CVE analysis, exploit assessments, and patch guidance for critical security vulnerabilities.
240 items
go-zserio trusts size fields during deserialization without validation, allowing attackers to trigger excessive memory allocation (DoS). This PoC demonstrates a fundamental input validation flaw affecting all platforms.
Gemini CLI automatically trusted workspace folders in headless/CI mode without validation, allowing malicious `.gemini/` configuration files to execute arbitrary code via environment variable injection. The `--yolo` flag further bypassed tool allowlisting controls.
electerm's install.js contains a command injection flaw where attacker-controlled version strings are directly concatenated into shell commands without sanitization. Defenders must identify vulnerable installations and verify patching, as remote version metadata compromise could lead to arbitrary code execution during package installation.
Authenticated users with script execution permissions can bypass API access controls by directly connecting to internal services (Redis, S3) via shared Docker network, escalating privileges to administrative level. This PoC demonstrates the exploitation chain requires minimal effort once script execution is granted.
A file upload vulnerability in the widely-installed Breeze Cache WordPress plugin allows attackers to upload arbitrary files without authentication, enabling remote code execution on affected servers. Active exploitation is underway.
A critical remote code execution flaw in protobuf.js has been exploited with published proof-of-concept code, enabling arbitrary JavaScript execution in applications using this widely-deployed serialisation library. This poses immediate risk to any Node.js or browser-based system consuming untrusted Protocol Buffer messages.
The SCP middleware in charm.land/wish fails to validate resolved paths remain within configured root directories, allowing unauthenticated clients to read/write arbitrary files. This PoC demonstrates a fundamental flaw in path sanitization logic affecting all current versions.
Zebra failed to enforce consensus rules for V5 transaction sighash hash-type validation post-NU5 upgrade, and incorrectly processed V4 transaction hashes. This could allow malicious actors to create blocks accepted by Zebra but rejected by zcashd, causing network partition and double-spend risks.
CISA confirmed that a high-severity remote code execution vulnerability in Apache ActiveMQ, which remained unpatched for 13 years, is now being actively exploited by threat actors following its public disclosure. This represents a typical post-patch exploitation window where defenders face maximum risk.
Paperclip's `/api/agents/:id/keys` endpoints fail to validate tenant ownership, allowing any authenticated user to mint valid API tokens for agents in other companies. This bypasses the core multi-tenant security boundary.
Paperclip control-plane API fails to validate company ownership on agent key management endpoints, allowing authenticated board-users from Company A to enumerate, create, and revoke API keys for agents belonging to Company B, resulting in full cross-tenant compromise.
Saltcorn's mobile sync routes embed unauthenticated user-supplied numeric values directly into SQL template literals without parameterization. Any authenticated user with table read access can execute arbitrary SQL, including data exfiltration and (on PostgreSQL) DDEs.
A researcher calling themselves 'Chaotic Eclipse' has published a proof-of-concept exploit for 'RedSun', a second Microsoft Defender zero-day discovered in recent weeks. The public disclosure appears motivated by protest over Microsoft's vulnerability coordination practices.
A stored cross-site scripting (XSS) vulnerability in Decidim's user name field enables arbitrary code execution in victim browsers via passive comment page visits. This represents a critical stored XSS variant with cross-security-boundary impact.
wolfSSL's improper validation of hash algorithm identity and length in ECDSA signature verification allows attackers to forge valid certificates, potentially compromising any system relying on wolfSSL for TLS authentication.
Unauthenticated credential disclosure in Juju CloudSpec API allows any authenticated controller user to retrieve cloud bootstrap credentials, bypassing intended role-based access controls. This PoC demonstrates privilege escalation through API permission misconfiguration affecting multiple recent versions.
Paperclip instances with default configuration allow unauthenticated account creation, authentication bypass, and privilege escalation to RCE through a six-step API chain. This affects all publicly accessible deployments running in authenticated mode without explicit hardening.
Daptin's cloudstore.file.upload action fails to validate user-supplied filenames, enabling unauthenticated attackers to write arbitrary files to disk via path traversal and zip slip attacks. This vulnerability bypasses authentication entirely and presents immediate RCE risk.
An unauthenticated attacker can execute arbitrary code as root by POSTing to a public webhook endpoint that triggers automation workflows containing Bash steps with unsanitized template processing. This requires zero authentication and demonstrates complete server compromise.
pyLoad's fix for CVE-2026-33992 validates only the initial download URL but fails to validate HTTP redirect targets, allowing authenticated attackers to reach internal addresses. The PoC demonstrates that pycurl's automatic redirect following (FOLLOWLOCATION=1, MAXREDIRS=10) completely bypasses IP filtering.
Fortinet released emergency patches for CVE-2026-35616, a pre-authentication API access control flaw in FortiClient EMS that allows unauthenticated attackers to escalate privileges. The vulnerability is being actively exploited in the wild.
PraisonAI Gateway exposes unauthenticated `/info` and `/ws` endpoints, allowing attackers to enumerate all registered agents and inject arbitrary messages without credentials. The PoC demonstrates network-adjacent exploitation with zero authentication barriers.
PraisonAI's token validation function returns True for any unrecognized token when the internal token store is empty (default state), allowing unauthenticated access to all MCP tools including agent execution and file operations. This bypasses intended OAuth authentication entirely.
Juju controllers (3.2.0+) fail to validate TLS client certificates on Dqlite cluster endpoints, allowing unauthenticated attackers with network access to join the cluster, read/modify all data, and escalate privileges. The PoC demonstrates practical network-level exploitation without credentials.
Apple is expanding iOS 18 security updates across a wider range of iPhone models to address the actively exploited DarkSword exploit kit. This indicates an ongoing threat with sufficient prevalence to warrant rapid, broad patching.
