Overview
Description
Statistics
- 2 Posts
Fediverse
π CVE-2026-23742 - High (8.8)
Skipper is an HTTP router and reverse proxy for service composition. The default skipper configuration before 0.23.0 was -lua-sources=inline,file. The problem starts if untrusted users can create lua filters, because of -lua-sources=inline , for e...
π https://www.thehackerwire.com/vulnerability/CVE-2026-23742/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
Overview
- Fortinet
- FortiSIEM
Description
Statistics
- 1 Post
Overview
- rofl0r
- proxychains-ng
- proxychains-ng
Description
Statistics
- 1 Post
Overview
- LabRedesCefetRJ
- WeGIA
Description
Statistics
- 2 Posts
Fediverse
π΄ CVE-2026-23722 - Critical (9.1)
WeGIA is a Web Manager for Charitable Institutions. Prior to 3.6.2, a Reflected Cross-Site Scripting (XSS) vulnerability was discovered in the WeGIA system, specifically within the html/memorando/insere_despacho.php file. The application fails to ...
π https://www.thehackerwire.com/vulnerability/CVE-2026-23722/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
Overview
Description
Statistics
- 1 Post
Overview
- bee interactive
- Livewire Filemanager
Description
Statistics
- 1 Post
Fediverse
π CVE-2025-14894 - High (7.5)
Livewire Filemanager, commonly used in Laravel applications, contains LivewireFilemanagerComponent.php, which does not perform file type and MIME validation, allowing for RCE through upload of a malicious php file that can then be executed via the...
π https://www.thehackerwire.com/vulnerability/CVE-2025-14894/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
Overview
- TheLibrarian
- TheLibrarian.io
Description
Statistics
- 1 Post
Fediverse
π CVE-2026-0613 - High (7.5)
The Librarian contains an internal port scanning vulnerability, facilitated by the `web_fetch` tool, which can be used with SSRF-style behavior to perform GET requests to internal IP addresses and services, enabling scanning of the Hertzner cloud ...
π https://www.thehackerwire.com/vulnerability/CVE-2026-0613/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
Overview
Description
Statistics
- 1 Post
Fediverse
π CVE-2025-69581 - High (7.5)
An issue was discovered in Chamillo LMS 1.11.2. The Social Network /personal_data endpoint exposes full sensitive user information even after logout because proper cache-control is missing. Using the browser back button restores all personal data,...
π https://www.thehackerwire.com/vulnerability/CVE-2025-69581/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
Overview
- kraftplugins
- Demo Importer Plus
Description
Statistics
- 1 Post
Fediverse
π CVE-2025-14478 - High (7.5)
The Demo Importer Plus plugin for WordPress is vulnerable to XML External Entity Injection (XXE) in all versions up to, and including, 2.0.9 via the SVG file upload functionality. This makes it possible for authenticated attackers, with Author-lev...
π https://www.thehackerwire.com/vulnerability/CVE-2025-14478/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
Overview
- Apache Software Foundation
- Apache bRPC
Description
Statistics
- 2 Posts
Fediverse
π΄ CVE-2025-60021 - Critical (9.8)
Remote command injection vulnerability in heap profiler builtin service in Apache bRPC ((all versions < 1.15.0)) on all platforms allows attacker to inject remote command.
Root Cause: The bRPC heap profiler built-in service (/pprof/heap) doe...
π https://www.thehackerwire.com/vulnerability/CVE-2025-60021/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack