24h | 7d | 30d

CVE-2026-2413

Overview

  • elemntor
  • Ally – Web Accessibility & Usability
11 Mar 2026
Published
11 Mar 2026
Updated
CVSS v3.1
HIGH (7.5)
EPSS
Pending
KEV

Description

The Ally – Web Accessibility & Usability plugin for WordPress is vulnerable to SQL Injection via the URL path in all versions up to, and including, 4.0.3. This is due to insufficient escaping on the user-supplied URL parameter in the `get_global_remediations()` method, where it is directly concatenated into an SQL JOIN clause without proper sanitization for SQL context. While `esc_url_raw()` is applied for URL safety, it does not prevent SQL metacharacters (single quotes, parentheses) from being injected. This makes it possible for unauthenticated attackers to append additional SQL queries into already existing queries that can be used to extract sensitive information from the database via time-based blind SQL injection techniques. The Remediation module must be active, which requires the plugin to be connected to an Elementor account.

Statistics

  • 5 Posts
  • 1 Interaction
Last activity: 15 hours ago

Fediverse

Profile picture fallback
TechNadu @technadu

Vulnerability alert.
A high-severity SQL injection flaw (CVE-2026-2413) in the Ally WordPress Plugin from Elementor could expose data from 250K+ sites.
Patch available in v4.1.0.

Source: bleepingcomputer.com/news/secu

Follow @technadu for security updates.

  • 0
  • 1
  • 0
  • 22h ago
Profile picture fallback
Undercode News @undercodenews

Critical SQL Injection Vulnerability Found in Ally WordPress Plugin Threatens 400,000+ Sites

Introduction: Rising Risks in WordPress Accessibility Tools A serious security flaw has been discovered in Ally, a popular WordPress plugin designed to improve website accessibility. The vulnerability, identified as CVE-2026-2413 and carrying a CVSS score of 7.5, could allow attackers to steal sensitive data from thousands of websites. With over 400,000 active installations,…

undercodenews.com/critical-sql

  • 0
  • 0
  • 0
  • 22h ago
Profile picture fallback
Bernhard Biedermann @Bied

#WordPress und die PlugIn Hölle. 😵‍💫

"The plugin is used on over 400,000 WordPress sites." 😭

"An unauthenticated SQL injection flaw, tracked as CVE-2026-2413 (CVSS score 7.5), in Ally plugin could allow attackers to steal sensitive data. The offensive security engineer Drew Webber at Acquia discovered the vulnerability on February 4, 2026."

CVE-2026-2413 (CVSS score 7.5)

"Users are urged to update to Ally version 4.1.0 to mitigate the risk."

securityaffairs.com/189354/sec

#WordPress

  • 0
  • 0
  • 0
  • 15h ago

Bluesky

Profile picture fallback
TechNadu @technadu.com
Security alert. A SQL injection vulnerability (CVE-2026-2413) in the Ally WordPress Plugin from Elementor could affect 250K+ WordPress sites. Admins are urged to update to v4.1.0. Follow TechNadu for cybersecurity updates. #CyberSecurity #WordPress
  • 0
  • 0
  • 0
  • 22h ago
Profile picture fallback
Cybersecurity News Everyday @hendryadrian.bsky.social
A SQL injection flaw (CVE-2026-2413) in the Ally WordPress plugin exposed over 200,000 sites to data extraction via time-based blind SQL attacks. Ally 4.1.0 patch adds sanitization, but 60% remain vulnerable. #WordPress #SQLInjection #USA
  • 0
  • 0
  • 0
  • 19h ago

CVE-2025-68613

Overview

  • n8n-io
  • n8n
19 Dec 2025
Published
12 Mar 2026
Updated
CVSS v3.1
CRITICAL (10.0)
EPSS
78.98%
KEV

Description

n8n is an open source workflow automation platform. Versions starting with 0.211.0 and prior to 1.120.4, 1.121.1, and 1.122.0 contain a critical Remote Code Execution (RCE) vulnerability in their workflow expression evaluation system. Under certain conditions, expressions supplied by authenticated users during workflow configuration may be evaluated in an execution context that is not sufficiently isolated from the underlying runtime. An authenticated attacker could abuse this behavior to execute arbitrary code with the privileges of the n8n process. Successful exploitation may lead to full compromise of the affected instance, including unauthorized access to sensitive data, modification of workflows, and execution of system-level operations. This issue has been fixed in versions 1.120.4, 1.121.1, and 1.122.0. Users are strongly advised to upgrade to a patched version, which introduces additional safeguards to restrict expression evaluation. If upgrading is not immediately possible, administrators should consider the following temporary mitigations: Limit workflow creation and editing permissions to fully trusted users only; and/or deploy n8n in a hardened environment with restricted operating system privileges and network access to reduce the impact of potential exploitation. These workarounds do not fully eliminate the risk and should only be used as short-term measures.

