrusci/CVE-2026-48611-poc
Here we go. Product updates - the June edition.
This month your coverage got a LOT wider.
80 new detections landed in the Network Scanner, including pre-auth RCE in Oracle PeopleSoft and an auth bypass in Palo Alto PAN-OS. If any are in your scope, you know where to look.
The rest of June:
🌐 Our research team found two authentication flaws in phpBB, one buried in the code for over a decade. There's a working PoC for each, and the Network Scanner now detects the most critical one - CVE-2026-48611 (9.4).
🤖 AI where it earns its place in the Website Scanner and URL Fuzzer: smarter logins, deeper crawling, fewer fake 200 pages.
🎯 the XSS Exploiter now gives you two delivery options: script tag or fetch plus eval.
🔌 API: a new info_text key on /scans tells you why a scan didn't start.
☁️ We're now on the Microsoft Azure Marketplace, so you can add us to your existing Azure billing.
Our colleague Stefan Perju walks you through all of it in the video.
Until next time: stay sharp. Stay human.
Everything that shipped can be found in the change-log: https://pentest-tools.com/change-log
The phpBB PoCs and full write-up: https://pentest-tools.com/research/phpbb-authentication-bypass
#offensivesecurity #vulnerabilitymanagement #infosec #penetrationtesting
##updated 2026-06-11T17:16:09
1 posts
⚠️ CVE-2026-48062: CodeIgniter4 RCE Risk
CodeIgniter4 has a critical ext_in upload validation bypass with a CVSS 9.8 severity score.
Under unsafe upload configurations, a malicious file may bypass extension checks and potentially lead to remote code execution.
FOFA reports 14,862 matching CodeIgniter results over the past year.
Risk conditions:
• User-controlled uploads
• ext_in used for validation
• Original filenames preserved
• Uploads stored in a web-accessible path
• Script execution allowed in that directory
Patch: upgrade to CodeIgniter4 4.7.3+
FOFA Query: app="CodeIgniter"
FOFA Link: https://en.fofa.info/result?qbase64=YXBwPSJDb2RlSWduaXRlciI=
Search results are not confirmed vulnerable hosts. Validate before taking action.
##updated 2026-06-10T00:31:59
1 posts
1 repos
A decade of #Spring SpEL CVEs: CVE-2026-41852, CVE-2026-41851, CVE-2026-41850, CVE-2026-41849, CVE-2026-41729, CVE-2026-41719, CVE-2026-41717, CVE-2025-41253, CVE-2024-38808, CVE-2023-20861, CVE-2022-22980, CVE-2022-22963, CVE-2022-22950, CVE-2022-22947, CVE-2018-1273, CVE-2018-1260, CVE-2017-8046, CVE-2016-4977. RCE, DoS, you name it
##updated 2026-06-10T00:31:59
1 posts
A decade of #Spring SpEL CVEs: CVE-2026-41852, CVE-2026-41851, CVE-2026-41850, CVE-2026-41849, CVE-2026-41729, CVE-2026-41719, CVE-2026-41717, CVE-2025-41253, CVE-2024-38808, CVE-2023-20861, CVE-2022-22980, CVE-2022-22963, CVE-2022-22950, CVE-2022-22947, CVE-2018-1273, CVE-2018-1260, CVE-2017-8046, CVE-2016-4977. RCE, DoS, you name it
##updated 2026-06-09T06:32:07
1 posts
A decade of #Spring SpEL CVEs: CVE-2026-41852, CVE-2026-41851, CVE-2026-41850, CVE-2026-41849, CVE-2026-41729, CVE-2026-41719, CVE-2026-41717, CVE-2025-41253, CVE-2024-38808, CVE-2023-20861, CVE-2022-22980, CVE-2022-22963, CVE-2022-22950, CVE-2022-22947, CVE-2018-1273, CVE-2018-1260, CVE-2017-8046, CVE-2016-4977. RCE, DoS, you name it
##updated 2026-06-09T06:32:06
1 posts
A decade of #Spring SpEL CVEs: CVE-2026-41852, CVE-2026-41851, CVE-2026-41850, CVE-2026-41849, CVE-2026-41729, CVE-2026-41719, CVE-2026-41717, CVE-2025-41253, CVE-2024-38808, CVE-2023-20861, CVE-2022-22980, CVE-2022-22963, CVE-2022-22950, CVE-2022-22947, CVE-2018-1273, CVE-2018-1260, CVE-2017-8046, CVE-2016-4977. RCE, DoS, you name it
##updated 2026-06-09T06:32:06
1 posts
A decade of #Spring SpEL CVEs: CVE-2026-41852, CVE-2026-41851, CVE-2026-41850, CVE-2026-41849, CVE-2026-41729, CVE-2026-41719, CVE-2026-41717, CVE-2025-41253, CVE-2024-38808, CVE-2023-20861, CVE-2022-22980, CVE-2022-22963, CVE-2022-22950, CVE-2022-22947, CVE-2018-1273, CVE-2018-1260, CVE-2017-8046, CVE-2016-4977. RCE, DoS, you name it
##updated 2026-06-05T16:24:43
1 posts
1 repos
CVE-2026-1207 is a Django SQL injection flaw (CVSS 8.3) in PostGIS raster lookups. Canada's CCCS says it is exploited in the wild. Patch now.
