24h | 7d | 30d

Overview

  • Linux
  • Linux

21 May 2026
Published
08 Jul 2026
Updated

CVSS v3.1
HIGH (7.8)
EPSS
0.12%

KEV

Description

In the Linux kernel, the following vulnerability has been resolved: rtmutex: Use waiter::task instead of current in remove_waiter() remove_waiter() is used by the slowlock paths, but it is also used for proxy-lock rollback in rt_mutex_start_proxy_lock() when invoked from futex_requeue(). In the latter case waiter::task is not current, but remove_waiter() operates on current for the dequeue operation. That results in several problems: 1) the rbtree dequeue happens without waiter::task::pi_lock being held 2) the waiter task's pi_blocked_on state is not cleared, which leaves a dangling pointer primed for UAF around. 3) rt_mutex_adjust_prio_chain() operates on the wrong top priority waiter task Use waiter::task instead of current in all related operations in remove_waiter() to cure those problems. [ tglx: Fixup rt_mutex_adjust_prio_chain(), add a comment and amend the changelog ]

Statistics

  • 4 Posts
  • 1 Interaction

Last activity: 5 hours ago

Fediverse

Profile picture fallback

GhostLock (CVE-2026-43499): a use-after-free in the Linux kernel, shipped by default since 2011 and disclosed this week. Any logged-in user gets full root in about five seconds, and it escapes containers.
The story isn't that it exists, it's how reliable it is. Daniel Bechenea, security manager at Pentest-Tools.com:
"An exploit reported at 97% reliable, with public code anyone can run, changes that math."
Kernel privesc used to be the exploit you thought twice about firing. A near-deterministic one with public code removes the hesitation.
Patch to a fixed kernel now. Until it reaches every host, treat any code execution on an unpatched box as root and verify the kernel version per system. Don't assume the April fix propagated.
Full breakdown by Emma Woollacott at ITPro: itpro.com/software/linux/cyber

  • 1
  • 0
  • 0
  • 5h ago
Profile picture fallback

A Linux kernel vulnerability went undetected across nearly all major Linux distributions for more than 15 years before being patched earlier this year.
Tracked as CVE-2026-43499 and dubbed GhostLock, the flaw allows an unprivileged local attacker to escalate privileges to root and escape containerized environments. Linux users are advised to install the latest kernel updates from their distribution.

  • 0
  • 0
  • 0
  • 13h ago
Profile picture fallback

A newly disclosed Linux kernel vulnerability, GhostLock (CVE-2026-43499), has existed in most Linux distributions since 2011. Researchers have published a working exploit with a reported 97% success rate, making prompt patching a priority for affected systems.

Story here: techfinitive.com/check-your-ke

#Cybersecurity #Linux #VulnerabilityManagement

  • 0
  • 0
  • 0
  • 6h ago

Overview

  • balbooa.com
  • balbooa.com Balbooa Forms extension for Joomla

09 Jul 2026
Published
11 Jul 2026
Updated

CVSS v4.0
CRITICAL (10.0)
EPSS
0.84%

Description

The Joomla extension Balbooa Forms is vulnerable to an unauthenticated arbitrary file upload that allows uploading executable files and leads to full RCE.

Statistics

  • 3 Posts
  • 3 Interactions

Last activity: 2 hours ago

Fediverse

Profile picture fallback

📰 CISA Adds Two Actively Exploited Joomla Plugin Flaws to KEV Catalog

📢 CISA KEV UPDATE: Two Joomla plugin vulnerabilities are now listed as actively exploited. CVE-2026-48939 (iCagenda) & CVE-2026-56291 (Balbooa Forms) allow file uploads and server takeover. Patch immediately! #CISA #KEV #Joomla #Vulnerability

🌐 cyber[.]netsecops[.]io

🔗 cyber.netsecops.io/articles/ci

  • 0
  • 0
  • 0
  • 2h ago

Bluesky

Profile picture fallback
The latest update for #CyCognito includes "Emerging Threat: (CVE-2026-56291) Balbooa Forms Remote Code Execution via Unauthenticated File Upload". #cybersecurity #AttackSurfaceManagement #EASM https://opsmtrs.com/44Srq0X
  • 1
  • 2
  • 0
  • 17h ago
Profile picture fallback
CISA flags active RCE exploitation in Joomla extensions iCagenda and Balbooa Forms. Arbitrary file upload flaws in CVE-2026-48939 and CVE-2026-56291 can lead to full site compromise. #Joomla #iCagenda #BalbooaForms
  • 0
  • 0
  • 0
  • 2h ago

Overview

  • Microsoft Corporation
  • Office/WordPad

12 Apr 2017
Published
21 Oct 2025
Updated

CVSS
Pending
EPSS
99.93%

Description

Microsoft Office 2007 SP3, Microsoft Office 2010 SP2, Microsoft Office 2013 SP1, Microsoft Office 2016, Microsoft Windows Vista SP2, Windows Server 2008 SP2, Windows 7 SP1, Windows 8.1 allow remote attackers to execute arbitrary code via a crafted document, aka "Microsoft Office/WordPad Remote Code Execution Vulnerability w/Windows API."

