75
CVEs
8
Threats
0
News
61
Critical
61
CISA KEV
🛡 Security Vulnerabilities (CVE)
D-Link Multiple NAS Devices Use of Hard-Coded Credentials Vulnerability — D-Link DNS-320L, DNS-325, DNS-327L, and DNS-340L contains a hard-coded credential that allows an attacker to conduct authenticated command injection, leading to remote, unauthorized code execution.
Check Point Quantum Security Gateways Information Disclosure Vulnerability — Check Point Quantum Security Gateways contain an unspecified information disclosure vulnerability. The vulnerability potentially allows an attacker to access information on Gateways connected to the inte…
Microsoft Windows Error Reporting Service Improper Privilege Management Vulnerability — Microsoft Windows Error Reporting Service contains an improper privilege management vulnerability that allows a local attacker with user permissions to gain SYSTEM privileges.
JetBrains TeamCity Authentication Bypass Vulnerability — JetBrains TeamCity contains an authentication bypass vulnerability that allows an attacker to perform admin actions.
Apache HugeGraph-Server Improper Access Control Vulnerability — Apache HugeGraph-Server contains an improper access control vulnerability that could allow a remote attacker to execute arbitrary code.
SolarWinds Web Help Desk Deserialization of Untrusted Data Vulnerability — SolarWinds Web Help Desk contains a deserialization of untrusted data vulnerability that could allow for remote code execution.
SolarWinds Web Help Desk Hardcoded Credential Vulnerability — SolarWinds Web Help Desk contains a hardcoded credential vulnerability that could allow a remote, unauthenticated user to access internal functionality and modify data.
Microsoft .NET Framework Information Disclosure Vulnerability — Microsoft .NET Framework contains an information disclosure vulnerability that exposes the ObjRef URI to an attacker, ultimately enabling remote code execution.
Android Pixel Information Disclosure Vulnerability — Android Pixel contains an information disclosure vulnerability in the fastboot firmware used to support unlocking, flashing, and locking affected devices.
Android Pixel Privilege Escalation Vulnerability — Android Pixel contains a privilege escalation vulnerability that allows an attacker to interrupt a factory reset triggered by a device admin app.
Ivanti Endpoint Manager (EPM) SQL Injection Vulnerability — Ivanti Endpoint Manager (EPM) contains a SQL injection vulnerability in Core server that allows an unauthenticated attacker within the same network to execute arbitrary code.
Microsoft SmartScreen Prompt Security Feature Bypass Vulnerability — Microsoft SmartScreen Prompt contains a security feature bypass vulnerability that allows an attacker to bypass the Mark of the Web (MotW) feature. This vulnerability can be chained with CVE-2023-38831 and CVE-2…
Microsoft Windows MSHTML Platform Security Feature Bypass Vulnerability — Microsoft Windows MSHTML Platform contains an unspecified vulnerability that allows for a security feature bypass.
Microsoft DWM Core Library Privilege Escalation Vulnerability — Microsoft DWM Core Library contains a privilege escalation vulnerability that allows an attacker to gain SYSTEM privileges.
Microsoft Windows Kernel TOCTOU Race Condition Vulnerability — Microsoft Windows Kernel contains a time-of-check to time-of-use (TOCTOU) race condition vulnerability that could allow for privilege escalation.
Apache OFBiz Path Traversal Vulnerability — Apache OFBiz contains a path traversal vulnerability that could allow for remote code execution.
Zyxel Multiple Firewalls Path Traversal Vulnerability — Multiple Zyxel firewalls contain a path traversal vulnerability in the web management interface that could allow an attacker to download or upload files via a crafted URL.
D-Link Multiple NAS Devices Command Injection Vulnerability — D-Link DNS-320L, DNS-325, DNS-327L, and DNS-340L contain a command injection vulnerability. When combined with CVE-2024-3272, this can lead to remote, unauthorized code execution.
Palo Alto Networks PAN-OS Command Injection Vulnerability — Palo Alto Networks PAN-OS GlobalProtect feature contains a command injection vulnerability that allows an unauthenticated attacker to execute commands with root privileges on the firewall.