##updated 2026-06-01T18:32:31
1 posts
1 repos
Public PoC and full details are out for CVE-2026-31694, a Linux kernel FUSE page cache overflow that gives local privilege escalation to root. Patch now.
#LinuxKernel #FUSE #CVE202631694 #PrivilegeEscalation #InfoSec
##updated 2026-05-20T18:32:38
1 posts
Reporting a 19+ Years Hidden Linux Kernel Zero-Day for Google kernelCTF: CVE-2026-43456 https://lobste.rs/s/txjns0 #linux #networking #security
https://gmo-cybersecurity.com/blog/19-years-hidden-80000-rewarded-reporting-a-linux-kernel-zero-day-for-google-kernelctf/
updated 2026-05-13T13:52:11
1 posts
🚨 EUVD-2026-42946
📊 Score: 4.8/10 (CVSS v3.1)
📦 Product: grav
🏢 Vendor: getgrav
📅 Updated: 2026-07-10
📝 Grav is a file-based Web platform. Prior to 2.0.0-rc.9, Grav's incomplete fix for stored XSS through the Markdown media attribute action (CVE-2026-42841) leaves the sibling MediaObjectTrait::style method reachable through the same Markdown excerpt-action pipeli...
🔗 https://euvd.enisa.europa.eu/vulnerability/EUVD-2026-42946
##updated 2026-05-12T18:30:49
1 posts
A SharePoint remote code execution flaw (CVE-2026-33112) is now public with full details and PoC. A low-privilege user can run code. Patch now.
##updated 2026-05-06T18:31:37
1 posts
ERPNext Patches Critical Server-Side Template Injection Vulnerability
ERPNext addressed a critical server-side template injection vulnerability (CVE-2026-38431) that allows authenticated attackers to execute arbitrary SQL queries and gain full access to the application database.
**If you run ERPNext, update immediately to a version later than 15.103.1. Until you've updated, remove email template editing rights from every account that doesn't absolutely need them. After patching keep those rights limited to a few highly trusted admins only.**
#cybersecurity #infosec #advisory #vulnerability
https://beyondmachines.net/event_details/erpnext-patches-critical-server-side-template-injection-vulnerability-w-o-q-m-r/gD2P6Ple2L
updated 2026-02-20T21:48:11
1 posts
23 repos
https://github.com/rippsec/CVE-2025-49113-Roundcube-RCE
https://github.com/rasool13x/exploit-CVE-2025-49113
https://github.com/punitdarji/roundcube-cve-2025-49113
https://github.com/AC8999/CVE-2025-49113
https://github.com/Joelp03/CVE-2025-49113
https://github.com/CyberQuestor-infosec/CVE-2025-49113-Roundcube_1.6.10
https://github.com/hakaioffsec/CVE-2025-49113-exploit
https://github.com/Zuack55/Roundcube-1.6.10-Post-Auth-RCE-CVE-2025-49113-
https://github.com/BiiTts/Roundcube-CVE-2025-49113
https://github.com/mooder1/CVE-2025-49113
https://github.com/LeakForge/CVE-2025-49113
https://github.com/hackmelocal/CVE-2025-49113-Simulation
https://github.com/Zwique/CVE-2025-49113
https://github.com/l4f2s4/CVE-2025-49113_exploit_cookies
https://github.com/Ademking/CVE-2025-49113-nuclei-template
https://github.com/SteamPunk424/CVE-2025-49113-Roundcube-RCE-PHP
https://github.com/5kr1pt/Roundcube_CVE-2025-49113
https://github.com/fearsoff-org/CVE-2025-49113
https://github.com/rxerium/CVE-2025-49113
https://github.com/00xCanelo/CVE-2025-49113
https://github.com/ankitpandey383/roundcube-cve-2025-49113-lab
⚠️ CRITICAL: Suspected China-Aligned Hackers Exploit Roundcube Flaws Against Universities
China-aligned group UNK_MassTraction is actively exploiting critical Roundcube vulnerabilities (CVE-2024-42009, CVE-2025-49113) to target physics and engineering departments at U.S. and Canadian universities. Attackers are stealing credentials and deploying web shells for persistent access. If your…