Statistics

  • 4 Posts
  • 5 Interactions
Last activity: 5 hours ago

Fediverse

Profile picture fallback
jbz @jbz

⚠️ CISA Flags Actively Exploited n8n RCE Bug as 24,700 Instances Remain Exposed

「 The vulnerability, tracked as CVE-2025-68613 (CVSS score: 9.9), concerns a case of expression injection that leads to remote code execution. The security shortcoming was patched by n8n in December 2025 in versions 1.120.4, 1.121.1, and 1.122.0. CVE-2025-68613 is the first n8n vulnerability to be placed in the KEV catalog 」
thehackernews.com/2026/03/cisa

#n8n #cisa #rce #cybersecurity

  • 2
  • 0
  • 0
  • 6h ago

Bluesky

Profile picture fallback
Calimeg @calimegai.bsky.social
🚨 CISA signale une faille critique RCE dans #n8n (CVE-2025-68613, score 9.9), toujours active sur 24 700 instances. Correctif déjà disponible. #CyberSecurity #Automatisation
  • 1
  • 1
  • 0
  • 5h ago
Profile picture fallback
Information Security Briefly @infosecbriefly.bsky.social
CISA mandates immediate patching of CVE-2025-68613, a critical 9.9-severity remote code execution vulnerability in n8n workflow automation platform affecting over 103,000 users.
  • 0
  • 1
  • 0
  • 22h ago
Profile picture fallback
Modat @modat-io.bsky.social
⚠️️ CISA added CVE-2025-68613 (CVSS 10.0) to KEV. Together with CVE-2026-27577 & CVE-2026-27493, n8n workflow expression flaws allow remote code execution and credential theft, potentially leading to full instance compromise. Patch now.  Query: web.title~"n8n.io - Workflow Automation" tag!=honeypot
  • 0
  • 0
  • 0
  • 17h ago

CVE-2026-3909

Overview

  • Google
  • Chrome
12 Mar 2026
Published
12 Mar 2026
Updated
CVSS
Pending
EPSS
Pending
KEV

Description

Out of bounds write in Skia in Google Chrome prior to 146.0.7680.75 allowed a remote attacker to perform out of bounds memory access via a crafted HTML page. (Chromium security severity: High)

Statistics

  • 7 Posts
  • 1 Interaction
Last activity: Last hour

Fediverse

Profile picture fallback
VulDB :verified: @vuldb

A new vulnerability with increased severity was disclosed for Google Chrome (CVE-2026-3909) vuldb.com/?id.350787

  • 0
  • 0
  • 0
  • 5h ago
Profile picture fallback
Neil E. Hodges @tk
@tresronours@parlote.facil.services:

Two Newly Discovered Chrome Zero-Days Exploited in the Wild to Run Malicious Code


Google has released an urgent security update for its Chrome desktop browser to address two critical zero-day vulnerabilities. Tracked as CVE-2026-3909 and CVE-2026-3910, both flaws are categorized as high-severity and are confirmed to be actively exploited by attackers in the wild. Users are strongly advised to update their browsers immediately to protect against potential malicious […]

The post Two Newly Discovered Chrome Zero-Days Exploited in the Wild to Run Malicious Code appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.
posted by pod_feeder

