PT-2026-48262

Name of the Vulnerable Software and Affected Versions Acrobat Reader versions 24.001.30365 and 26.001.21651 and earlier Description A Use After Free issue exists where the software continues to use a memory pointer after it has been freed. This could result in arbitrary code execution in the...

PT-2026-47915

Heap-based buffer overflow in Remote Desktop Client allows an unauthorized attacker to execute code over a network...

PT-2026-48028

Name of the Vulnerable Software and Affected Versions Microsoft Office SharePoint affected versions not specified Description Improper authorization in Microsoft Office SharePoint allows an authorized attacker to execute code over a network. This issue enables Remote Code Execution RCE, which is...

PT-2026-48271

Name of the Vulnerable Software and Affected Versions ColdFusion versions 2023.19 through 2025.8 ColdFusion versions prior to 2025.8 Description Improper input validation allows for arbitrary code execution in the context of the current user. This issue can be exploited without requiring any user...

PT-2026-47916

Heap-based buffer overflow in Remote Desktop Client allows an unauthorized attacker to execute code over a network...

PT-2026-47888

Name of the Vulnerable Software and Affected Versions Remote Desktop Client affected versions not specified Description A heap-based buffer overflow in the Remote Desktop Client allows an unauthorized attacker to execute code over a network. A heap-based buffer overflow occurs when a program writ...

PT-2026-47814

A NETGEAR security issue that could allow an attacker with ability to intercept and tamper with traffic between the router and the Internet to run commands on your device when the device administrator performs certain specific management actions. This issue affects NETGEAR Orbi 370 series devices...

PT-2026-47867

Name of the Vulnerable Software and Affected Versions DedeCMS version 5.7.118 Description Command execution is possible within the 'file manage control.php' file. Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability...

CVE-2026-38615

DedeCMS V5.7.118 is vulnerable to Command Execution in filemanagecontrol.php...

Microsoft Office 安全漏洞

Microsoft Office is a suite of office software products developed by Microsoft Corporation in the United States. Common components of this product include Word, Excel, Access, PowerPoint, and FrontPage. There are security vulnerabilities in Microsoft Office. Attackers can exploit these...

PT-2026-48236

21 zero-day vulnerabilities in FFmpeg, the world’s most widely deployed media processing library, including a critical RCE-capable heap buffer overflow reachable with a single 183-byte network packet. The autonomous agent discovered vulnerabilities spanning the TS demuxer, VP9 decoder, RTP...

PT-2026-48274

Name of the Vulnerable Software and Affected Versions Adobe Campaign Classic ACC versions prior to 7.4.3 build 9395 Description A Server-Side Request Forgery SSRF issue exists where the server can be coerced into making unauthorized requests. This can lead to privilege escalation or arbitrary cod...

PT-2026-48025

Name of the Vulnerable Software and Affected Versions Windows HTTP.sys affected versions not specified Description An integer overflow or wraparound in the HTTP.sys driver allows an unauthorized remote attacker to execute arbitrary code over a network and affect the system. Recommendations At the...

PT-2026-47800

Logseq is vulnerable to a sandbox escape flaw where plugins running in sandboxed iframes can inject arbitrary HTML attributes, such as event handlers, into their container element in the host DOM. Due to a disabled Content Security Policy CSP, this allows a malicious plugin to execute arbitrary...

PT-2026-48252

Name of the Vulnerable Software and Affected Versions Acrobat Reader versions 24.001.30365 through 26.001.21651 Description A Use After Free issue exists in the annotation component, which could result in arbitrary code execution in the context of the current user. Exploitation requires user...

PT-2026-47996

Out-of-bounds read in Windows Hyper-V allows an unauthorized attacker to execute code locally...

PT-2026-47907

Name of the Vulnerable Software and Affected Versions Microsoft Windows affected versions not specified Description An integer underflow wrap or wraparound in Windows Performance Monitor allows an unauthorized attacker to execute code over a network. Integer underflow occurs when an arithmetic...

PT-2026-47860

Name of the Vulnerable Software and Affected Versions NETGEAR gaming routers affected versions not specified Description An issue in NETGEAR gaming routers allows attackers who can intercept and tamper with traffic between the router and the Internet to execute code on the device. Recommendations...

PT-2026-47859

Name of the Vulnerable Software and Affected Versions NETGEAR affected versions not specified Description Insufficient authentication and input validation allow users connected to the local network to execute commands, which can impact product confidentiality or allow the modification of certain...

PT-2026-48060

Name of the Vulnerable Software and Affected Versions Adobe Experience Manager versions 6.5.24 and earlier Adobe Experience Manager versions LTS SP1 and earlier Adobe Experience Manager versions 2026.04 and earlier Description A stored Cross-Site Scripting XSS issue allows a low-privileged attack...