24h | 7d | 30d

Overview

  • itsourcecode
  • Society Management System

02 Mar 2026
Published
02 Mar 2026
Updated

CVSS v4.0
MEDIUM (6.9)
EPSS
0.03%

KEV

Description

A weakness has been identified in itsourcecode Society Management System 1.0. Affected by this vulnerability is an unknown functionality of the file /admin/check_studid.php. Executing a manipulation of the argument student_id can lead to sql injection. The attack may be launched remotely. The exploit has been made available to the public and could be used for attacks.

Statistics

  • 1 Post

Last activity: 21 hours ago

Bluesky

Profile picture fallback
๐Ÿ“Œ CVE-2026-3410 - A weakness has been identified in itsourcecode Society Management System 1.0. Affected by this vulnerability is an unknown functionality of the file /... https://www.cyberhub.blog/cves/CVE-2026-3410
  • 0
  • 0
  • 0
  • 21h ago

Overview

  • kiteworks
  • security-advisories

27 Feb 2026
Published
03 Mar 2026
Updated

CVSS v3.1
HIGH (8.1)
EPSS
0.03%

KEV

Description

Kiteworks is a private data network (PDN). Prior to version 9.2.0, a vulnerability in Kiteworks Email Protection Gateway allows authenticated administrators to inject malicious scripts through a configuration interface. The stored script executes when users interact with the affected user interface. Version 9.2.0 contains a patch for the issue.

Statistics

  • 1 Post

Last activity: 6 hours ago

Bluesky

Profile picture fallback
๐Ÿ“Œ CVE-2026-28272 - Kiteworks is a private data network (PDN). Prior to version 9.2.0, a vulnerability in Kiteworks Email Protection Gateway allows authenticated administ... https://www.cyberhub.blog/cves/CVE-2026-28272
  • 0
  • 0
  • 0
  • 6h ago

Overview

  • MongoDB Inc
  • MongoDB Server

10 Feb 2026
Published
11 Feb 2026
Updated

CVSS v4.0
HIGH (8.7)
EPSS
0.05%

KEV

Description

A series of specifically crafted, unauthenticated messages can exhaust available memory and crash a MongoDB server.

Statistics

  • 1 Post

Last activity: 2 hours ago

Bluesky

Profile picture fallback
The latest update for #CatoNetworks includes "Cato CTRL Threat Research: New #MongoDB Vulnerability Allows Instant Remote Server Takedown (CVE-2026-25611)" and "From Alerts to Action: Dynamic Prevention". #Cybersecurity #SASE https://opsmtrs.com/3M0ijCj
  • 0
  • 0
  • 0
  • 2h ago

Overview

  • LabRedesCefetRJ
  • WeGIA

27 Feb 2026
Published
02 Mar 2026
Updated

CVSS v3.1
CRITICAL (9.8)
EPSS
0.27%

KEV

Description

WeGIA is a web manager for charitable institutions. Prior to version 3.6.5, an unsafe use of the `extract()` function on the `$_REQUEST` superglobal allows an unauthenticated attacker to overwrite local variables in multiple PHP scripts. This vulnerability can be leveraged to completely bypass authentication checks, allowing unauthorized access to administrative and protected areas of the WeGIA application. Version 3.6.5 fixes the issue.

Statistics

  • 1 Post

Last activity: 12 hours ago

Bluesky

Profile picture fallback
๐Ÿ“Œ CVE-2026-28411 - WeGIA is a web manager for charitable institutions. Prior to version 3.6.5, an unsafe use of the `extract()` function on the `$_REQUEST` superglobal a... https://www.cyberhub.blog/cves/CVE-2026-28411
  • 0
  • 0
  • 0
  • 12h ago

Overview

  • Qualcomm, Inc.
  • Snapdragon

02 Mar 2026
Published
02 Mar 2026
Updated

CVSS v3.1
HIGH (7.8)
EPSS
0.02%

KEV

Description

Memory Corruption when accessing buffers with invalid length during TA invocation.

Statistics

  • 1 Post

Last activity: 8 hours ago

Bluesky

Profile picture fallback
๐Ÿ“Œ CVE-2025-47373 - Memory Corruption when accessing buffers with invalid length during TA invocation. https://www.cyberhub.blog/cves/CVE-2025-47373
  • 0
  • 0
  • 0
  • 8h ago

Overview

  • Ivanti
  • Connect Secure

08 Jan 2025
Published
21 Oct 2025
Updated

CVSS v3.1
CRITICAL (9.0)
EPSS
94.18%

Description

A stack-based buffer overflow in Ivanti Connect Secure before version 22.7R2.5, Ivanti Policy Secure before version 22.7R1.2, and Ivanti Neurons for ZTA gateways before version 22.7R2.3 allows a remote unauthenticated attacker to achieve remote code execution.