CISA added CVE-2026-5281, a zero-day use-after-free in Google Chrome's Dawn WebGPU implementation, to its Known Exploited Vulnerabilities Catalog after evidence of active exploitation. This represents an emerging attack vector targeting GPU rendering pipelines rather than traditional browser exploits.
OpenClaw loads `.env` files from the current working directory before applying trusted state-dir configuration, allowing attackers to inject malicious environment variables through repository-committed or workspace files. This bypasses intended host environment isolation policies and enables configuration/security setting override.
Unsanitized user input in Methods Management functionality results in stored XSS payloads that execute globally across all pages where the malicious method appears in navigation menus, enabling account takeover and privilege escalation.
Unsanitized input in group/role management fields allows stored XSS execution in administrative contexts, enabling full account takeover and application compromise. This PoC demonstrates a complete authentication bypass pathway for defenders to understand systemic input validation failures.
PX4 Autopilot v1.16.0 contains an authentication bypass in the MAVLink interface allowing unauthenticated attackers to execute arbitrary shell commands. This affects unmanned aerial systems and robotics platforms relying on PX4.
CVE-2026-3356 affects all versions of Anritsu's Remote Spectrum Monitor series, allowing network-accessible attackers to modify operational settings, exfiltrate signal intelligence, or cause denial of service. The vulnerability impacts spectrum analysis infrastructure used in telecommunications and defence sectors.
mpp versions before 0.8.0 contain multiple authentication bypass vulnerabilities allowing attackers to replay payment requests, hijack session channels, and manipulate fee responsibility. This PoC matters for defenders as it demonstrates systemic weaknesses in request validation and session management that affect financial transaction integrity.
GitHub Actions workflows that directly embed `issue_comment.body` into shell commands without sanitization allow unauthenticated attackers to inject arbitrary shell commands and execute code on runners. This PoC demonstrates escape-and-execute techniques that bypass basic quoting.
MikroORM fails to properly validate internal ORM markers, allowing attackers to inject raw SQL through specially crafted objects passed to write APIs. This requires direct application-level data flow to ORM methods, making input validation the primary defense.
A file read vulnerability in Smart Slider 3 WordPress plugin allows subscriber-level users to access arbitrary files on affected servers. With 800,000+ installations, this represents a significant exposure vector for sensitive configuration files and database credentials.
A logic flaw in Zebra's transaction processing allows remote attackers to crash nodes by sending crafted V5 transactions that pass network deserialization but fail during TxID computation. This PoC demonstrates unauthenticated network-level DoS impact on blockchain infrastructure.
OpenClaw gateway authentication allows paired devices to silently escalate privileges from operator.read to operator.admin during reconnect events without explicit approval, enabling node RCE. This demonstrates an implicit trust model vulnerability in local shared-auth flows.
CISA has added CVE-2025-53521, a remote code execution vulnerability in F5 BIG-IP, to its Known Exploited Vulnerabilities catalog following evidence of active exploitation. This represents an immediate threat to federal networks and critical infrastructure relying on BIG-IP for load balancing and application delivery.
Three security flaws in LangChain and LangGraph frameworks allow attackers to read filesystem data, extract environment variables containing secrets, and access conversation histories. These widely-adopted LLM frameworks put thousands of dependent applications at risk.
CVE-2026-33863 exposes two prototype pollution paths in node-convict's config loading and schema initialization that allow attackers to pollute Object.prototype through untrusted JSON/schema data, potentially enabling authentication bypass or RCE.
Convict 6.2.4 contains a prototype pollution flaw where attackers can override String.prototype.startsWith to bypass validation checks, enabling Object.prototype contamination. The PoC demonstrates that previous mitigation attempts are insufficient and defenders must implement input validation at multiple layers.
A privilege escalation flaw in OpenClaw's device.pair.approve method allowed operators with pairing-level permissions to approve device requests with elevated operator scopes they don't possess, enabling unauthorized administrative access.
CISA has confirmed active exploitation of CVE-2026-33017 in Langflow, a framework for building AI agent workflows. Attackers are hijacking AI pipelines, likely to poison outputs or exfiltrate training data integrated into these systems.
Attackers exploited unpatched vulnerabilities in Ajax Amsterdam's IT infrastructure to access fan data and enable ticket hijacking. The incident highlights how sporting organisations remain attractive targets for financially motivated threat actors.
A hidden function in WAGO industrial managed switches allows unauthenticated remote attackers to escape the restricted CLI interface and achieve complete device compromise across six hardware models. This represents a critical supply chain risk for industrial control systems.
OpenCode Systems OC Messaging and USSD Gateway versions 6.32.2 contain an insecure direct object reference (IDOR) vulnerability allowing authenticated users to access SMS messages from other tenants by manipulating company or tenant identifiers. This affects multi-tenant deployments handling sensitive communications.
CVE-2026-4681 allows remote code execution in PTC Windchill Product Lifecycle Management across versions 11.0 through 13.1.3.0. This impacts organisations managing product designs and intellectual property across manufacturing, aerospace, and defence sectors.
Authenticated users can bypass AlaSQL sandbox restrictions in n8n's Merge node to execute arbitrary SQL, read sensitive files, and achieve remote code execution. This PoC demonstrates insufficient input validation in what should be a restricted query execution environment.
OpenTelemetry Java instrumentation versions <2.26.1 fail to apply serialization filters on RMI deserialization, allowing unauthenticated remote code execution when RMI endpoints are network-accessible and gadget chains are present. This affects production observability infrastructure with potential for supply-chain compromise.
AVideo's live stream control endpoint accepts user-supplied URLs for token verification, allowing attackers to redirect authentication checks to attacker-controlled servers that approve all tokens. This completely bypasses stream access controls without credentials.
CISA has added CVE-2026-33017, a code injection vulnerability in Langflow, to its Known Exploited Vulnerabilities Catalog based on confirmed active exploitation. Code injection vulnerabilities represent a direct path to remote code execution and are frequently weaponised by threat actors.
