Overview
Description
Statistics
- 5 Posts
- 7 Interactions
Fediverse
15-Year-Old Linux Kernel GhostLock Flaw Lets Local Users Gain Root
CVE-2026-43499, dubbed GhostLock by Nebula Security, exposes a long-standing Linux kernel futex bug that can lead to local root access.
#kernel #linux-&-open-source-news #software #vulnerability
https://linuxiac.com/15-year-old-linux-kernel-ghostlock-flaw-lets-local-users-gain-root/
Bluesky
Overview
- djangoproject
- Django
- django
Description
Statistics
- 2 Posts
- 2 Interactions
Fediverse
CVE-2026-1207 is a Django SQL injection flaw (CVSS 8.3) in PostGIS raster lookups. Canada's CCCS says it is exploited in the wild. Patch now.
Overview
- Foxit Software Inc.
- Foxit PDF Editor
Description
Statistics
- 2 Posts
- 1 Interaction
Fediverse
Foxit Foxit Reader Javascript checkbox CBF_Widget code execution vulnerability (CVE-2026-57256)
(Hope this is just a temporary problem with the bot and I don't have to touch the HTML parser :P)
RE: https://infosec.place/objects/48afd31c-35ab-4cfa-b28d-4a27e66c1259
Overview
- Dell
- PowerFlex Manager
Description
Statistics
- 2 Posts
Fediverse
We have just added an important vulnerability affecting Dell PowerFlex Manager (CVE-2026-56688) https://vuldb.com/vuln/377475
Dell PowerFlex Manager <5.1.0.1 faces CRITICAL OS command injection (CVE-2026-56688, CVSS 9.1). High-priv attackers can execute root commands — full compromise risk. No patch yet. Limit admin remote access & monitor activity. https://radar.offseq.com/threat/cve-2026-56688-cwe-78-improper-neutralization-of-s-de5ccc00f15b9022 #OffSeq #Dell #Vuln #Infosec
Overview
- Microsoft
- Windows 10 Version 1607
Description
Statistics
- 7 Posts
Fediverse
Our research team is back looking at CVE-2026-47291 - a CVSS 9.8 RCE bug in #Windows HTTP.sys. They show root cause and look at why detection may be just as hard as exploitation. https://www.zerodayinitiative.com/blog/2026/7/9/cve-2026-47291-remote-code-execution-in-the-windows-httpsys
Overview
Description
Statistics
- 2 Posts
Bluesky
Overview
- Microsoft
- Microsoft Malware Protection Engine
Description
Statistics
- 2 Posts
Bluesky
Overview
Description
Statistics
- 1 Post
- 1 Interaction
Fediverse
Sysdig documented JADEPUFFER, the first agentic ransomware run end-to-end by an AI agent. It breached Langflow via CVE-2025-3248 and extorted a database.
#JADEPUFFER #AgenticRansomware #AI #Ransomware #Langflow #Sysdig #CyberSecurity #InfoSec
Overview
- pechenki
- TelSender – Сontact form 7, Events, Wpforms, ninja forms and woocommerce to telegram bot
Description
Statistics
- 1 Post
- 1 Interaction
Fediverse
CVE-2026-15298 - DOM-Based XSS in Telsender WordPress plugin up to 1.14.14. Unauthenticated attackers can inject scripts via Telegram chat titles, executing when admin clicks "Tested". CVSS 7.2. No patch available. Disable plugin until fixed. #CVE #WordPress #infosec
Overview
- hoppscotch
- hoppscotch
Description
Statistics
- 1 Post
- 1 Interaction
Fediverse
CVE-2026-59721 - OS Command Injection in Hoppscotch. CVSS 7.2. Admin can execute arbitrary commands as root via SMTP config. Upgrade to 2026.6.0 immediately. #CVE #Hoppscotch #infosec