  • 0
  • 0
  • 0
  • 3h ago

Bluesky

Profile picture fallback
Sam Stepanyan @securestep9.bsky.social
#Chrome: Google released security updates for its Chrome web browser to address two high-severity #zeroday #vulnerabilities CVE-2026-3909 & CVE-2026-3910 that it said have been exploited in the wild. Make sure to update your Chrome today! (restart it): 👇
  • 1
  • 0
  • 1
  • Last hour
Profile picture fallback
ohhara @shiojiri.com
ゼロデイ2つか > "Google is aware that exploits for both CVE-2026-3909 & CVE-2026-3910 exist in the wild."
  • 0
  • 0
  • 0
  • 10h ago
Profile picture fallback
SecQube | Harvey | AI Platform for MS Graph @secqube.com
Active exploitation of Chrome zero-days CVE-2026-3909 and CVE-2026-3910 highlights the urgency of endpoint visibility in your SOC. The Skia flaw allows boundary errors leading to code execution, while V8's implementation issue compromises systems remotely.
  • 0
  • 0
  • 0
  • 3h ago
Profile picture fallback
Cybersecurity News Everyday @hendryadrian.bsky.social
Google released an emergency Chrome 146 update fixing two zero-day exploits: an out-of-bounds write in Skia (CVE-2026-3909) and a V8 engine flaw (CVE-2026-3910), patched on multiple platforms. #ZeroDay #ChromeUpdate #USA
  • 0
  • 0
  • 0
  • 2h ago

CVE-2026-3910

Overview

  • Google
  • Chrome
12 Mar 2026
Published
12 Mar 2026
Updated
CVSS
Pending
EPSS
Pending
KEV

Description

Inappropriate implementation in V8 in Google Chrome prior to 146.0.7680.75 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. (Chromium security severity: High)

Statistics

  • 7 Posts
  • 1 Interaction
Last activity: Last hour

Fediverse

Profile picture fallback
VulDB :verified: @vuldb

A severe vulnerability was disclosed for Google Chrome (CVE-2026-3910) vuldb.com/?id.350788

  • 0
  • 0
  • 0
  • 6h ago
Profile picture fallback
Neil E. Hodges @tk
@tresronours@parlote.facil.services:

Two Newly Discovered Chrome Zero-Days Exploited in the Wild to Run Malicious Code


Google has released an urgent security update for its Chrome desktop browser to address two critical zero-day vulnerabilities. Tracked as CVE-2026-3909 and CVE-2026-3910, both flaws are categorized as high-severity and are confirmed to be actively exploited by attackers in the wild. Users are strongly advised to update their browsers immediately to protect against potential malicious […]

The post Two Newly Discovered Chrome Zero-Days Exploited in the Wild to Run Malicious Code appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.
posted by pod_feeder

  • 0
  • 0
  • 0
  • 3h ago

Bluesky

Profile picture fallback
Sam Stepanyan @securestep9.bsky.social
#Chrome: Google released security updates for its Chrome web browser to address two high-severity #zeroday #vulnerabilities CVE-2026-3909 & CVE-2026-3910 that it said have been exploited in the wild. Make sure to update your Chrome today! (restart it): 👇
  • 1
  • 0
  • 1
  • Last hour
Profile picture fallback
ohhara @shiojiri.com
ゼロデイ2つか > "Google is aware that exploits for both CVE-2026-3909 & CVE-2026-3910 exist in the wild."
  • 0
  • 0
  • 0
  • 10h ago
Profile picture fallback
SecQube | Harvey | AI Platform for MS Graph @secqube.com
Active exploitation of Chrome zero-days CVE-2026-3909 and CVE-2026-3910 highlights the urgency of endpoint visibility in your SOC. The Skia flaw allows boundary errors leading to code execution, while V8's implementation issue compromises systems remotely.
  • 0
  • 0
  • 0
  • 3h ago
Profile picture fallback
Cybersecurity News Everyday @hendryadrian.bsky.social
Google released an emergency Chrome 146 update fixing two zero-day exploits: an out-of-bounds write in Skia (CVE-2026-3909) and a V8 engine flaw (CVE-2026-3910), patched on multiple platforms. #ZeroDay #ChromeUpdate #USA
  • 0
  • 0
  • 0
  • 2h ago

CVE-2026-20127

Overview

  • Cisco
  • Cisco Catalyst SD-WAN Manager
25 Feb 2026
Published
26 Feb 2026
Updated
CVSS v3.1
CRITICAL (10.0)
EPSS
2.60%
KEV

Description

A vulnerability in the peering authentication in Cisco Catalyst SD-WAN Controller, formerly SD-WAN vSmart, and Cisco Catalyst SD-WAN Manager, formerly SD-WAN vManage, could allow an unauthenticated, remote attacker to bypass authentication and obtain administrative privileges on an affected system. This vulnerability exists because the peering authentication mechanism in an affected system is not working properly. An attacker could exploit this vulnerability by sending crafted requests to an affected system. A successful exploit could allow the attacker to log in to an affected Cisco Catalyst SD-WAN Controller as an internal, high-privileged, non-root user account. Using this account, the attacker could access NETCONF, which would then allow the attacker to manipulate network configuration for the SD-WAN fabric. 