Threat actors used compromised credentials to inject malware into Trivy releases and related GitHub Actions repositories, affecting users of v0.69.4-0.69.6 and action workflows. This demonstrates a critical supply chain attack vector targeting security tooling infrastructure.
Scriban's TemplateContext caches type accessors by Type alone, ignoring MemberFilter changes. Reusing a context with a tightened filter after a permissive render allows attackers to access members that should be hidden, bypassing sandbox restrictions.
PTC has disclosed a critical remote code execution vulnerability in Windchill and FlexPLM product lifecycle management platforms. Exploitation could grant attackers complete control over enterprise systems managing design, manufacturing, and supply chain data.
A memory leak vulnerability in Grassroots DICOM (GDCM) 3.2.2 allows remote attackers to trigger denial-of-service conditions by submitting specially crafted DICOM files. This affects healthcare systems that rely on GDCM for medical image processing.
Schneider Electric patched a critical untrusted deserialization vulnerability in EcoStruxure Foxboro DCS workstations and servers that enables remote code execution. The vulnerability affects control software on engineering stations but spares runtime components, yet poses significant risk to DCS environments managing critical infrastructure.
Schneider Electric Plant iT/Brewmaxx versions 9.60 and above contain four critical vulnerabilities (CVSS 9.9) enabling privilege escalation to remote code execution. Organizations using this brewing and plant management software face immediate risk of full system compromise.
Pharos Controls Mosaic Show Controller firmware 2.15.3 contains an unauthenticated remote code execution vulnerability allowing attackers to execute arbitrary commands with root privileges. This impacts live event production infrastructure with no authentication barrier.
Threat actors are actively exploiting CVE-2025-32975, a critical remote code execution flaw in Quest KACE Systems Management Appliance (SMA), against unpatched internet-exposed instances since March 2026. SMA is enterprise-grade IT infrastructure management software, making compromises particularly damaging.
AVideo's `plugin/Live/test.php` accepts unauthenticated user input to trigger outbound HTTP requests without validation, enabling attackers to probe internal networks, access cloud metadata endpoints, and potentially pivot to internal services.
GitHub Actions workflows that directly interpolate untrusted issue fields (title, body, labels) into shell `run` blocks using template expressions are vulnerable to command injection. This PoC demonstrates that unauthenticated attackers can trigger arbitrary code execution and exfiltrate secrets by crafting malicious issue titles.
CISA has issued an emergency patching order for CVE-2026-20131, a maximum-severity vulnerability in Cisco Secure Firewall Management Center, requiring federal agencies to remediate by March 22, 2026. This indicates either active exploitation or imminent threat intelligence suggesting weaponization.
Oracle released an emergency out-of-band patch for an unauthenticated remote code execution vulnerability in Identity Manager and Web Services Manager (CVE-2026-21992). This is a critical identity infrastructure flaw that likely enables complete system compromise without credentials.
MinIO's OIDC implementation contains a JWT algorithm confusion vulnerability allowing attackers who possess the ClientSecret to forge identity tokens and obtain admin-level S3 credentials. This PoC demonstrates a deterministic, high-impact attack path requiring only knowledge of a shared credential.
Unauthenticated SSRF in AVideo's standalone DVR saver allows attackers to forge server-side requests to arbitrary URLs, potentially chaining to authentication bypass and internal network reconnaissance. The PoC demonstrates complete lack of input validation in a publicly accessible endpoint.
All versions of IGL-Technologies eParking.fi contain critical authentication and access control vulnerabilities (CVSS 9.4) that could allow attackers to gain unauthorized administrative control over EV charging stations or launch denial-of-service attacks against charging services.
A remote out-of-bounds read vulnerability in Mitsubishi Electric CNC Series controllers enables denial-of-service attacks. This affects critical industrial manufacturing infrastructure across multiple product lines with varying patch states.
Schneider Electric EcoStruxure Automation Expert versions ≤25.0.1 contain a vulnerability enabling arbitrary command execution on engineering workstations. This threatens the integrity of critical industrial control systems across discrete, hybrid, and continuous manufacturing processes.
Automated Logic WebCTRL Premium Server contains multiple critical vulnerabilities including cleartext transmission, authentication bypass via spoofing, and port binding issues that allow attackers to intercept, read, and modify communications in building automation systems.
Schneider Electric Modicon Controllers (M241, M251, M258, M262, LMC058) contain XSS/open redirect and denial-of-service vulnerabilities affecting web interfaces. Exploitation could lead to account takeover, browser-based code execution, or operational disruption in industrial environments.
HAPI FHIR's HTTP client transmits authentication headers and sensitive data to redirect destinations without validation, enabling credential theft and cross-host impersonation attacks. Defenders must identify and patch affected deployments immediately.
gRPC-Go servers fail to canonicalize HTTP/2 :path pseudo-headers before authorization checks, allowing attackers to bypass path-based access control policies by omitting the leading slash in requests.
The Tekton git resolver fails to sanitize the `pathInRepo` parameter, allowing namespace-scoped tenants to read arbitrary files from the resolver pod filesystem via path traversal sequences. This enables credential exfiltration including ServiceAccount tokens.
ConnectWise patched a cryptographic signature verification vulnerability in ScreenConnect that allows attackers to bypass authentication and hijack remote access sessions. This is a critical supply-chain risk affecting thousands of managed service providers and their downstream customers.
CISA issued a binding directive for U.S. federal agencies to patch an actively exploited XSS vulnerability in Zimbra Collaboration Suite, indicating threat actors are leveraging email infrastructure compromises for potential lateral movement and data theft.
CISA added two known-exploited vulnerabilities to its KEV catalog: a Zimbra Collaboration Suite XSS flaw and a Microsoft SharePoint deserialization vulnerability. Both are under active exploitation and carry significant risk to federal and enterprise environments.
