K000159681: Credential harvesting campaign targeting F5 VPN users

On January 13, 2026, researchers identified a large-scale credential harvesting campaign targeting several VPN providers, including F5. The threat actors behind the campaign registered numerous doppelgänger domains designed to mimic legitimate F5 domains. These domains are used to deceive victims...

CVE-2026-24117 vulnerabilities

Vulnerabilities for packages: buildkitd, tflint, ko, goreleaser, kyverno, ratify, spire-server, tekton-chains, aactl, trivy, kubescape, trivy-operator, witness, zot, gitsign, zarf, vexctl, policy-controller, slsa-verifier, cosign, crossplane, gh, flux-source-controller, tkn, kyverno-notation-aws,...

GHSA-FCV2-XGW5-PQXF vulnerabilities

Vulnerabilities for packages: buildkitd, tflint, timestamp-authority, ko, kyverno, ratify, spire-server, portieris, tekton-chains, xeol, aactl, trivy, sigstore-scaffolding, falco-no-driver, docker-compose, neuvector-sigstore-interface, rekor, kubescape, trivy-operator, undock, witness, guac, zot,...

GHSA-GJ5H-7FQ5-56P5 vulnerabilities

Vulnerabilities for packages: linux-gcp, linux-azure, linux-aws, linux-qemu, linux-vmware...

GHSA-84X2-RFRF-6F2C vulnerabilities

Vulnerabilities for packages: linux-gcp, linux-azure, linux-aws, linux-qemu, linux-vmware...

GHSA-59F6-F4PC-WW92 vulnerabilities

Vulnerabilities for packages: linux-gcp, linux-azure, linux-aws, linux-qemu, linux-vmware...

CVE-2026-23831 vulnerabilities

Vulnerabilities for packages: trivy-fips, spire-server-fips, kyverno, trivy, goreleaser, ko, policy-controller-fips, zot, ratify-fips, buildkitd-fips, tflint, tkn-fips, neuvector-sigstore-interface, chainctl, vexctl, flux-source-controller-fips, kyverno-policy-reporter-plugins-kyverno-fips, zarf,...

CVE-2026-24137 vulnerabilities

Vulnerabilities for packages: trivy, fulcio, ko, portieris, vexctl, docker-compose, aactl, kubescape, guac, policy-controller, buildkitd, gh, cloudbeat-fips, ko-fips, sigstore-scaffolding, prometheus-podman-exporter, image-factory, tekton-chains-fips, teleport, tflint-fips, spire-server-fips,...

GHSA-FCV2-XGW5-PQXF vulnerabilities

Vulnerabilities for packages: trivy, fulcio, ko, portieris, vexctl, docker-compose, aactl, kubescape, guac, policy-controller, buildkitd, gh, cloudbeat-fips, ko-fips, sigstore-scaffolding, prometheus-podman-exporter, image-factory, tekton-chains-fips, teleport, tflint-fips, spire-server-fips,...

GitHub: PATs without the required scope can leak issues

An Incorrect Authorization vulnerability was identified in GitHub Enterprise Server that allowed an authenticated user with a classic personal access token PAT lacking the repo scope to retrieve issues and commits from private and internal repositories via the search REST API endpoints. The user...

GHSA-3QMM-R55X-HPXX vulnerabilities

Vulnerabilities for packages: airflow...

OESA-2026-1213 opencc security update

Opencc is for between Traditional Chinese and Simplified Chinese characters and phrases conversion library. Security Fixes: A vulnerability was found in BYVoid OpenCC up to 1.1.9 and classified as critical. Using CWE to declare the problem leads to CWE-122. A heap overflow condition is a buffer...

OESA-2026-1212 opencc security update

Opencc is for between Traditional Chinese and Simplified Chinese characters and phrases conversion library. Security Fixes: A vulnerability was found in BYVoid OpenCC up to 1.1.9 and classified as critical. Using CWE to declare the problem leads to CWE-122. A heap overflow condition is a buffer...

CVE-2020-16248

creationtimestamp| type| source ---|---|--- 2026-01-23 07:34:13+00:00| confirmed| https://github.com/projectdiscovery/nuclei-templates/tree/main/http/cves/2020/CVE-2020-16248.yaml 2026-01-25 21:03:01+00:00| seen| https://bsky.app/profile/beikokucyber.bsky.social/post/3mdbmvmjmq52c...

CVE-2026-0927

creationtimestamp| type| source ---|---|--- 2026-01-23 07:23:16+00:00| seen| https://gist.github.com/Darkcrai86/30221df75e8d29c4c44a72efd5f3ce5b 2026-01-23 07:44:49+00:00| seen| https://gist.github.com/Darkcrai86/f6ceca6b6f5861138955c1b1e47ded28 2026-01-23 07:59:20+00:00| seen|...

Command Injection

Overview @sunwood-ai-labs/github-kanban-mcp-server is an A Model Context Protocol server for managing GitHub issues as Kanban using gh CLI Affected versions of this package are vulnerable to Command Injection via the createissue parameter. An attacker can execute arbitrary code in the context of...

CVE-2026-0756

github-kanban-mcp-server execAsync Command Injection Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of github-kanban-mcp-server. Authentication is not required to exploit this vulnerability. The specific flaw...

CVE-2026-0756 github-kanban-mcp-server execAsync Command Injection Remote Code Execution Vulnerability

github-kanban-mcp-server execAsync Command Injection Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of github-kanban-mcp-server. Authentication is not required to exploit this vulnerability. The specific flaw...

CVE-2026-0756

The CVE-2026-0756 issue affects github-kanban-mcp-server and stems from improper validation of the create_issue input before it is used in a system call, allowing an attacker to execute arbitrary code with the service account privileges, with no authentication required. References indicate this i...

CVE-2026-0756 github-kanban-mcp-server execAsync Command Injection Remote Code Execution Vulnerability

github-kanban-mcp-server execAsync Command Injection Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of github-kanban-mcp-server. Authentication is not required to exploit this vulnerability. The specific flaw...