Statistics

  • 2 Posts
  • 1 Interaction

Last activity: 9 hours ago

Bluesky

Profile picture fallback
Phishing emails posing as money transfer confirmations lure users into opening malicious XLS files that exploit CVE-2017-0199, drop PowerShell, and install Remcos RAT for remote access and theft. #Korea #Phishing #RemcosRAT
  • 0
  • 1
  • 0
  • 13h ago
Profile picture fallback
~Asec~ Phishing emails disguised as payment confirmations deliver Remcos RAT via CVE-2017-0199 exploiting OLE objects in malicious XLS files. - ...
  • 0
  • 0
  • 0
  • 9h ago

Overview

  • WAGO
  • 0765-110x/0100-0000

13 Jul 2026
Published
13 Jul 2026
Updated

CVSS v4.0
CRITICAL (9.3)
EPSS
0.45%

KEV

Description

Certain devices in the WAGO System I/O Field series activate an internal diagnostic capability during the initial startup sequence. This functionality is not formally documented and becomes accessible without authentication for a brief period in the early boot phase. During this window, an unauthenticated remote attacker can gain access to the internal system processes, resulting in full system compromise.

Statistics

  • 2 Posts

Last activity: 13 hours ago

Fediverse

Profile picture fallback

VDE-2026-031
WAGO: Early-Boot Diagnostic Exposure in WAGO System I/O Field Devices

Certain devices in the WAGO System I/O Field series enable an internal diagnostic capability during the initial stages of system startup. This behavior, which is not part of the publicly documented feature set, briefly allows access to system functions before the main operating environment becomes fully active. Under specific conditions, this could permit interactions with system components that are normally protected during regular operation.
CVE-2026-4769

certvde.com/en/advisories/vde-

wago.csaf-tp.certvde.com/.well

  • 0
  • 0
  • 0
  • 14h ago
Profile picture fallback

CVE-2026-4769 exposes WAGO System I/O field devices. An early-boot flaw lets an unauthenticated attacker reach full system compromise.

securityonline.info/wago-syste

  • 0
  • 0
  • 0
  • 13h ago

Overview

  • wpdatatables
  • wpDataTables – WordPress Data Table, Dynamic Tables & Table Charts Plugin

20 Apr 2026
Published
21 Apr 2026
Updated

CVSS v3.1
MEDIUM (4.7)
EPSS
0.27%

KEV

Description

The wpDataTables – WordPress Data Table, Dynamic Tables & Table Charts Plugin plugin for WordPress is vulnerable to Stored Cross-Site Scripting in all versions up to, and including, 6.5.0.4. This is due to insufficient input sanitization and output escaping in the prepareCellOutput() method of the LinkWDTColumn, ImageWDTColumn, and EmailWDTColumn classes. This makes it possible for unauthenticated attackers to inject arbitrary web scripts in pages that will execute whenever a user accesses an injected page, given that they can trick an Administrator into importing data from an attacker-controlled source and the affected column types (Link, Image, or Email) are configured.

Statistics

  • 2 Posts

Last activity: 6 hours ago

Bluesky

Profile picture fallback
CVE-2026-5721 exposes RabbitMQ’s OAuth secret via an unauthenticated management endpoint, enabling impersonation and administrator token theft when OAuth client secrets are configured.
  • 0
  • 0
  • 0
  • 9h ago
Profile picture fallback
RabbitMQ flaws CVE-2026-5721 and CVE-2026-57221 can expose OAuth secrets and enable queue and exchange enumeration, raising risks in shared or internet-exposed deployments. #RabbitMQ #OAuth #CVE2026
  • 0
  • 0
  • 0
  • 6h ago

Overview

  • wpdevteam
  • Essential Addons for Elementor – Popular Elementor Templates & Widgets

11 Jul 2026
Published
11 Jul 2026
Updated

CVSS v3.1
HIGH (8.8)
EPSS
0.37%

KEV

Description

The Essential Addons for Elementor – Popular Elementor Templates & Widgets plugin for WordPress is vulnerable to Authenticated Account Takeover via Email Header Injection in all versions up to, and including, 6.6.10 This is due to insufficient server-side validation of a Login/Register widget setting used to construct outgoing email headers — the allowed-values restriction is enforced only in the client-side editor UI and not on the server, and the applied sanitization does not strip or encode CR/LF characters, allowing CRLF sequences stored in that setting to survive into raw mail headers. This makes it possible for authenticated attackers, with Contributor-level access and above, to inject an additional Bcc header into the WordPress administrator's password-reset notification email, receive a copy of a valid administrator password-reset link, and achieve full administrator account takeover.