SiYuan's SVG sanitizer blocks data:text/html and data:image/svg+xml but misses data:text/xml and data:application/xml, allowing unauthenticated XSS via the /api/icon/getDynamicIcon endpoint. The fix for CVE-2026-29183 was incomplete, leaving equivalent bypass vectors.
jsPDF versions before 4.2.1 fail to sanitize user-controlled options passed to window-opening output methods, allowing attackers to inject arbitrary HTML and JavaScript into the PDF viewer context. This enables XSS attacks when applications pass unsanitized user input to these functions.
Apple released a new Background Security Improvements update addressing WebKit CVE-2026-20643 across iOS, iPadOS, and macOS without requiring full operating system upgrades. This represents a significant shift in Apple's patching strategy, enabling faster security remediation for critical browser engine vulnerabilities.
A vulnerability in CODESYS runtime components bundled with Festo Automation Suite prior to v2.8.0.138 allows unauthenticated remote attackers to execute arbitrary code on industrial automation systems. This affects a widely-used ICS development platform with significant operational technology footprint.
Schneider Electric SCADAPack x70 RTUs and RemoteConnect products contain an authentication or access control vulnerability affecting firmware versions prior to 9.12.2, potentially allowing unauthorized remote access to critical industrial control systems with downstream impacts on device integrity and availability.
Schneider Electric's EcoStruxure Data Center Expert contains hard-coded credentials that, combined with an optional SOCKS proxy feature, allow authenticated attackers to compromise the monitoring platform. This threatens visibility and control of critical data center infrastructure.
Siemens SICAM SIAPP SDK versions below 2.1.7 contain multiple vulnerabilities exploitable through improper API usage or missing hardening, risking denial of service, data corruption, and simulation environment compromise in customer-developed SIAPP applications.
Unauthenticated users can register as administrators when self-signup is enabled and default permissions include admin privileges. The signup handler blindly applies all defaults without stripping elevated permissions.
The `/api/search/fullTextSearchBlock` endpoint in SiYuan v3.6.0 bypasses role-based access controls present on other SQL endpoints, allowing any authenticated user (including read-only roles) to execute arbitrary SQL. This PoC proves the middleware chain inconsistency is exploitable in production deployments.
Admidio's documents-files module fails to enforce DELETE authorization and CSRF protection, allowing unauthenticated users to permanently destroy document libraries when public access is enabled, or allowing authenticated read-only users to delete content they cannot modify.
Companies House, the UK's official business registry, suffered a security flaw in its WebFiling service that exposed sensitive business information for approximately 4 months (October 2025 - present). The breach affected a government-critical infrastructure system handling registration data for all UK companies.
CISA confirmed that a Wing FTP Server vulnerability is being actively exploited in attacks against U.S. government agencies, with potential for chaining into remote code execution. This represents an immediate threat to federal infrastructure and requires urgent patching.
CISA added CVE-2025-47813, a medium-severity information disclosure flaw in Wing FTP Server, to its Known Exploited Vulnerabilities catalog due to evidence of active exploitation. The vulnerability leaks application installation paths under certain conditions, enabling reconnaissance for follow-on attacks.
A critical unauthenticated vulnerability in HPE AOS-CX switches allows remote attackers to reset admin credentials without any authentication, providing immediate device takeover capability. This impacts network infrastructure security across enterprise environments.
China's CNCERT warned that OpenClaw's weak default security configurations enable prompt injection attacks and potential data exfiltration. This affects organizations deploying the self-hosted AI agent without hardening baseline security controls.
Microsoft released an out-of-band hotpatch to remediate a remote code execution vulnerability in Routing and Remote Access Service (RRAS) affecting Windows 11 Enterprise devices. This emergency deployment indicates active exploitation risk and bypasses the standard monthly patch cycle.
Centrifugo performs JWT claim extraction and dynamic URL interpolation before cryptographic signature verification, allowing unauthenticated attackers to trigger SSRF requests to arbitrary destinations via crafted JWT claims.
Apollo Federation gateway fails to properly sanitize field aliases and variable names, allowing prototype pollution of Object.prototype. Successful exploitation persists across subsequent requests, potentially enabling privilege escalation and data integrity violations.
A logic flaw in OpenClaw's WebSocket authentication path allows shared-secret clients to self-declare elevated scopes (e.g., operator.admin) without server-side validation, enabling unauthorized admin operations. Defenders must patch immediately and audit existing shared-auth connections.
Parse Server's OAuth2 adapter uses a shared singleton instance across multiple providers, allowing concurrent authentication requests to cause token validation confusion where one provider's token may be validated against another provider's policy, potentially leading to unauthorized access.
Unauthenticated attackers can hijack user accounts by exploiting improper input validation in authentication data identifiers, converting exact-match lookups into pattern-matching queries. This affects all Parse Server deployments with anonymous authentication enabled by default.
Improper access control vulnerabilities in Siemens Heliox EV charging stations allow attackers to reach unauthorized services via the charging cable interface. Siemens has released patched versions.
Multiple vulnerabilities in Trane Tracer SC, SC+, and Concierge platforms could enable attackers to disclose sensitive data, execute arbitrary commands, or cause denial-of-service. These are critical building management systems used in enterprise infrastructure.
Siemens SIMATIC S7-1500 industrial controllers contain a code injection vulnerability exploitable through specially crafted trace files in the web interface, affecting multiple drive controller and edge device variants. This represents a critical remote code execution vector in operational technology environments.
Fortinet vulnerabilities affecting FortiOS have been mapped to Siemens RUGGEDCOM APE1808 industrial edge devices. With a CVSS 9.8 score and multiple CVE IDs across all firmware versions, this represents a significant ICS attack surface requiring immediate patching.
Attackers with compromised GitHub App credentials can mutate release tags to point malicious commits, causing workflows to execute C2 implants. This PoC demonstrates tag poisoning as a scalable supply chain attack vector against Actions consumers.