Statistics

  • 1 Post

Last activity: 13 hours ago

Bluesky

Profile picture fallback
Malware RESURGE colpisce Ivanti: come difendersi subito dalla zero-day ๐Ÿ“Œ Link all'articolo : www.redhotcyber.com/post/mal... #redhotcyber #news #cybersecurity #hacking #malware #ransomware #cisa #vulnerabilita #cve20250282 #rootkit
  • 0
  • 0
  • 0
  • 13h ago

Overview

  • Qualcomm, Inc.
  • Snapdragon

02 Mar 2026
Published
03 Mar 2026
Updated

CVSS v3.1
HIGH (7.2)
EPSS
0.04%

KEV

Description

Weak configuration may lead to cryptographic issue when a VoWiFi call is triggered from UE.

Statistics

  • 1 Post

Last activity: 7 hours ago

Bluesky

Profile picture fallback
๐Ÿ“Œ CVE-2025-47383 - Weak configuration may lead to cryptographic issue when a VoWiFi call is triggered from UE. https://www.cyberhub.blog/cves/CVE-2025-47383
  • 0
  • 0
  • 0
  • 7h ago

Overview

  • Juniper Networks
  • Junos OS Evolved

25 Feb 2026
Published
04 Mar 2026
Updated

CVSS v3.1
CRITICAL (9.8)
EPSS
0.28%

KEV

Description

An Incorrect Permission Assignment for Critical Resource vulnerability in the On-Box Anomaly detection framework of Juniper Networks Junos OS Evolved on PTX Series allows an unauthenticated, network-based attacker to execute code as root. The On-Box Anomaly detection framework should only be reachable by other internal processes over the internal routing instance, but not over an externally exposed port. With the ability to access and manipulate the service to execute code as root a remote attacker can take complete control of the device. Please note that this service is enabled by default as no specific configuration is required. This issue affects Junos OS Evolved on PTX Series: * 25.4 versions before 25.4R1-S1-EVO, 25.4R2-EVO. This issue does not affect Junos OS Evolved versions before 25.4R1-EVO. This issue does not affect Junos OS.

Statistics

  • 1 Post

Last activity: 15 hours ago

Bluesky

Profile picture fallback
๐Ÿ“Œ Junos OS Evolved Vulnerability (CVE-2026-21902 RCE) Detailed by watchTowr Labs https://www.cyberhub.blog/article/20676-junos-os-evolved-vulnerability-cve-2026-21902-rce-detailed-by-watchtowr-labs
  • 0
  • 0
  • 0
  • 15h ago

Overview

  • VMware
  • VMware Aria Operations
  • vmware-aria-operations

25 Feb 2026
Published
26 Feb 2026
Updated

CVSS v3.1
HIGH (8.0)
EPSS
0.08%

KEV

Description

VMware Aria Operations contains a stored cross-site scripting vulnerability. A malicious actor with privileges to create custom benchmarks may be able to inject script to perform administrative actions in VMware Aria Operations.ย  To remediate CVE-2026-22720, apply the patches listed in the 'Fixed Version' column of the 'Response Matrix' ofย  VMSA-2026-0001 https://support.broadcom.com/web/ecx/support-content-notification/-/external/content/SecurityAdvisories/0/36947https:// .

Statistics

  • 1 Post

Last activity: 10 hours ago

Bluesky

Profile picture fallback
๐Ÿ“Œ CVE-2026-22720 - VMware Aria Operations contains a stored cross-site scripting vulnerability. A malicious actor with privileges to create custom benchmarks may be able... https://www.cyberhub.blog/cves/CVE-2026-22720
  • 0
  • 0
  • 0
  • 10h ago

Overview

  • AMD
  • AMD EPYCโ„ข 9004 Series Processors

06 Sep 2025
Published
03 Nov 2025
Updated

CVSS v3.1
LOW (3.2)
EPSS
0.02%

KEV

Description

Improper initialization of CPU cache memory could allow a privileged attacker with hypervisor access to overwrite SEV-SNP guest memory resulting in loss of data integrity.

Statistics

  • 1 Post

Last activity: 8 hours ago

Bluesky

Profile picture fallback
๐Ÿšจ #Ubuntu 24.04 LTS (Azure) CRITICAL Kernel Update USN-8074-1 is LIVE. This patches a SEV-SNP data integrity flaw (CVE-2024-36331) where a hypervisor could overwrite "secure" guest memory. Plus 150+ other CVEs. Read more: ๐Ÿ‘‰ tinyurl.com/42ukrdhj #Security
  • 0
  • 0
  • 0
  • 8h ago
Showing 31 to 40 of 71 CVEs