Statistics

  • 3 Posts
  • 1 Interaction
Last activity: Last hour

Fediverse

Profile picture fallback
Daniel Kuhl ✌🏻☮️☕️ @daniel1820815

Check your deployments about Cisco Catalyst SD-WAN Controller and Manager Authentication Bypass Vulnerability: cisa.gov/known-exploited-vulne

How to mitigate in Cisco SD-WAN Systems can be found here: cisa.gov/news-events/directive

  • 0
  • 0
  • 0
  • 4h ago
Profile picture fallback
Hackread.com @Hackread

US agencies face a CISA deadline to secure networks after a critical Cisco SD-WAN flaw (CVE-2026-20127) exposed federal systems to long-term intrusion and admin access.

Read: hackread.com/us-agencies-cisa-

#CyberSecurity #Cisco #SDWAN #CISA #Vulnerability

  • 0
  • 0
  • 0
  • Last hour

Bluesky

Profile picture fallback
Hackread.com @hackread.bsky.social
US agencies face a CISA deadline to secure networks after a critical Cisco SD-WAN flaw (CVE-2026-20127) exposed federal systems to long-term intrusion and admin access. Read: hackread.com/us-agencies-... #CyberSecurity #Cisco #SDWAN #CISA #Vulnerability
  • 1
  • 0
  • 0
  • Last hour

CVE-2026-21262

Overview

  • Microsoft
  • Microsoft SQL Server 2016 Service Pack 3 (GDR)
10 Mar 2026
Published
12 Mar 2026
Updated
CVSS v3.1
HIGH (8.8)
EPSS
0.08%
KEV

Description

Improper access control in SQL Server allows an authorized attacker to elevate privileges over a network.

Statistics

  • 3 Posts
  • 2 Interactions
Last activity: 6 hours ago

Fediverse

Profile picture fallback
Chris Short @ChrisShort

March 2026 Microsoft Patch Tuesday | Tenable® #devopsish tenable.com/blog/microsofts-ma

  • 0
  • 0
  • 0
  • 22h ago

Bluesky

Profile picture fallback
OpsMatters @opsmatters.com
The latest update for #CyCognito includes "Emerging Threat: Microsoft SQL Server Elevation of Privilege Vulnerability (CVE-2026-21262)" and "CyCognito Named a Leader and Outperformer in the 2026 #GigaOm Radar for ASM". #cybersecurity #AttackSurfaceManagement #EASM https://opsmtrs.com/44Srq0X
  • 1
  • 1
  • 0
  • 6h ago
Profile picture fallback
NEWSTECNICAS | Tecnología , IA y Gaming @newstecnicas.info.ve
Microsoft corrige Zero-Day crítico en SQL Server que permite a atacantes tomar el control total como admin | CVE-2026-21262 www.newstecnicas.info.ve/2026/03/micr...
  • 0
  • 0
  • 0
  • 21h ago

CVE-2026-20163

Overview

  • Splunk
  • Splunk Enterprise
11 Mar 2026
Published
12 Mar 2026
Updated
CVSS v3.1
HIGH (8.0)
EPSS
Pending
KEV

Description

In Splunk Enterprise versions below 10.2.0, 10.0.4, 9.4.9, and 9.3.10, and Splunk Cloud Platform versions below 10.2.2510.5, 10.0.2503.12, 10.1.2507.16, and 9.3.2411.124, a user who holds a role that contains the high-privilege capability `edit_cmd` could execute arbitrary shell commands using the `unarchive_cmd` parameter for the `/splunkd/__upload/indexing/preview` REST endpoint.