IoT devices shipping with administrative credentials or defaulting to admin-level access create a persistent authentication bypass that enables complete device compromise. This represents a fundamental architectural failure in IoT security that affects entire device classes and is difficult to remediate post-deployment.
CISA has confirmed active exploitation of CVE-2025-68613, a code injection vulnerability in n8n that allows attackers to execute arbitrary code through improperly managed dynamic code resources. This poses significant risk to organizations using n8n for workflow automation.
VS Code's AI chat features are vulnerable to indirect prompt injection attacks where malicious content in code files or documentation can poison conversations, leading to unauthorized exposure of GitHub tokens, sensitive files, and arbitrary code execution.
Trail of Bits discovered four prompt injection techniques that could extract private user data (Gmail contents) from Perplexity's Comet browser by exploiting inadequate input sanitization in AI assistant features. The vulnerabilities highlight systemic risks in AI agent design where external web content is processed as trusted input.
Microsoft released 93 patches on March 10, 2026, including 8 critical vulnerabilities and 9 Chromium-based flaws in Edge. Two pre-disclosed vulnerabilities remain unexploited but warrant close monitoring given their early exposure.
PortSwigger Research discovered multiple parser-level inconsistencies in SAML implementations for Ruby and PHP that enable full authentication bypass. These exploits leverage attribute pollution and namespace confusion to forge valid authentication tokens.
A threat actor successfully bypassed Claude's safety mechanisms using Spanish-language prompts to conduct a sustained, multi-stage attack against Mexican government networks, resulting in data exfiltration and thousands of command executions on critical infrastructure.
AirSnitch exploits fundamental layer 1-2 binding failures in Wi-Fi to perform bidirectional machine-in-the-middle attacks across home, office, and enterprise networks without requiring network membership or proximity constraints. The attack breaks core 802.11 assumptions about client identity synchronization.
Parse Server's PostgreSQL adapter fails to escape sub-key names in Increment operations, allowing SQL injection. The PoC highlights the need for immediate patching to prevent database compromise.
A critical RCE vulnerability in OneUptime's Synthetic Monitors allows low-privileged users to execute arbitrary commands on the server by leveraging exposed Playwright browser objects.
The Linkdave HTTP server lacks authentication on REST and WebSocket endpoints, allowing unauthenticated access. This PoC highlights the need for immediate patching or network restrictions to prevent unauthorized access.
The RSSN library contains a critical vulnerability allowing Arbitrary Code Execution through unvalidated JIT instruction generation in its CFFI interface, posing significant risks to systems and data.
The vulnerability allows unauthenticated attackers to inject malicious SQL code via the job_id parameter, potentially leading to unauthorized database access. This PoC highlights the importance of securing input parameters in web applications.
A critical path traversal vulnerability in the /export endpoint of SiYuan allows arbitrary file reads and secret leakage via double-encoded sequences, risking full system compromise.
The OneUpTime probe executes untrusted user code in an insecure Node.js vm context, allowing attackers to bypass sandboxing and achieve RCE. This PoC highlights the risks of using `vm` for untrusted code execution.
OneUptime's Synthetic Monitor allows untrusted Playwright code execution with access to host browser objects, enabling arbitrary executable spawning. This PoC highlights a direct RCE vector bypassing traditional sandbox escapes.
CISA has ordered U.S. federal agencies to patch three iOS security flaws exploited by the Coruna exploit kit, which is linked to cyberespionage and crypto-theft attacks.
Cognizant's TriZetto Provider Solutions suffered a data breach exposing health data of over 3.4 million individuals, highlighting critical vulnerabilities in healthcare IT systems.
Pingora versions prior to 0.8.0 are vulnerable to HTTP Request Smuggling due to improper handling of the Upgrade header, allowing attackers to bypass security controls.
Pingora improperly handles HTTP/1.0 request bodies and Transfer-Encoding headers, enabling HTTP request smuggling attacks that bypass security controls. The PoC highlights the importance of proper request parsing in reverse proxies.
The `time-sync` crate was used to exfiltrate `.env` files, highlighting a supply chain attack vector in Rust ecosystem. Defenders should focus on monitoring and securing package repositories.
Delta Electronics' CNCSoft-G2 software has a critical vulnerability that enables remote code execution, posing significant risks to industrial manufacturing systems.
A critical XSS vulnerability in Zitadel's /saml-post endpoint allows account takeovers via malicious scripts. The PoC highlights the need for immediate defensive measures.
zeptoclaw's allowlist and blocklist mechanisms can be bypassed using command injection, argument injection, or file name wildcards, enabling arbitrary command execution. This PoC highlights critical flaws in the project's security model.
The `dnp3times` crate was a malicious, typosquatting attempt that attempted to exfiltrate sensitive `.env` files to a server impersonating `timeapi.io`. The incident highlights risks in Rust crate supply chains and the importance of verifying dependencies.
Cisco has identified two maximum-severity vulnerabilities in its Secure Firewall Management Center (FMC) software that could allow attackers to gain root access, posing a critical risk to network security.
Microsoft has patched a critical issue in Windows 10 that prevented users from accessing the Recovery Environment, which is essential for system repairs and troubleshooting.
A critical zero-click vulnerability in the FreeScout helpdesk platform allows attackers to remotely hijack mail servers without user interaction, posing a severe risk to organizations using the service.
Bitwarden has introduced passkey login support on Windows 11, offering a phishing-resistant authentication method stored in their vault.
PickleScan's blocklist mechanism is bypassed using `pkgutil.resolve_name`, allowing any blocked function to be executed. This flaw enables universal RCE attacks undetected by PickleScan.
PickleScan v1.0.3 fails to block multiple Python stdlib modules enabling RCE, allowing bypass of security scans.