##updated 2026-02-19T22:00:42
1 posts
A decade of #Spring SpEL CVEs: CVE-2026-41852, CVE-2026-41851, CVE-2026-41850, CVE-2026-41849, CVE-2026-41729, CVE-2026-41719, CVE-2026-41717, CVE-2025-41253, CVE-2024-38808, CVE-2023-20861, CVE-2022-22980, CVE-2022-22963, CVE-2022-22950, CVE-2022-22947, CVE-2018-1273, CVE-2018-1260, CVE-2017-8046, CVE-2016-4977. RCE, DoS, you name it
##updated 2025-11-05T20:12:46
3 posts
27 repos
https://github.com/0-d3y/langflow-rce-exploit
https://github.com/PuddinCat/CVE-2025-3248-POC
https://github.com/drackyjr/cve-2025-3248-exploit
https://github.com/dennisec/Mass-CVE-2025-3248
https://github.com/EQSTLab/CVE-2025-3248
https://github.com/bambooqj/cve-2025-3248
https://github.com/ill-deed/Langflow-CVE-2025-3248-Multi-target
https://github.com/vigilante-1337/CVE-2025-3248
https://github.com/Praison001/CVE-2025-3248
https://github.com/dennisec/CVE-2025-3248
https://github.com/Vip3rLi0n/CVE-2025-3248
https://github.com/Kiraly07/Demo_CVE-2025-3248
https://github.com/b0ySie7e/CVE-2025-3248-POC
https://github.com/verylazytech/CVE-2025-3248
https://github.com/nebari-playground/langflow-cve-2025-3248
https://github.com/get-xor/coreweave-demo-2026-05
https://github.com/tiemio/RCE-CVE-2025-3248
https://github.com/min8282/CVE-2025-3248
https://github.com/xuemian168/CVE-2025-3248
https://github.com/imbas007/CVE-2025-3248
https://github.com/peiqiF4ck/WebFrameworkTools-5.5-enhance
https://github.com/wand3rlust/CVE-2025-3248
https://github.com/ynsmroztas/CVE-2025-3248-Langflow-RCE
https://github.com/zapstiko/CVE-2025-3248
https://github.com/12-test-12/CVE-2025-3248
Sysdig documented JADEPUFFER, the first agentic ransomware run end-to-end by an AI agent. It breached Langflow via CVE-2025-3248 and extorted a database.
#JADEPUFFER #AgenticRansomware #AI #Ransomware #Langflow #Sysdig #CyberSecurity #InfoSec
##CVE-2025-3248 - Changed to Known Ransomware Status
Langflow Missing Authentication VulnerabilityVendor: LangflowProduct: LangflowLangflow contains a missing authentication vulnerability in the /api/v1/validate/code endpoint that allows a remote, unauthenticated attacker to execute arbitrary code via crafted HTTP requests.Status changed from Unknown to Known for ransomware campaign usage.Flip detected on: July 07, 2026 at 15:00:35 UTCDate Addedhttps://nvd.nist.gov/vuln/detail/CVE-2025-3248
##⚠️ CRITICAL: Sysdig clocks first documented case of agentic ransomware
JadePuffer deployed the first documented end-to-end agentic ransomware attack in June 2026, using AI agents to autonomously conduct reconnaissance, steal credentials, move laterally, and encrypt systems. The attack exploited CVE-2025-3248 in Langflow and targeted MySQL and Alibaba Nacos instances.…
##updated 2025-10-22T19:18:03
1 posts
38 repos
https://github.com/kh4sh3i/Spring-CVE
https://github.com/SourM1lk/CVE-2022-22963-Exploit
https://github.com/Qualys/spring4scanwin
https://github.com/XuCcc/VulEnv
https://github.com/G01d3nW01f/CVE-2022-22963
https://github.com/west-wind/Spring4Shell-Detection
https://github.com/me2nuk/CVE-2022-22963
https://github.com/Kirill89/CVE-2022-22963-PoC
https://github.com/dinosn/CVE-2022-22963
https://github.com/k3rwin/spring-cloud-function-rce
https://github.com/WuliRuler/SBSCAN
https://github.com/hktalent/spring-spel-0day-poc
https://github.com/gunzf0x/CVE-2022-22963
https://github.com/darryk10/CVE-2022-22963