Statistics

  • 1 Post
  • 2 Interactions

Last activity: 16 hours ago

Fediverse

Profile picture fallback

CVE-2026-15155 - Critical Email Header Injection in Essential Addons for Elementor. Allows authenticated account takeover. CVSS 8.8. No patch available. Disable login/register widget immediately. #CVE #WordPress #infosec

valtersit.com/cve/CVE-2026-151

  • 1
  • 1
  • 0
  • 16h ago

Overview

  • Apache Software Foundation
  • Apache Log4j API
  • org.apache.logging.log4j:log4j-api

10 Jul 2026
Published
10 Jul 2026
Updated

CVSS v4.0
MEDIUM (6.3)
EPSS
0.78%

KEV

Description

Improper encoding of non-finite floating-point values during MapMessage JSON serialization in Apache Log4j API produces output that is not valid JSON. This issue affects Apache Log4j API versions 2.13.1 through 2.25.4 and version 2.26.0. The fix for CVE-2026-34481 did not cover all code paths: when a MapMessage contains a non-finite IEEE 754 value (NaN, Infinity, or -Infinity), MapMessage.asJson() emits the corresponding bare token. RFC 8259 does not permit these tokens, so a conformant parser rejects the resulting document. The defect is reachable only when both of the following conditions hold: * The application uses the message resolver https://logging.apache.org/log4j/2.x/manual/json-template-layout.html#event-template-resolver-message of JsonTemplateLayout or any other layout that relies on MapMessage.asJson() or MapMessage.getFormattedMessage(new String[]{"JSON"}). * The application logs a MapMessage that contains an attacker-controlled floating-point value. An attacker who can supply a non-finite value can cause the affected layout to emit malformed JSON, which may corrupt the enclosing log record or disrupt downstream log ingestion and parsing. Users are advised to upgrade to Apache Log4j API 2.25.5 or 2.26.1, both of which emit RFC 8259-compliant JSON for non-finite values.

Statistics

  • 1 Post
  • 1 Interaction

Last activity: 21 hours ago

Fediverse

Profile picture fallback

A new Apache Log4j flaw, CVE-2026-49844, makes log4j-api emit invalid JSON from non-finite numbers. Patch to 2.25.5 or 2.26.1 now.

securityonline.info/apache-log

  • 1
  • 0
  • 0
  • 21h ago

Overview

  • SecureAge
  • CatchPulse

12 Jul 2026
Published
13 Jul 2026
Updated

CVSS v4.0
HIGH (8.5)
EPSS
0.18%

KEV

Description

A security vulnerability has been detected in SecureAge CatchPulse up to 10.9.3. The affected element is an unknown function in the library saappctl.sys of the component Driver. Such manipulation leads to heap-based buffer overflow. An attack has to be approached locally. The exploit has been disclosed publicly and may be used. The vendor was contacted early about this disclosure.

Statistics

  • 1 Post
  • 1 Interaction

Last activity: 18 hours ago

Fediverse

Profile picture fallback

CVE-2026-15506: HIGH severity heap-based buffer overflow in SecureAge CatchPulse (v10.9.0 – 10.9.3, saappctl.sys). Exploitable by local attackers for code execution or DoS. No patch yet — restrict access & monitor updates. radar.offseq.com/threat/cve-20

  • 1
  • 0
  • 0
  • 18h ago

Overview

  • Microsoft
  • Microsoft Edge (Chromium-based)

12 Jul 2026
Published
13 Jul 2026
Updated

CVSS v3.1
HIGH (8.3)
EPSS
0.46%

KEV

Description

Untrusted pointer dereference in Microsoft Edge (Chromium-based) allows an unauthorized attacker to elevate privileges over a network.

Statistics

  • 1 Post
  • 1 Interaction

Last activity: 15 hours ago

Fediverse

Profile picture fallback

CVE-2026-58596 (HIGH, CVSS 8.3): Microsoft Edge (Chromium-based) suffers from untrusted pointer dereference, enabling remote privilege escalation. Patch ASAP: radar.offseq.com/threat/cve-20 🛡️

  • 0
  • 1
  • 0
  • 15h ago

Overview

  • Hydro-Québec
  • Le Circuit Electrique charging station backend

10 Jul 2026
Published
10 Jul 2026
Updated

CVSS v3.1
CRITICAL (9.8)
EPSS
0.52%

KEV

Description

The charging station websocket endpoint accepts connections without proper authentication, which could lead to privilege escalation.

Statistics

  • 1 Post

Last activity: 8 hours ago

Fediverse

Profile picture fallback

A critical privilege escalation flaw (CVE-2026-20744) affects Hydro-Québec EV charging stations. Learn how this vulnerability impacts the backend.

securityonline.info/cve-2026-2

  • 0
  • 0
  • 0
  • 8h ago
Showing 1 to 10 of 31 CVEs