Craft CMS suffers from an authenticated RCE vulnerability due to SSTI in Twig templates, allowing attackers to write malicious scripts to web-accessible directories.
Critical vulnerabilities in ePower's charging stations could allow attackers to gain administrative control or disrupt services, posing significant risks to electric vehicle infrastructure.
Labkotec LID-3300IP devices are vulnerable to unauthenticated access, allowing attackers to take control of critical system operations, posing significant risks to industrial safety.
Hitachi Energy's RTU500 product has critical vulnerabilities that could lead to device outages and exposure of user management information, posing significant risks to industrial control systems.
Mobiliti e-mobi.hu charging stations are vulnerable to critical flaws allowing unauthorized administrative control and denial-of-service attacks, affecting all versions of the product.
A critical vulnerability in Windows ACPX path handling allows cwd injection via .cmd/.bat wrapper fallback, risking command execution. Immediate patching is advised.
The OpenClaw gateway agents.files.get and agents.files.set methods allowed symlink traversal, enabling arbitrary file read/write outside the workspace. This PoC highlights critical risks for defenders.
An RCE vulnerability in OpenClaw's gateway allows authenticated clients to bypass node execution approvals by manipulating parameters, posing a significant risk to connected systems.
A critical SQL injection vulnerability exists in itsourcecode School Management System 1.0, allowing remote attackers to manipulate database queries. The PoC highlights the need for immediate defensive measures to prevent data exposure and system compromise.
A high-severity vulnerability in OpenClaw's core gateway allowed malicious websites to hijack locally running AI agents via WebSocket connections. The issue has been fixed, but highlights risks of unsecured AI systems.
South Korea's National Tax Service exposed a cryptocurrency wallet seed in a press release, enabling hackers to steal $4.8 million worth of crypto.
The Langflow CSV Agent hardcodes a flag that enables arbitrary code execution, posing a severe security risk.
Vitess backup restoration process allows attackers with backup storage access to write files to arbitrary paths, enabling unauthorized access and potential system compromise.
Vikunja's password reset mechanism allows token reuse due to improper token invalidation and cleanup, enabling persistent account takeovers.
Third-party software like PDF readers and email clients pose significant risks to organizations' security, with consistent patching being crucial to mitigate exploit exposure.
Microsoft is improving the security of batch file and CMD script execution in Windows 11 Insider Preview builds, addressing a common attack vector for malicious scripts.
The News Portal Project 1.0 has an SQL injection vulnerability in /admin/add-category.php due to improper handling of the Category parameter, allowing remote attackers to execute arbitrary SQL commands.
The itsourcecode News Portal Project 1.0 contains a critical SQL injection vulnerability in /newsportal/admin/edit-category.php, allowing remote attackers to manipulate the Category argument for malicious database queries.
A SQL injection vulnerability exists in the Username parameter of /loging.php, allowing remote exploitation. This PoC highlights the need for immediate defensive measures to prevent potential data breaches.
Multiple critical vulnerabilities in EV Energy's ev.energy charging stations could allow attackers to gain administrative control or disrupt services, posing significant risks to electric vehicle infrastructure.
Multiple critical vulnerabilities in Copeland XWEB and XWEB Pro devices allow attackers to bypass authentication, cause denial-of-service, memory corruption, and execute arbitrary code, posing significant risks to affected systems.
Multiple critical vulnerabilities exist in Pelco's Sarix Pro 3 Series IP cameras, allowing attackers to gain unauthorized access and potentially compromise sensitive data and operations.
Multiple critical vulnerabilities in Yokogawa's CENTUM VP R6 and R7 versions could allow attackers to execute arbitrary code or cause denial-of-service, posing significant risks to industrial control systems.
Chargemap chargemap.com suffers from multiple critical vulnerabilities, including missing authentication and denial-of-service flaws, potentially allowing attackers to gain administrative control or disrupt charging services.
Angular's SSR feature is vulnerable to SSRF and header injection due to untrusted Host and X-Forwarded-* headers, allowing attackers to manipulate the application's base origin.
A critical stored XSS vulnerability in RustFS Console's preview modal allows attackers to execute arbitrary JavaScript, leading to credential theft and system compromise. The PoC highlights the importance of securing sensitive credentials and validating content types.
Parse Server's Google auth adapter improperly handles JWT algorithms, allowing attackers to forge tokens with 'alg: none' for account takeover. The PoC highlights the need for enforcing specific algorithms and key validation.
Cisco's SD-WAN systems are being actively exploited due to critical vulnerabilities, with attackers bypassing authentication to gain administrative access. The situation is urgent for organizations using these systems.
OneUptime's use of Node.js vm module for executing untrusted code allows sandbox escape and full cluster compromise, highlighting the risks of improper isolation mechanisms.
ActualBudget server lacks authentication on several endpoints, exposing sensitive bank data to unauthorized access. This PoC highlights critical security gaps requiring immediate defensive action.
The vulnerability in Statamic's password reset feature allows attackers to capture tokens and hijack user accounts. The PoC highlights the importance of securing password recovery mechanisms.
CISA has added CVE-2026-25108, an OS command injection vulnerability in Soliton Systems' FileZen, to its Known Exploited Vulnerabilities Catalog due to evidence of active exploitation. This vulnerability poses significant risks to federal enterprises and other users.
InSAT MasterSCADA BUK-TS suffers from critical vulnerabilities (CVE-2026-21410, CVE-2026-22553) enabling SQL injection and OS command injection, potentially allowing remote code execution. This poses significant risks to industrial control systems.
The Ormar ORM is vulnerable to SQL injection through min() and max() functions due to lack of input validation, allowing attackers to execute arbitrary queries.
New York-based ad tech firm Optimizely suffered a data breach after falling victim to a voice phishing (vishing) attack, compromising customer data and underscoring the risks of social engineering in supply chains.