https://github.com/mebibite/springhound
https://github.com/SealPaPaPa/SpringCloudFunction-Research
https://github.com/twseptian/cve-2022-22963
https://github.com/cyberager/CVE-2022-22963
https://github.com/J0ey17/CVE-2022-22963_Reverse-Shell-Exploit
https://github.com/tpt11fb/SpringVulScan
https://github.com/jschauma/check-springshell
https://github.com/Mustafa1986/CVE-2022-22963
https://github.com/75ACOL/CVE-2022-22963
https://github.com/randallbanner/Spring-Cloud-Function-Vulnerability-CVE-2022-22963-RCE
https://github.com/jrbH4CK/CVE-2022-22963
https://github.com/stevemats/Spring0DayCoreExploit
https://github.com/xmqaq/CVE-2022-22963
https://github.com/puckiestyle/CVE-2022-22963
https://github.com/charis3306/CVE-2022-22963
https://github.com/AayushmanThapaMagar/CVE-2022-22963
https://github.com/iliass-dahman/CVE-2022-22963-POC
https://github.com/nikn0laty/RCE-in-Spring-Cloud-CVE-2022-22963
https://github.com/lemmyz4n3771/CVE-2022-22963-PoC
https://github.com/BearClaw96/CVE-2022-22963-Poc-Bearcules
https://github.com/Shayz614/CVE-2022-22963
https://github.com/viemsr/Spring_Cloud_Function_memshell
A decade of #Spring SpEL CVEs: CVE-2026-41852, CVE-2026-41851, CVE-2026-41850, CVE-2026-41849, CVE-2026-41729, CVE-2026-41719, CVE-2026-41717, CVE-2025-41253, CVE-2024-38808, CVE-2023-20861, CVE-2022-22980, CVE-2022-22963, CVE-2022-22950, CVE-2022-22947, CVE-2018-1273, CVE-2018-1260, CVE-2017-8046, CVE-2016-4977. RCE, DoS, you name it
##updated 2025-10-22T00:34:11
1 posts
7 repos
https://github.com/DaniTheHack3r/CVE-2024-42009-PoC
https://github.com/0xbassiouny1337/CVE-2024-42009
https://github.com/Shubhankargupta691/CVE-2024-42009
https://github.com/ZaidArif47/CVE-2024-42009
https://github.com/segunakinsoyinu/CVE-2024-42009-roundcube-xss
⚠️ CRITICAL: Suspected China-Aligned Hackers Exploit Roundcube Flaws Against Universities
China-aligned group UNK_MassTraction is actively exploiting critical Roundcube vulnerabilities (CVE-2024-42009, CVE-2025-49113) to target physics and engineering departments at U.S. and Canadian universities. Attackers are stealing credentials and deploying web shells for persistent access. If your…
##updated 2025-02-25T18:40:06
1 posts
A decade of #Spring SpEL CVEs: CVE-2026-41852, CVE-2026-41851, CVE-2026-41850, CVE-2026-41849, CVE-2026-41729, CVE-2026-41719, CVE-2026-41717, CVE-2025-41253, CVE-2024-38808, CVE-2023-20861, CVE-2022-22980, CVE-2022-22963, CVE-2022-22950, CVE-2022-22947, CVE-2018-1273, CVE-2018-1260, CVE-2017-8046, CVE-2016-4977. RCE, DoS, you name it
##updated 2024-05-14T17:55:42
1 posts
1 repos
https://github.com/shoucheng3/SpringSource__spring-security-oauth_CVE-2018-1260_2-3-2-RELEASE
A decade of #Spring SpEL CVEs: CVE-2026-41852, CVE-2026-41851, CVE-2026-41850, CVE-2026-41849, CVE-2026-41729, CVE-2026-41719, CVE-2026-41717, CVE-2025-41253, CVE-2024-38808, CVE-2023-20861, CVE-2022-22980, CVE-2022-22963, CVE-2022-22950, CVE-2022-22947, CVE-2018-1273, CVE-2018-1260, CVE-2017-8046, CVE-2016-4977. RCE, DoS, you name it
##updated 2024-05-14T17:39:04
1 posts
2 repos
A decade of #Spring SpEL CVEs: CVE-2026-41852, CVE-2026-41851, CVE-2026-41850, CVE-2026-41849, CVE-2026-41729, CVE-2026-41719, CVE-2026-41717, CVE-2025-41253, CVE-2024-38808, CVE-2023-20861, CVE-2022-22980, CVE-2022-22963, CVE-2022-22950, CVE-2022-22947, CVE-2018-1273, CVE-2018-1260, CVE-2017-8046, CVE-2016-4977. RCE, DoS, you name it
##updated 2024-04-03T18:30:55
1 posts
‼️ New Dark Web Informer Blog Post!