Adobe Commerce and Magento Open Source Improper Restriction of XML External Entity Reference (XXE) Vulnerability — Adobe Commerce and Magento Open Source contain an improper restriction of XML external entity reference (XXE) vulnerability that allows for remote code execution.
CVE-2024-35250
Windows Kernel-Mode Driver Untrusted Pointer Dereference Privilege Escalation
11:01 KSA
Microsoft Windows Kernel-Mode Driver Untrusted Pointer Dereference Vulnerability — Microsoft Windows Kernel-Mode Driver contains an untrusted pointer dereference vulnerability that allows a local attacker to escalate privileges.
WatchGuard Firebox Out of Bounds Write Vulnerability — WatchGuard Fireware OS iked process contains an out of bounds write vulnerability in the OS iked process. This vulnerability may allow a remote unauthenticated attacker to execute arbitrary code and affects both the mobile us…
MongoDB and MongoDB Server Improper Handling of Length Parameter Inconsistency Vulnerability — MongoDB Server contains an improper handling of length parameter inconsistency vulnerability in Zlib compressed protocol headers. This vulnerability may allow a read of uninitialized he…
Android Framework Information Disclosure Vulnerability — Android Framework contains an unspecified vulnerability that allows for information disclosure.
CWP Control Web Panel OS Command Injection Vulnerability — CWP Control Web Panel (formerly CentOS Web Panel) contains an OS command Injection vulnerability that allows unauthenticated remote code execution via shell metacharacters in the t_total parameter in a filemanager changeP…
TeleMessage TM SGNL Exposure of Core Dump File to an Unauthorized Control Sphere Vulnerability — TeleMessage TM SGNL contains an exposure of core dump file to an unauthorized control sphere Vulnerability. This vulnerability is based on a JSP application in which the heap content …
CrushFTP Unprotected Alternate Channel Vulnerability — CrushFTP contains an unprotected alternate channel vulnerability. When the DMZ proxy feature is not used, mishandles AS2 validation and consequently allows remote attackers to obtain admin access via HTTPS.
OSGeo GeoServer Improper Restriction of XML External Entity Reference Vulnerability — OSGeo GeoServer contains an improper restriction of XML external entity reference vulnerability that occurs when the application accepts XML input through a specific endpoint /geoserver/wms oper…
Microsoft Windows Server Update Service (WSUS) Deserialization of Untrusted Data Vulnerability — Microsoft Windows Server Update Service (WSUS) contains a deserialization of untrusted data vulnerability that allows for remote code execution.
Oracle Fusion Middleware Missing Authentication for Critical Function Vulnerability — Oracle Fusion Middleware contains a missing authentication for critical function vulnerability, allowing unauthenticated remote attackers to take over Identity Manager.
Citrix NetScaler Memory Overflow Vulnerability — Citrix NetScaler ADC and NetScaler Gateway contain a memory overflow vulnerability that could allow for remote code execution and/or denial of service.
Rejetto HTTP File Server Improper Neutralization of Special Elements Used in a Template Engine Vulnerability — Rejetto HTTP File Server contains an improper neutralization of special elements used in a template engine vulnerability. This allows a remote, unauthenticated attacker …
MDaemon Email Server Cross-Site Scripting (XSS) Vulnerability — MDaemon Email Server contains a cross-site scripting (XSS) vulnerability that allows a remote attacker to load arbitrary JavaScript code via an HTML e-mail message.
CVE-2024-11680
ProjectSend Improper Authentication in options.php Allows Unauthorized Configuration Modification
11:01 KSA
ProjectSend Improper Authentication Vulnerability — ProjectSend contains an improper authentication vulnerability that allows a remote, unauthenticated attacker to enable unauthorized modification of the application's configuration via crafted HTTP requests to options.php. Succes…
Progress Kemp LoadMaster OS Command Injection Vulnerability — Progress Kemp LoadMaster contains an OS command injection vulnerability that allows an unauthenticated, remote attacker to access the system through the LoadMaster management interface, enabling arbitrary system comman…
BeyondTrust Privileged Remote Access (PRA) and Remote Support (RS) Command Injection Vulnerability — BeyondTrust Privileged Remote Access (PRA) and Remote Support (RS) contain a command injection vulnerability, which can allow an unauthenticated attacker to inject commands that …
BeyondTrust Privileged Remote Access (PRA) and Remote Support (RS) OS Command Injection Vulnerability — BeyondTrust Privileged Remote Access (PRA) and Remote Support (RS) contain an OS command injection vulnerability that can be exploited by an attacker with existing administrati…
Ivanti Endpoint Manager (EPM) Absolute Path Traversal Vulnerability — Ivanti Endpoint Manager (EPM) contains an absolute path traversal vulnerability that allows a remote unauthenticated attacker to leak sensitive information.