A bug in Microsoft's classic Outlook desktop client causes the mouse pointer to disappear for some users, impacting usability but not directly compromising security.
Android mental health apps with 14.7M installs expose sensitive user data due to critical security vulnerabilities, putting millions of users' medical information at risk.
Traefik contains a critical vulnerability allowing bypass of TLS client authentication over HTTP/3, potentially exposing protected resources to unauthorized access.
Critical stack-based buffer overflow in Delta Electronics ASDA-Soft versions up to 7.2.0.0 could allow remote code execution via structured exception handler (SEH) corruption.
Critical vulnerabilities in GE Vernova Enervista UR Setup versions below 8.70 allow remote code execution with elevated privileges, posing significant risks to industrial control systems.
Honeywell CCTV products have a critical vulnerability (CVE-2026-1670) that allows unauthenticated attackers to change recovery email addresses, leading to account takeovers and unauthorized access to camera feeds.
A critical vulnerability in the Welker OdorEyes EcoSystem Pulse Bypass System with XL4 Controller, rated CVSS v3 8.2, exposes unauthenticated access to critical functions, risking over- or under-odorization events that could compromise safety and operations.
EnOcean SmartServer IoT versions up to 4.60.009 contain critical vulnerabilities (CVE-2026-20761, CVE-2026-22885) allowing remote code execution and ASLR bypass, posing significant risks to smart building infrastructure.
CISA has identified two critical vulnerabilities in Roundcube webmail, with CVE-2025-49113 being actively exploited for remote code execution.
Anthropic's new AI-powered tool, Claude Code Security, scans codebases for vulnerabilities and suggests patches. This is a significant advancement in automated security testing.
Jinan USR IOT Technology's USR-W610 device has multiple critical vulnerabilities that could allow attackers to steal credentials, disable authentication, or cause denial-of-service. Affected versions include USR-W610 <=3.1.1.0.
Unauthenticated attackers can exploit a file read vulnerability in Valmet DNA Engineering Web Tools to access arbitrary files.
CISA has identified two critical vulnerabilities in RoundCube Webmail, both actively exploited. These include a deserialization flaw and an XSS vulnerability, posing significant risks to federal systems.
Microsoft's February 2026 Patch Tuesday addresses over 55 vulnerabilities including four actively exploited zero-days in Windows, Office, and the .NET Framework.
A critical vulnerability in PostgreSQL allows authenticated users with CREATE FUNCTION privileges to escape the SQL sandbox and execute arbitrary operating system commands on the database server.
A critical command injection vulnerability in Cisco NX-OS allows unauthenticated attackers to execute arbitrary commands on Nexus data center switches, threatening core network infrastructure.
Juniper Networks released emergency patches for a critical out-of-bounds write vulnerability in Junos OS that enables unauthenticated remote code execution on MX and SRX series devices.
The first Patch Tuesday of 2026 addresses a record eight actively exploited zero-day vulnerabilities spanning Hyper-V, Office, Windows kernel, and the Microsoft Access database engine.
A critical improper authentication vulnerability in SonicWall SonicOS SSLVPN allows unauthenticated attackers to hijack active VPN sessions, with exploitation observed against government and enterprise targets.
A new critical authentication bypass in Fortinet FortiOS allows unauthenticated attackers to gain super-admin privileges on FortiGate firewalls, with mass exploitation already underway targeting internet-exposed management interfaces.
A critical vulnerability in Apache Commons Text string interpolation is being mass-exploited at year's end, with attackers deploying cryptominers and ransomware through the widely-embedded Java library.
The final Patch Tuesday of 2025 addresses over 70 vulnerabilities including a critical Windows LDAP remote code execution flaw and an actively exploited Windows kernel zero-day.
Another critical zero-day in Ivanti Connect Secure VPN appliances is being mass-exploited to deploy custom malware, with CISA issuing an emergency directive requiring federal agencies to disconnect affected devices.
A critical OGNL injection vulnerability in Apache Struts allows unauthenticated remote code execution, with exploitation observed within days of the advisory publication.
Microsoft's November Patch Tuesday addresses a critical Exchange Server vulnerability being exploited by a nation-state group to access email communications, along with three other actively exploited flaws.
A critical zero-day vulnerability in Citrix NetScaler ADC and Gateway allows unauthenticated remote code execution, with threat actors injecting credential-harvesting JavaScript into login pages.
A critical vulnerability in Kubernetes kubelet allows attackers to escape container boundaries through crafted volume mount operations, potentially compromising the underlying node and all co-located containers.
Microsoft's October Patch Tuesday addresses a critical Remote Desktop Protocol vulnerability being exploited to gain initial access to enterprise networks without valid credentials.
Multiple critical vulnerabilities in Palo Alto Networks Expedition migration tool allow unauthenticated attackers to access firewall configuration files, credentials, and API keys stored in the tool's database.
A critical deserialization vulnerability in Veeam Backup & Replication allows unauthenticated attackers to gain remote code execution, with ransomware groups actively targeting backup infrastructure.
Cisco disclosed a critical authentication bypass in IOS XE Web UI affecting thousands of enterprise network devices, with mass exploitation and web shell deployment observed within 48 hours of disclosure.
Microsoft's September Patch Tuesday patches a wormable remote code execution vulnerability in the Windows TCP/IP stack along with two actively exploited privilege escalation zero-days.
A critical vulnerability in GitLab CE/EE allows attackers to hijack any account by manipulating the password reset flow, with exploitation already observed targeting internet-facing instances.
Microsoft's August Patch Tuesday addresses over 80 vulnerabilities with six confirmed actively exploited zero-days spanning Windows kernel, Office, and the SmartScreen security feature.
A critical stack-based buffer overflow in SonicWall SMA 100 series appliances allows unauthenticated remote code execution, with multiple ransomware affiliates exploiting it as an initial access vector.
