PT-2026-41523

🔒 CyberSecurity CVE-2026-20241: Cisco SD-WAN Sixth Zero-Day of 2026 — Detection and Hardening G… "Active exploitation of CVE-2026-20241 marks the 6th Cisco SD-WAN zero-day this year." 🔗 https://t.co/KYmOaJdFr3 CyberSecurity ThreatIntel cve zeroday patchtuesday...

PT-2026-23417

Name of the Vulnerable Software and Affected Versions Everon affected versions not specified Description The software’s WebSocket endpoints do not have sufficient authentication, allowing attackers to impersonate charging stations and manipulate data sent to the backend. An unauthenticated attack...

PT-2026-2856

Name of the Vulnerable Software and Affected Versions Substance3D - Stager versions 3.1.6 and earlier Description A flaw exists in Substance3D - Stager that involves an out-of-bounds read when processing a specially crafted file. This could allow an attacker to read beyond the boundaries of...

Exploit for Insufficient Type Distinction in Rarlab Winrar

CVE Exploit Finder Author: Your Name/Handle Focus: Automated V...

Exploit for Improper Input Validation in Atlassian Confluence_Data_Center

LetsDefend-SOC235-Atlassian-Confluence-Broken-Access-Control-0...

CL0P-Linked Hackers Breach Dozens of Organizations Through Oracle Software Flaw

Dozens of organizations may have been impacted following the zero-day exploitation of a security flaw in Oracle's E-Business Suite EBS software since August 9, 2025, Google Threat Intelligence Group GTIG and Mandiant said in a new report released Thursday. "We're still assessing the scope of this...

Report Links Los Pollos and RichAds to Malware Traffic Operations

New research by Infoblox Threat Intel exposes a hidden alliance between major cybercrime groups like VexTrio and seemingly…...

Malicious code in eu.netherlands3d.address-search (npm)

The package communicates with a domain associated with malicious activity. --- -= Per source details. Do not edit below this line.=- Source: ghsa-malware f727ab240e8ede9cc0244f08ca9bd30bf5f5d1275e1e93940d6758c3523ee989 Any computer that has this package installed or running should be considered...

WordPress LearnPress Unauthenticated SQLi (CVE-2024-8522, CVE-2024-8529)

The LearnPress WordPress LMS Plugin up to version 4.2.7 is vulnerable to SQL injection via the 'conlyfields' and 'cfields' parameters. This allows unauthenticated attackers to exploit blind SQL injections and extract sensitive information. Module Options msf use...

CVE-2024-38213

creationtimestamp| type| source ---|---|--- 2024-08-13 18:05:01+00:00| seen| https://www.thezdi.com/blog/2024/8/13/the-august-2024-security-update-review 2024-08-13 21:10:03+00:00| seen| MISP/3c19819c-1dac-4ef2-bfed-be5efa7e0123 2024-08-13 21:18:28+00:00| seen| https://t.me/cvedetector/3060...

CVE-2024-27564

creationtimestamp| type| source ---|---|--- 2024-03-05 18:27:07+00:00| seen| https://t.me/ctinow/200547 2024-03-05 18:27:14+00:00| seen| https://t.me/ctinow/200553 2025-01-22 00:00:00+00:00| exploited| The Shadowserver honeypot/exploited-vulnerabilities - 2025-01-22 2025-01-23 00:00:00+00:00|...

WordPress Abandoned Cart Lite for WooCommerce Plugin < 5.15.2 Authentication Bypass Vulnerability

The WordPress plugin SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:tychesoftwares:abandonedcartliteforwoocommerce"; if...

Wordfence Intelligence Weekly WordPress Vulnerability Report (October 16, 2023 to October 22, 2023)

Last week, there were 109 vulnerabilities disclosed in 95 WordPress Plugins and 1 WordPress theme that have been added to the Wordfence Intelligence Vulnerability Database, and there were 39 Vulnerability Researchers that contributed to WordPress Security last week. Review those vulnerabilities i...

WordPress Directorist 7.5.4 Insecure Direct Object Reference / Privilege Escalation

Alongside our usual work to discover, report, and remediate vulnerabilities in the WordPress ecosystem, the WordPress Threat Intelligence team has been conducting a deep-dive into WordPress plugin code with the objective of finding methods to bypass authentication and gain elevated privileges in...

Malicious code in py-hydrasupernvidia (PyPI)

--- -= Per source details. Do not edit below this line.=- Source: checkmarx 0c2985252eb35fa8ed921ea0dfe36688f9c800c7110cfcf26845a93f7b85a2d2 EsqueleSquad group published nearly 6000 malicious PyPi and NPM packages, executing spyware and information-stealing malware...

Exploit for Expression Language Injection in Atlassian Confluence_Data_Center

Confluence RCE CVE-2022-26134 Exploit Detection Pre-requ...

S1EM - This Project Is A SIEM With SIRP And Threat Intel, All In One

Today, cyber attacks are more numerous and cause damage in companies. Nevertheless, many software products exist to detect cyber threats. The S1EM solution is based on the principle of bringing together the best products in their field, free of charge, and making them quickly interoperable. S1EM ...

WordPress 99robots Header Footer Code Manager 1.1.16 Cross Site Scripting Vulnerability

The Wordfence Threat Intelligence team responsibly disclosed a reflected Cross-Site Scripting XSS vulnerability in Header Footer Code Manager, a WordPress plugin with over 300,000 installations. The plugin publisher quickly acknowledged our initial contact and we sent the full disclosure details...

Exploit for Uncontrolled Resource Consumption in Siemens 6Bk1602-0Aa12-0Tp0_Firmware

CVE-2021-44228: Log4j / Log4Shell Security Research Summary...

Arrests of members of Tetrade seed groups Grandoreiro and Melcoz

Spains Ministry of the Interior has announced the arrest of 16 individuals connected to the Grandoreiro and Melcoz also known as Mekotio cybercrime groups. Both are originally from Brazil and form part of the Tetrade umbrella, operating for a few years now in Latin America and Western Europe...