Ivanti Endpoint Manager (EPM) Absolute Path Traversal Vulnerability — Ivanti Endpoint Manager (EPM) contains an absolute path traversal vulnerability that allows a remote unauthenticated attacker to leak sensitive information.
ConnectWise ScreenConnect Authentication Bypass Vulnerability — ConnectWise ScreenConnect contains an authentication bypass vulnerability that allows an attacker with network access to the management interface to create a new, administrator-level account on affected devices.
Cisco ASA and FTD Denial of Service Vulnerability — Cisco Adaptive Security Appliance (ASA) and Firepower Threat Defense (FTD) contain an infinite loop vulnerability that can lead to remote denial of service condition.
Cisco ASA and FTD Privilege Escalation Vulnerability — Cisco Adaptive Security Appliance (ASA) and Firepower Threat Defense (FTD) contain a privilege escalation vulnerability that can allow local privilege escalation from Administrator to root.
Cisco NX-OS Command Injection Vulnerability — Cisco NX-OS contains a command injection vulnerability in the command line interface (CLI) that could allow an authenticated, local attacker to execute commands as root on the underlying operating system of an affected device.
CVE-2024-20439
Cisco Smart Licensing Utility Static Credential Remote Administrative Access
11:01 KSA
Cisco Smart Licensing Utility Static Credential Vulnerability — Cisco Smart Licensing Utility contains a static credential vulnerability that allows an unauthenticated, remote attacker to log in to an affected system and gain administrative credentials.
Cisco ASA and FTD Denial-of-Service Vulnerability — Cisco Adaptive Security Appliance (ASA) and Firepower Threat Defense (FTD) contain a missing release of resource after effective lifetime vulnerability that could allow an unauthenticated, remote attacker to cause a denial-of-se…
Adobe ColdFusion Improper Access Control Vulnerability — Adobe ColdFusion contains an improper access control vulnerability that could allow an attacker to access or modify restricted files via an internet-exposed admin panel.
Oracle Agile Product Lifecycle Management (PLM) Incorrect Authorization Vulnerability — Oracle Agile Product Lifecycle Management (PLM) contains an incorrect authorization vulnerability in the Process Extension component of the Software Development Kit. Successful exploitation of…
CVE-2024-23897
Jenkins CLI Path Traversal Vulnerability Enables Arbitrary File Read and Code Execution
11:01 KSA
Jenkins Command Line Interface (CLI) Path Traversal Vulnerability — Jenkins Command Line Interface (CLI) contains a path traversal vulnerability that allows attackers limited read access to certain files, which can lead to code execution.
Apple Multiple Products Memory Corruption Vulnerability — Apple iOS, iPadOS, macOS, tvOS, and watchOS RTKit contain a memory corruption vulnerability that allows an attacker with arbitrary kernel read and write capability to bypass kernel memory protections.
Apple Multiple Products Memory Corruption Vulnerability — Apple iOS, iPadOS, macOS, tvOS, watchOS, and visionOS kernel contain a memory corruption vulnerability that allows an attacker with arbitrary kernel read and write capability to bypass kernel memory protections.
Apple Multiple Products WebKit Type Confusion Vulnerability — Apple iOS, iPadOS, macOS, tvOS, and Safari WebKit contain a type confusion vulnerability that leads to code execution when processing maliciously crafted web content. This vulnerability could impact HTML parsers that u…
Fortinet Multiple Products Format String Vulnerability — Fortinet FortiOS, FortiPAM, FortiProxy, and FortiWeb contain a format string vulnerability that allows a remote, unauthenticated attacker to execute arbitrary code or commands via specially crafted requests.