Apple released emergency security updates across iOS, iPadOS, and macOS to fix two WebKit zero-day vulnerabilities actively exploited in sophisticated spyware attacks targeting journalists and activists.
A critical unauthenticated RCE vulnerability in FortiManager is being exploited by a Chinese-nexus threat actor to compromise managed Fortinet devices across government and defense networks.
Microsoft's July Patch Tuesday fixes over 60 vulnerabilities including a critical Hyper-V guest-to-host escape being exploited by nation-state actors for cloud infrastructure attacks.
A critical signal handler race condition in OpenSSH server allows unauthenticated remote code execution on affected Linux systems, dubbed 'regreSSHion 2' as a follow-up to last year's CVE-2024-6387.
A critical authentication bypass in ASUS router firmware allows unauthenticated attackers to remotely take over affected routers, with botnets already scanning for and exploiting vulnerable devices.
A critical heap overflow vulnerability in VMware ESXi allows an attacker with local admin privileges on a guest VM to escape the sandbox and execute code on the hypervisor host.
A new critical SQL injection vulnerability in MOVEit Transfer is being exploited by the Cl0p ransomware group, echoing the devastating 2023 campaign that compromised thousands of organizations worldwide.
Microsoft's June Patch Tuesday addresses over 50 vulnerabilities including a Windows kernel privilege escalation flaw being exploited in the wild by advanced threat actors.
A critical OGNL injection vulnerability in Atlassian Confluence Server and Data Center allows unauthenticated remote code execution, with ransomware groups actively exploiting unpatched instances.
Google released an emergency Chrome update fixing a high-severity type confusion vulnerability in V8 that was being exploited in targeted attacks against users in the wild.
Two vulnerabilities in Ivanti Endpoint Manager Mobile can be chained to achieve unauthenticated remote code execution, with active exploitation targeting government and critical infrastructure organizations.
Microsoft's May 2025 Patch Tuesday addresses over 70 vulnerabilities including five zero-days under active exploitation across Windows kernel, scripting engine, and DWM components.
A maximum-severity vulnerability in Cisco IOS XE for Wireless LAN Controllers allows unauthenticated attackers to upload arbitrary files and execute commands via a hard-coded JSON Web Token.
A critical zero-day in SAP NetWeaver Visual Composer is being actively exploited to upload webshells to enterprise SAP servers, enabling full remote control of critical business systems.
A critical vulnerability in the Erlang/OTP SSH library allows unauthenticated remote code execution with a perfect CVSS 10.0 score, affecting any application using the built-in SSH server.
Microsoft's April 2025 Patch Tuesday addresses a Windows Common Log File System zero-day being actively exploited by the RansomEXX ransomware group for privilege escalation.
A critical authentication bypass in CrushFTP allows unauthenticated attackers to access administrative functions through crafted HTTP requests, with exploitation already observed in the wild.
Four critical vulnerabilities in the Kubernetes ingress-nginx controller, collectively dubbed IngressNightmare, could allow unauthenticated attackers to take over Kubernetes clusters hosting 40% of cloud workloads.
A critical authorization bypass vulnerability in the Next.js framework allows attackers to skip middleware-based security checks by manipulating request headers, potentially affecting millions of web applications.
A critical remote code execution vulnerability in Apache Tomcat allows attackers to upload and execute arbitrary code via partial PUT requests, with active exploitation observed within 30 hours of disclosure.
Microsoft's March 2025 Patch Tuesday is one of the most critical in recent memory, fixing six actively exploited zero-day vulnerabilities across NTFS, the Win32 kernel subsystem, and Microsoft Management Console.
Three VMware zero-day vulnerabilities in ESXi, Workstation, and Fusion are being actively exploited, enabling attackers to escape virtual machines and compromise hypervisors.
A SQL injection zero-day in PostgreSQL's interactive tool was exploited alongside the BeyondTrust Remote Support zero-day to compromise US Treasury Department systems.
A critical authentication bypass in Palo Alto Networks PAN-OS management interface is being chained with other vulnerabilities to achieve remote code execution on firewalls.
Microsoft's February 2025 Patch Tuesday addresses over 55 vulnerabilities including multiple zero-days under active exploitation in Windows, with critical flaws in NTLMv2 and LDAP.
Google's February Android security update patches an actively exploited Linux kernel USB-video class vulnerability that enabled privilege escalation on Android devices.
Cisco has released patches for multiple critical vulnerabilities in Identity Services Engine that could allow authenticated attackers to execute arbitrary commands as root.
Threat actors are actively exploiting command injection vulnerabilities in Zyxel CPE series devices, with no patches available from the vendor for affected end-of-life products.
Critical vulnerabilities in SimpleHelp remote monitoring and management software are being exploited by threat actors to gain unauthorized access to managed client networks.
Apple released emergency security updates to fix a zero-day vulnerability in the CoreMedia framework that was being actively exploited against devices running older iOS versions.
Microsoft's January 2025 Patch Tuesday addresses 159 vulnerabilities including eight zero-days, three of which are under active exploitation in Windows Hyper-V and Windows components.
A critical authentication bypass in FortiOS and FortiProxy is being actively exploited, allowing remote attackers to gain super-admin privileges on affected firewalls.
Multiple critical vulnerabilities in Moxa industrial networking devices could allow attackers to gain root access to OT and ICS infrastructure.
A critical zero-day vulnerability in Ivanti Connect Secure VPN appliances is being actively exploited by threat actors to gain unauthenticated remote code execution.
A vulnerability in Nuclei, an open-source vulnerability scanner, allowed attackers to bypass signature verification and execute malicious code via templates on local systems.
A new attack technique, DoubleClickjacking, exploits double-clicks to bypass existing clickjacking protections and hijack user accounts. This poses a significant risk as it can be used to authorize sensitive actions without users' knowledge.
Over three million mail servers are exposed without TLS encryption, allowing potential sniffing attacks and data interception.