Title: Foxit PDF Reader RCE Flaw CVE-2024-30326 Highlights PDF Attack Surface
Link: https://darkwebinformer.com/foxit-pdf-reader-rce-flaw-cve-2024-30326-highlights-pdf-attack-surface/
##updated 2024-03-15T15:30:43
1 posts
A Linux kernel vulnerability (CVE-2024-26582) has a public PoC that turns a TLS use-after-free into a root shell. Details and exploit are out.
#Linux #KernelSecurity #CVE202426582 #UseAfterFree #CyberSecurity
##updated 2023-07-24T19:30:19
1 posts
69 repos
https://github.com/Tas9er/SpringCloudGatewayRCE
https://github.com/dingxiao77/-cve-2022-22947-
https://github.com/Enokiy/cve-2022-22947-spring-cloud-gateway
https://github.com/dbgee/CVE-2022-22947
https://github.com/skysliently/CVE-2022-22947-pb-ai
https://github.com/crowsec-edtech/CVE-2022-22947
https://github.com/darkb1rd/cve-2022-22947
https://github.com/kkx600/Burp_VulPscan
https://github.com/shoucheng3/spring-cloud__spring-cloud-gateway_CVE-2022-22947_3-0-6
https://github.com/XuCcc/VulEnv
https://github.com/SanderSchepers1993/CyberSec2026
https://github.com/sagaryadav8742/springcloudRCE
https://github.com/scopion/cve-2022-22947
https://github.com/fbion/CVE-2022-22947
https://github.com/MoCh3n/CVE-2022-22947-Spring-Cloud-Gateway-SpelRCE
https://github.com/SiJiDo/CVE-2022-22947
https://github.com/Sumitpathania03/CVE-2022-22947
https://github.com/aesm1p/CVE-2022-22947-POC-Reproduce
https://github.com/Vulnmachines/spring-cve-2022-22947
https://github.com/scopion/CVE-2022-22947-exp
https://github.com/Summer177/Spring-Cloud-Gateway-CVE-2022-22947
https://github.com/Nathaniel1025/CVE-2022-22947
https://github.com/WuliRuler/SBSCAN
https://github.com/sentryCyberSec/sentryCyberSec.github.io
https://github.com/twseptian/cve-2022-22947
https://github.com/Zh0um1/CVE-2022-22947
https://github.com/wjl110/Spring_CVE_2022_22947
https://github.com/cc3305/CVE-2022-22947
https://github.com/k3rwin/spring-cloud-gateway-rce
https://github.com/kmahyyg/CVE-2022-22947
https://github.com/whwlsfb/cve-2022-22947-godzilla-memshell
https://github.com/Wrin9/CVE-2022-22947
https://github.com/ciri3/spring-cloud-gateway-cve-2022-22947-report
https://github.com/Wrong-pixel/CVE-2022-22947-exp
https://github.com/tpt11fb/SpringVulScan
https://github.com/nanaao/CVE-2022-22947-POC
https://github.com/Vancomycin-g/CVE-2022-22947
https://github.com/superneilcn/SpringExploitGUI
https://github.com/SecNN/CVE-2022-22947_Rce_Exp
https://github.com/Arrnitage/CVE-2022-22947_exp
https://github.com/Le1a/CVE-2022-22947
https://github.com/4nNns/CVE-2022-22947
https://github.com/stayfoolish777/CVE-2022-22947-POC
https://github.com/22ke/CVE-2022-22947
https://github.com/hh-hunter/cve-2022-22947-docker
https://github.com/BerMalBerIst/CVE-2022-22947
https://github.com/viemsr/spring_cloud_gateway_memshell
https://github.com/PaoPaoLong-lab/Spring-CVE-2022-22947-
https://github.com/entr0pie/demo-cve-2022-22947
https://github.com/anansec/CVE-2022-22947_EXP
https://github.com/0730Nophone/CVE-2022-22947-
https://github.com/bysinks/CVE-2022-22947
https://github.com/talentsec/Spring-Cloud-Gateway-CVE-2022-22947
https://github.com/B0rn2d/Spring-Cloud-Gateway-Nacos
https://github.com/24-2021/EXP-POC
https://github.com/tangxiaofeng7/CVE-2022-22947-Spring-Cloud-Gateway
https://github.com/hunzi0/CVE-2022-22947-Rce_POC
https://github.com/0x7eTeam/CVE-2022-22947
https://github.com/qq87234770/CVE-2022-22947
https://github.com/Jun-5heng/CVE-2022-22947
https://github.com/lucksec/Spring-Cloud-Gateway-CVE-2022-22947
https://github.com/mrknow001/CVE-2022-22947
https://github.com/Bin4xin/bin4xin.github.io
https://github.com/YutuSec/SpEL
https://github.com/nu0l/cve-2022-22947
https://github.com/AabyssZG/SpringBoot-Scan