Ivanti Connect Secure, Policy Secure, and Neurons Server-Side Request Forgery (SSRF) Vulnerability — Ivanti Connect Secure (ICS, formerly known as Pulse Connect Secure), Ivanti Policy Secure, and Ivanti Neurons contain a server-side request forgery (SSRF) vulnerability in the SAM…
Ivanti Connect Secure and Policy Secure Command Injection Vulnerability — Ivanti Connect Secure (ICS, formerly known as Pulse Connect Secure) and Ivanti Policy Secure contain a command injection vulnerability in the web components of these products, which can allow an authenticat…
Microsoft Outlook Improper Input Validation Vulnerability — Microsoft Outlook contains an improper input validation vulnerability that allows for remote code execution. Successful exploitation of this vulnerability would allow an attacker to bypass the Office Protected View and o…
Microsoft Windows Internet Shortcut Files Security Feature Bypass Vulnerability — Microsoft Windows Internet Shortcut Files contains an unspecified vulnerability that allows for a security feature bypass.
CVE-2024-21410
Microsoft Exchange Server Privilege Escalation Vulnerability CVE-2024-21410
11:01 KSA
Microsoft Exchange Server Privilege Escalation Vulnerability — Microsoft Exchange Server contains an unspecified vulnerability that allows for privilege escalation.
Microsoft Windows SmartScreen Security Feature Bypass Vulnerability — Microsoft Windows SmartScreen contains a security feature bypass vulnerability that allows an attacker to bypass the SmartScreen user experience and inject code to potentially gain code execution, which could l…
CVE-2024-21338
Windows Kernel appid.sys IOCTL Insufficient Access Control Privilege Escalation
11:01 KSA
Microsoft Windows Kernel Exposed IOCTL with Insufficient Access Control Vulnerability — Microsoft Windows Kernel contains an exposed IOCTL with insufficient access control vulnerability within the IOCTL (input and output control) dispatcher in appid.sys that allows a local attack…
Oracle Agile Product Lifecycle Management (PLM) Deserialization Vulnerability — Oracle Agile Product Lifecycle Management (PLM) contains a deserialization vulnerability that allows a low-privileged attacker with network access via HTTP to compromise the system.
Fortinet FortiOS Out-of-Bound Write Vulnerability — Fortinet FortiOS contains an out-of-bound write vulnerability that allows a remote unauthenticated attacker to execute code or commands via specially crafted HTTP requests.
CVE-2026-6518
The CMP – Coming Soon & Maintenance Plugin by NiteoThemes plugin for WordPress is vulnerable to arbitrary file upload an
00:49 KSA
The CMP – Coming Soon & Maintenance Plugin by NiteoThemes plugin for WordPress is vulnerable to arbitrary file upload and remote code execution in all versions up to, and including, 4.1.16 via the `cmp_theme_update_install` AJAX action. This is due to the function only checking f…
CVE-2026-32171
Insufficiently protected credentials in Azure Logic Apps allows an authorized attacker to elevate privileges over a netw
06:19 KSA
Insufficiently protected credentials in Azure Logic Apps allows an authorized attacker to elevate privileges over a network.
CVE-2026-32168
Improper input validation in Azure Monitor Agent allows an authorized attacker to elevate privileges locally.
06:19 KSA
Improper input validation in Azure Monitor Agent allows an authorized attacker to elevate privileges locally.
The Easy Appointments plugin for WordPress is vulnerable to Sensitive Information Exposure in all versions up to, and including, 3.12.21 via the `/wp-json/wp/v2/eablocks/ea_appointments/` REST API endpoint. This is due to the endpoint being registered with `'permission_callback' …
Improper neutralization of special elements in .NET allows an unauthorized attacker to perform spoofing over a network.
Use after free in Windows WalletService allows an authorized attacker to elevate privileges locally.
