Lucene search
+L

351864 matches found

The Hacker News
The Hacker News
added 1 hour ago5 views

ACR Stealer Uses ClickFix Lures to Steal Browser Tokens and Microsoft 365 Files

ACR Stealer, an infostealer in circulation since 2024, is walking out of enterprise networks with saved browser passwords, live session tokens, PDFs, Microsoft 365 documents, and files from synced OneDrive and SharePoint folders. It gets in because someone pasted a command into a Run box and...

6.4AI score
Exploits0
The Hacker News
The Hacker News
added 1 hour ago4 views

New GoSerpent Malware Targets Southeast Asian Governments and Diplomats for Espionage

Cybersecurity researchers have discovered a previously undocumented malware called GoSerpent that has been put to use in cyber attacks targeting entities in Southeast Asia since late 2025 with a focus on long-term access and intelligence gathering. Russian cybersecurity company Kaspersky, which...

6.1AI score
Exploits0
Circl
Circl
added 3 hours ago1 views

CVE-2018-14816

creationtimestamp| type| source ---|---|--- 2026-07-17 07:00:04+00:00| seen| Telegram/pS736wy1q4JTpyQ27GThkrd-KM7MPYTW9rtTHg4MZzf-Jty...

9.8CVSS8.3AI score0.0413EPSS
Exploits0
Circl
Circl
added 3 hours ago1 views

CVE-2018-5359

creationtimestamp| type| source ---|---|--- 2026-07-17 07:00:04+00:00| seen| Telegram/k80Taa8IY7nxLnumeY-H3x3jlcrPeyDdpP7VuHsdGYbQmc...

9.3CVSS7.7AI score0.08996EPSS
Exploits4
Circl
Circl
added 3 hours ago3 views

CVE-2026-13352

creationtimestamp| type| source ---|---|--- 2026-07-17 06:55:32+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mqt67iafs42k...

8.8CVSS4.8AI score
Exploits0References1
Circl
Circl
added 3 hours ago3 views

CVE-2026-59173

creationtimestamp| type| source ---|---|--- 2026-07-17 06:39:19+00:00| seen| https://bsky.app/profile/infosec.skyfleet.blue/post/3mqt5cimvnh2p...

4.9AI score
Exploits0References1
Circl
Circl
added 3 hours ago3 views

CVE-2026-62764

creationtimestamp| type| source ---|---|--- 2026-07-17 06:34:18+00:00| seen| https://bsky.app/profile/infosec.skyfleet.blue/post/3mqt4zjdzoo2e...

5.7CVSS4.8AI score
Exploits0References1
Circl
Circl
added 4 hours ago7 views

CVE-2026-15982

creationtimestamp| type| source ---|---|--- 2026-07-17 05:50:05+00:00| seen| https://bsky.app/profile/stackflag.bsky.social/post/3mqt2kgy3tm2y 2026-07-17 06:00:28+00:00| seen| https://infosec.exchange/users/offseq/statuses/116933789451136259 2026-07-17 06:00:30+00:00| seen|...

9.8CVSS4.8AI score
Exploits0References4
NVD
NVD
added 5 hours ago6 views

CVE-2026-15457

The Kirki – Freeform Page Builder, Website Builder & Customizer plugin for WordPress is vulnerable to Directory Traversal in all versions up to, and including, 6.0.13 via the 'family' parameter. This makes it possible for authenticated attackers, with editor-level access and above, to delete...

4.9CVSS
Exploits0References10
NVD
NVD
added 5 hours ago5 views

CVE-2026-13765

The LearnPress – WordPress LMS Plugin for Create and Sell Online Courses plugin for WordPress is vulnerable to Sensitive Information Exposure in all versions up to, and including, 4.4.1 via the checkanswer. This makes it possible for unauthenticated attackers to extract the correct-answer markers...

7.5CVSS
Exploits0References14
Circl
Circl
added 5 hours ago7 views

CVE-2026-9046

creationtimestamp| type| source ---|---|--- 2026-07-17 05:13:21+00:00| seen| https://bsky.app/profile/hugovalters.bsky.social/post/3mqsyirmdtq2e 2026-07-17 05:13:36+00:00| seen| https://mastodon.social/users/hugovalters/statuses/116933605175540875...

7.3CVSS6.1AI score
Exploits0References2
Circl
Circl
added 5 hours ago7 views

CVE-2004-2761

creationtimestamp| type| source ---|---|--- 2026-07-17 05:00:09+00:00| seen| https://t.me/PositiveTechnologies/355...

9.8CVSS6.1AI score0.09854EPSS
Exploits0References1
Circl
Circl
added 5 hours ago6 views

CVE-2022-26383

creationtimestamp| type| source ---|---|--- 2026-07-17 05:00:09+00:00| seen| https://t.me/EchelonEyes/38...

4.3CVSS6.1AI score0.00655EPSS
Exploits0References1
Circl
Circl
added 5 hours ago7 views

CVE-2022-24044

creationtimestamp| type| source ---|---|--- 2026-07-17 05:00:05+00:00| seen| https://t.me/EchelonEyes/276...

7.5CVSS6.1AI score0.00844EPSS
Exploits0References1
Circl
Circl
added 5 hours ago6 views

CVE-2022-24043

creationtimestamp| type| source ---|---|--- 2026-07-17 05:00:05+00:00| seen| https://t.me/EchelonEyes/276...

5.3CVSS6.1AI score0.01012EPSS
Exploits0References1
Circl
Circl
added 5 hours ago7 views

CVE-2022-24045

creationtimestamp| type| source ---|---|--- 2026-07-17 05:00:05+00:00| seen| https://t.me/EchelonEyes/276...

6.5CVSS6.1AI score0.00573EPSS
Exploits0References1
NVD
NVD
added 6 hours ago7 views

CVE-2026-8616

The Fense Proxy & VPN Blocker plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check and missing nonce validation on the fensebpvtsavesettings function in versions up to, and including, 3.0.1. The callback is registered to both wpajax and...

5.3CVSS
Exploits0References4
Circl
Circl
added 6 hours ago3 views

CVE-2026-24227

creationtimestamp| type| source ---|---|--- 2026-07-17 03:46:04+00:00| seen| https://bsky.app/profile/stackflag.bsky.social/post/3mqstmpirax2a...

9.8CVSS6.1AI score0.00482EPSS
Exploits0References1
Circl
Circl
added 6 hours ago4 views

CVE-2026-62387

creationtimestamp| type| source ---|---|--- 2026-07-17 03:45:17+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mqstlcndcq2n...

7.1CVSS6.1AI score
Exploits0References1
Cvelist
Cvelist
added 6 hours ago6 views

CVE-2026-13765 LearnPress <= 4.4.1 - Missing Authorization to Unauthenticated Sensitive Information Exposure via /lp/v1/users/check-answer and /start-quiz REST Endpoints

The LearnPress – WordPress LMS Plugin for Create and Sell Online Courses plugin for WordPress is vulnerable to Sensitive Information Exposure in all versions up to, and including, 4.4.1 via the checkanswer. This makes it possible for unauthenticated attackers to extract the correct-answer markers...

7.5CVSS
Exploits0References14
Rows per page
Query Builder