Statistics

  • 2 Posts
  • 1 Interaction
Last activity: 2 hours ago

Fediverse

Profile picture fallback
Bug Bounty Shorts @BugBountyShorts

Critical Splunk RCE Vulnerability (CVE-2026–20163) Lets Attackers Run Shell Commands on Your Server
The discovered vulnerability is a Remote Code Execution (RCE) in Splunk, a popular data processing software. The flaw stems from insufficient input validation in the application's search interface. By constructing a crafted search query, an attacker can exploit the vulnerability and execute arbitrary shell commands on the target server. Specifically, an attacker can utilize the 'enableJavaScript' and 'enableCookies' search commands to trigger the RCE. When the search interface receives a request, it inadvertently executes JavaScript provided by the attacker, enabling further exploitation. The impact of this vulnerability is severe, as it allows unauthorized execution of commands with the privileges of the Splunk user, potentially leading to data breaches or unauthorized access. The researcher received a $15,000 bounty from Splunk for reporting this critical issue. To remediate, Splunk suggests implementing input validation and sanitization for user-supplied search queries. Key lesson: Always validate user inputs to prevent RCE attacks.

medium.com/@EternalSec/critica

  • 0
  • 0
  • 0
  • 2h ago

Bluesky

Profile picture fallback
Securitycipher @securitycipher.bsky.social
Critical Splunk RCE Vulnerability (CVE-2026–20163) Lets Attackers Run Shell Commands on Your Server https://medium.com/@EternalSec/critical-splunk-rce-vulnerability-cve-2026-20163-lets-attackers-run-shell-commands-on-your-server-244fcbe3497d?source=rss------bug_bounty-5
  • 0
  • 1
  • 0
  • 2h ago

CVE-2026-20040

Overview

  • Cisco
  • Cisco IOS XR Software
11 Mar 2026
Published
12 Mar 2026
Updated
CVSS v3.1
HIGH (8.8)
EPSS
Pending
KEV

Description

A vulnerability in the CLI of Cisco IOS XR Software could allow an authenticated, local attacker to execute arbitrary commands as root on the underlying operating system of an affected device. This vulnerability is due to insufficient validation of user arguments that are passed to specific CLI commands. An attacker with a low-privileged account could exploit this vulnerability by using crafted commands at the prompt. A successful exploit could allow the attacker to elevate privileges to root and execute arbitrary commands on the underlying operating system.

Statistics

  • 3 Posts
Last activity: 6 hours ago

Bluesky

Profile picture fallback
ohhara @shiojiri.com
シスコ、IOS XRソフトウェアにおける深刻度Highの脆弱性4件にパッチ(CVE-2026-20040他) | Codebook|Security News https://codebook.machinarecord.com/threatreport/silobreaker-cyber-alert/44562/
  • 0
  • 0
  • 0
  • 6h ago
Profile picture fallback
PCI Guru @jbhall56.bsky.social
The most severe of these issues are CVE-2026-20040 and CVE-2026-20046 (CVSS score of 8.8), two bugs that could be exploited to execute arbitrary commands as root or gain administrative control of a device. www.securityweek.com/cisco-patche...
  • 0
  • 0
  • 1
  • 23h ago

CVE-2026-27141

Overview

  • golang.org/x/net
  • golang.org/x/net/http2
  • golang.org/x/net/http2
26 Feb 2026
Published
27 Feb 2026
Updated
CVSS
Pending
EPSS
Pending
KEV

Description

Due to missing nil check, sending 0x0a-0x0f HTTP/2 frames will cause a running server to panic

Statistics

  • 1 Post
  • 6 Interactions
Last activity: 11 hours ago

Fediverse

Profile picture fallback
DB Tech @dbtechyt

Traefik v2.11.40 is out! It includes a CRITICAL security fix for CVE-2026-27141. Update your instances NOW to keep your self-hosted setup secure! Also bumps Docker & Golang dependencies.

github.com/traefik/traefik/rel

#selfhosted #homelab

  • 4
  • 2
  • 0
  • 11h ago

CVE-2026-3677

Overview

  • Tenda
  • FH451
07 Mar 2026
Published
11 Mar 2026
Updated
CVSS v4.0
HIGH (8.7)
EPSS
Pending
KEV

Description

A vulnerability was found in Tenda FH451 1.0.0.9. This impacts the function fromSetCfm of the file /goform/setcfm. The manipulation of the argument funcname/funcpara1 results in stack-based buffer overflow. The attack may be performed from remote. The exploit has been made public and could be used.

Statistics

  • 1 Post
  • 2 Interactions
Last activity: 9 hours ago

Bluesky

Profile picture fallback
SecQube | Harvey | AI Platform for MS Graph @secqube.com
CVE-2026-3677 - Tenda FH451 setcfm fromSetCfm stack-based overflow scq.ms/4rTWrMv
  • 2
  • 0
  • 0
  • 9h ago
Showing 1 to 10 of 78 CVEs