CVE-2026-2434
The Pz-LinkCard plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'blogcard' shortcode attribute
07:18 KSA
The Pz-LinkCard plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'blogcard' shortcode attributes in all versions up to, and including, 2.5.8.1 due to insufficient input sanitization and output escaping. This makes it possible for authenticated attackers, …
The Contextual Related Posts plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'other_attributes' parameter in versions up to, and including, 4.2.1 due to insufficient input sanitization and output escaping. This makes it possible for authenticated attacke…
The Youzify plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'checkin_place_id' parameter in all versions up to, and including, 1.3.6 due to insufficient input sanitization and output escaping. This makes it possible for authenticated attackers, with Subs…
The Page Builder Gutenberg Blocks – CoBlocks plugin for WordPress is vulnerable to Stored Cross-Site Scripting via external iCal feed data in all versions up to, and including, 3.1.16 due to insufficient output escaping of event titles, descriptions, and locations fetched from ex…
The Flipbox Addon for Elementor plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the Flipbox widget's button URL `custom_attributes` field in all versions up to, and including, 2.1.1 due to insufficient validation of custom attribute names. Specifically, the …
The Content Blocks (Custom Post Widget) plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's content_block shortcode in all versions up to, and including, 3.3.9 due to insufficient input sanitization and output escaping on user supplied values consum…
CVE-2026-1838
The Hostel plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via the 'shortcode_id' parameter in all
09:27 KSA
The Hostel plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via the 'shortcode_id' parameter in all versions up to, and including, 1.1.6 due to insufficient input sanitization and output escaping. This makes it possible for unauthenticated attackers to inject …
CVE-2026-2505
WordPress Categories Images Plugin Stored XSS via z_taxonomy_image Shortcode
17:54 KSA
The Categories Images plugin for WordPress is vulnerable to Stored Cross-Site Scripting in versions up to, and including, 3.3.1, via the 'z_taxonomy_image' shortcode. This is due to the shortcode rendering path passing attacker-controlled class input into a fallback image builder…
⚠️ Threat Intelligence
8 threats
rss:BleepingComputer
—
21:49 KSA
Critical flaw in Protobuf library enables JavaScript code execution
A critical remote code execution vulnerability in protobuf.js, a popular JavaScript implementation of Google's Protocol Buffers, has been disclosed with public exploit code available. This vulne…
rss:BleepingComputer
—
20:48 KSA
Microsoft Teams right-click paste broken by Edge update bug
A bug in a recent Microsoft Edge browser update breaks the right-click paste functionality in Microsoft Teams desktop client chats. This issue affects user productivity and communication workflows. Micr…
rss:BleepingComputer
—
20:48 KSA
NAKIVO v11.2: Ransomware Defense, Faster Replication, vSphere 9, and Proxmox VE 9.0 Support
NAKIVO Backup & Replication v11.2 has been released with enhanced ransomware defense capabilities and faster replication speeds. The update includes support for vSphere 9…
rss:SecurityWeek
—
17:00 KSA
Tycoon 2FA Loses Phishing Kit Crown Amid Surge in Attacks
Following the disruption of the Tycoon 2FA platform, threat actors are actively reusing its tools across multiple phishing kits, indicating a shift in the phishing landscape. This migration of tools sugge…
rss:The Hacker News
—
15:32 KSA
$13.74M Hack Shuts Down Sanctioned Grinex Exchange After Intelligence Claims
Grinex, a sanctioned cryptocurrency exchange based in Kyrgyzstan, suspended operations after suffering a $13.74 million cyber attack. The exchange attributed the breach to Western intel…
rss:The Hacker News
—
13:18 KSA
Mirai Variant Nexcorium Exploits CVE-2024-3721 to Hijack TBK DVRs for DDoS Botnet
Threat actors are exploiting CVE-2024-3721 vulnerability in TBK DVR devices and end-of-life TP-Link routers to deploy Mirai botnet variants for DDoS attacks. The Nexcorium variant …
rss:Dark Reading
—
03:19 KSA
How NIST's Cutback of CVE Handling Impacts Cyber Teams
NIST's reduction in CVE data enrichment services is creating a gap in vulnerability management that industry coalitions are working to fill. This cutback impacts organizations' ability to prioritize and…
rss:Dark Reading
—
03:19 KSA
Tycoon 2FA Phishers Scatter, Adopt Device Code Phishing
Attackers using the Tycoon phishing kit have shifted tactics to device code phishing, exploiting legitimate new-device login flows to deceive users into granting account access. This technique bypasses trad…
📰 Cybersecurity News
0 articles
No news aggregated today yet
This digest is updated automatically every day — Last updated: Saturday, April 18, 2026
CVE Archive ·
Threats ·
News