https://github.com/LY613313/CVE-2022-22947
A decade of #Spring SpEL CVEs: CVE-2026-41852, CVE-2026-41851, CVE-2026-41850, CVE-2026-41849, CVE-2026-41729, CVE-2026-41719, CVE-2026-41717, CVE-2025-41253, CVE-2024-38808, CVE-2023-20861, CVE-2022-22980, CVE-2022-22963, CVE-2022-22950, CVE-2022-22947, CVE-2018-1273, CVE-2018-1260, CVE-2017-8046, CVE-2016-4977. RCE, DoS, you name it
##updated 2023-02-02T05:01:22
1 posts
10 repos
https://github.com/FixYourFace/SpringBreakPoC
https://github.com/bkhablenko/CVE-2017-8046
https://github.com/cved-sources/cve-2017-8046
https://github.com/jkutner/spring-break-cve-2017-8046
https://github.com/sj/spring-data-rest-CVE-2017-8046
https://github.com/m3ssap0/spring-break_cve-2017-8046
https://github.com/guanjivip/CVE-2017-8046
https://github.com/jsotiro/VulnerableSpringDataRest
A decade of #Spring SpEL CVEs: CVE-2026-41852, CVE-2026-41851, CVE-2026-41850, CVE-2026-41849, CVE-2026-41729, CVE-2026-41719, CVE-2026-41717, CVE-2025-41253, CVE-2024-38808, CVE-2023-20861, CVE-2022-22980, CVE-2022-22963, CVE-2022-22950, CVE-2022-22947, CVE-2018-1273, CVE-2018-1260, CVE-2017-8046, CVE-2016-4977. RCE, DoS, you name it
##updated 2023-01-27T05:05:05
1 posts
8 repos
https://github.com/murataydemir/CVE-2022-22980
https://github.com/Vulnmachines/Spring_cve-2022-22980
https://github.com/Eliasdekiniweek/CVE-2022-22980
https://github.com/jweny/cve-2022-22980
https://github.com/kuron3k0/Spring-Data-Mongodb-Example
https://github.com/W01fh4cker/Serein
A decade of #Spring SpEL CVEs: CVE-2026-41852, CVE-2026-41851, CVE-2026-41850, CVE-2026-41849, CVE-2026-41729, CVE-2026-41719, CVE-2026-41717, CVE-2025-41253, CVE-2024-38808, CVE-2023-20861, CVE-2022-22980, CVE-2022-22963, CVE-2022-22950, CVE-2022-22947, CVE-2018-1273, CVE-2018-1260, CVE-2017-8046, CVE-2016-4977. RCE, DoS, you name it
##🚨 EUVD-2026-43005
📊 Score: 5.1/10 (CVSS v3.1)
📦 Product: FreeRDP
🏢 Vendor: FreeRDP
📅 Updated: 2026-07-10
📝 FreeRDP is a free implementation of the Remote Desktop Protocol. From 3.21.0 before 3.28.0, FreeRDP clients using the GFX pipeline contain an incomplete fix for CVE-2026-23530 in planar_decompress_plane_rle_only in libfreerdp/codec/planar.c, allowing a malic...
🔗 https://euvd.enisa.europa.eu/vulnerability/EUVD-2026-43005
##🟠 CVE-2026-55827 - High (7.5)
FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to 3.27.1, FreeRDP clients launched with the non-default /cache:codec:rfx option pass desktop stride and height to RemoteFX decoding for Cache Bitmap V3 data while allocating b...
🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-55827/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##🟠 CVE-2026-55827 - High (7.5)
FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to 3.27.1, FreeRDP clients launched with the non-default /cache:codec:rfx option pass desktop stride and height to RemoteFX decoding for Cache Bitmap V3 data while allocating b...
🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-55827/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##🟠 CVE-2026-54149 - High (8.8)
MaxKB is an open-source AI assistant for enterprise. Prior to 2.10.0-lts, MaxKB tool import functionality in apps/tools/serializers/tool.py and MCP referencing mode in apps/application/chat_pipeline/step/chat_step/impl/base_chat_step.py do not con...
🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-54149/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##🟠 CVE-2026-54149 - High (8.8)
MaxKB is an open-source AI assistant for enterprise. Prior to 2.10.0-lts, MaxKB tool import functionality in apps/tools/serializers/tool.py and MCP referencing mode in apps/application/chat_pipeline/step/chat_step/impl/base_chat_step.py do not con...
🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-54149/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##v4.01 of our Windows client is at https://cryptostorm.is/windows#widget
See attached for client-side fixes.
Servers were updated to OpenVPN 2.7.5 on the 2nd, and v4.01 bundles 2.7.5, so we're good on CVE-2026-12996, CVE-2026-13117, CVE-2026-12932, and CVE-2026-13698.
##v4.01 of our Windows client is at https://cryptostorm.is/windows#widget
See attached for client-side fixes.
Servers were updated to OpenVPN 2.7.5 on the 2nd, and v4.01 bundles 2.7.5, so we're good on CVE-2026-12996, CVE-2026-13117, CVE-2026-12932, and CVE-2026-13698.
##v4.01 of our Windows client is at https://cryptostorm.is/windows#widget
See attached for client-side fixes.
Servers were updated to OpenVPN 2.7.5 on the 2nd, and v4.01 bundles 2.7.5, so we're good on CVE-2026-12996, CVE-2026-13117, CVE-2026-12932, and CVE-2026-13698.
##5 posts
3 repos
https://github.com/kaleth4/CVE-2026-20896
Kibertámadók már 13 nappal a bejelentés után vizsgálják a Gitea Docker sebezhetőséget (CVE-2026-20896)
##⚠️ CRITICAL: Critical Gitea Flaw Under Active Exploitation, Researchers Warn
Critical vulnerability CVE-2026-20896 in Gitea's reverse-proxy authentication is under active exploitation. Attackers bypass authentication by spoofing a single HTTP header to gain unauthorized access to repositories and secrets. Gitea Docker images prior to version 1.26.3 are vulnerable due to def…
##CRITICAL: Gitea Docker (<1.26.3) is vulnerable to auth bypass (CVE-2026-20896) — attackers can access repos & secrets by spoofing a username header. Actively exploited! Patch to 1.26.3+ & restrict access now. https://radar.offseq.com/threat/critical-gitea-flaw-under-active-exploitation-rese-c58d67a324be5e40 #OffSeq #Gitea #Vuln #Infosec
##🚨 Critical Gitea flaw CVE-2026-20896 is being probed in the wild
Researchers warn that attackers are targeting a critical Gitea Docker image flaw that can allow authentication bypass with a single HTTP header.
The issue affects official Gitea Docker images up to 1.26.2 when reverse-proxy authentication is enabled.
The vulnerable default trusted any source IP as a reverse proxy, meaning an attacker who could reach the container’s HTTP port could spoof X-WEBAUTH-USER and impersonate a known or guessable user.
Gitea patched the issue in 1.26.3 / 1.26.4, and a public PoC/checker is now available.
Sysdig says the first in-the-wild probing was seen 13 days after disclosure.
Observed IP: 159[.]26[.]98[.]241
##Gitea Docker Images Vulnerable to Critical Authentication Bypass, Already Attacked
Gitea patched a critical authentication bypass vulnerability (CVE-2026-20896) in its Docker images that allows attackers to impersonate any user with a single HTTP header. The flaw is being exploited in the wild.
**If you self-host Gitea, first make sure it's isolated from the internet and reachable only from trusted networks, then update to version 1.26.3 or later ASAP. If you can't update immediately, edit your app.ini to change REVERSE_PROXY_TRUSTED_PROXIES from * to your actual reverse proxy's specific IP address, and rotate all credentials and secrets stored in your repositories.**
#cybersecurity #infosec #attack #activeexploit
https://beyondmachines.net/event_details/gitea-docker-images-vulnerable-to-critical-authentication-bypass-already-attacked-c-9-8-p-p/gD2P6Ple2L
🟠 CVE-2026-55604 - High (8.6)
DeepSeek MCP Server is an MCP server for DeepSeek V4. Starting in version 1.4.2 and prior to version 1.7.0, the process-global `SessionStore` accepts caller-supplied `session_id` values without binding them to any authenticated principal or transp...
🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-55604/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##🟠 CVE-2026-59834 - High (7.5)
SiYuan is an open-source personal knowledge management system. Prior to 3.7.1, the block search endpoint POST /api/search/fullTextSearchBlock concatenates attacker-controlled paths values into SQL predicates used by non-SQL search modes, allowing ...
🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-59834/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##A Roundcube zero-click XSS, CVE-2026-54433, lets an email run script with no click. Roundcube 1.7.2 also fixes a second stored XSS. Update now.
#Roundcube #XSS #ZeroClick #Webmail #StoredXSS #CyberSecurity #Vulnerability #InfoSec
##OPNsense root RCE flaws are public with PoC code. CVE-2026-57155 (9.9) chains an arbitrary file write to root. Patch 26.1.11 or 26.4.1p1 now.
#OPNsense #RootRCE #RCE #FirewallSecurity #CyberSecurity #Vulnerability #InfoSec #PoC
##OPNsense Patches Critical Root Vulnerability in GeoIP Alias Importer
OPNsense released critical security updates to fix a root remote code execution vulnerability (CVE-2026-57155) in its GeoIP alias importer. The update also patches several other flaws including XPath injection and stored cross-site scripting.
**Make sure your OPNsense firewall's management interface is isolated from the internet and reachable only from trusted networks, since even a low-level user with alias-editing rights can exploit this flaw. Update to OPNsense 26.1.11 or 26.4.1p1 ASAP. If you can't update immediately, lock down management access and limit alias-editing permissions to trusted administrators only.**
#cybersecurity #infosec #advisory #vulnerability
https://beyondmachines.net/event_details/opnsense-patches-critical-root-vulnerability-in-geoip-alias-importer-3-g-d-c-z/gD2P6Ple2L
🟠 CVE-2026-59723 - High (8.8)
Cline is an autonomous coding agent as an SDK, IDE extension, or CLI assistant. Prior to 3.0.30, the Cline Hub dashboard server launched by the cline dashboard command accepts WebSocket connections on the /browser endpoint without validating the O...
🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-59723/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##The high-severity Attested TLS vulnerability CVE-2026-33697 allows attackers to relay traffic and compromise secure cloud environments.
#AttestedTLS #CVE202633697 #CloudSecurity #Cryptography #Vulnerability
##A Network UPS Tools RCE (CVE-2026-54161) lets a malicious upsd trigger upsmon command injection as root. No patch exists yet, so mitigate now.
#NetworkUPSTools #NUT #upsmon #CommandInjection #RCE #CVE202654161 #CyberSecurity
https://securityonline.info/network-ups-tools-rce/?utm_source=mastodon&utm_medium=jetpack_social
##CVE-2026-14380 | CRITICAL eval injection in HMBRAND DBI <1.650 lets attackers execute arbitrary Perl code via Profile. Remote code exec possible with exposed DBI::Gofer/ProxyServer. Restrict access & monitor for patches. https://radar.offseq.com/threat/cve-2026-14380-cwe-95-improper-neutralization-of-d-632b564b1d788778 #OffSeq #Perl #Security
##CVE-2026-54234 - High-severity DoS in vLLM. Multi-request speculative decoding triggers out-of-vocabulary token crash. CVSS 7.5. No patch yet - update to v0.24.0+ immediately. #CVE #vLLM #infosec
##A critical IBM Power HMC vulnerability (CVE-2026-12943) allows unauthenticated attackers to execute commands. Patch your systems immediately.
#IBMPowerHMC #Vulnerability #CyberSecurity #CVE202612943 #Infosec
##🟠 CVE-2026-34152 - High (8.8)
Coolify is an open-source and self-hostable tool for managing servers, applications, and databases. Prior to 4.0.0-beta.471, pre-deployment and post-deployment commands are single-quote escaped but then sent through SSH heredoc transport that pres...
🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-34152/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##🟠 CVE-2026-42143 - High (8.8)
Coolify is an open-source and self-hostable tool for managing servers, applications, and databases. Prior to 4.0.0-beta.471, user-controlled persistent volume names are interpolated into shell commands executed on managed servers without escaping ...
🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-42143/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##🟠 CVE-2026-34158 - High (8.8)
Coolify is an open-source and self-hostable tool for managing servers, applications, and databases. Prior to 4.0.0-beta.469, the executeInDocker() helper wraps user-controlled commands in single quotes without escaping embedded single quotes. Atta...
🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-34158/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##CVE-2026-34048 (CRITICAL, CVSS 9.9): improper auth in coollabsio Coolify (<4.0.0-beta.471) lets low-priv users execute commands via terminal websockets. Update to 4.0.0-beta.471 ASAP. https://radar.offseq.com/threat/cve-2026-34048-cwe-285-improper-authorization-in-c-485c49c27b765944 #OffSeq #Coolify #CVE202634048 #infosec
##CVE-2026-34037: CRITICAL auth bypass in coollabsio coolify (=4.0.0-beta.464). Privileged users can clone resources into other teams, risking cross-tenant data exposure. Fix: upgrade to 4.0.0-beta.464. https://radar.offseq.com/threat/cve-2026-34037-cwe-639-authorization-bypass-throug-4bc62cd3de2ba764 #OffSeq #Vuln #coolify #Infosec
##