24h | 7d | 30d

CVE-2026-3300

Overview

  • WPEverest
  • Everest Forms Pro
31 Mar 2026
Published
08 Apr 2026
Updated
CVSS v3.1
CRITICAL (9.8)
EPSS
0.33%
KEV

Description

The Everest Forms Pro plugin for WordPress is vulnerable to Remote Code Execution via PHP Code Injection in all versions up to, and including, 1.9.12. This is due to the Calculation Addon's process_filter() function concatenating user-submitted form field values into a PHP code string without proper escaping before passing it to eval(). The sanitize_text_field() function applied to input does not escape single quotes or other PHP code context characters. This makes it possible for unauthenticated attackers to inject and execute arbitrary PHP code on the server by submitting a crafted value in any string-type form field (text, email, URL, select, radio) when a form uses the "Complex Calculation" feature.

Statistics

  • 1 Post
Last activity: 13 hours ago

Fediverse

Profile picture fallback
ekiledjian @edwardk

Hackers are actively exploiting a critical vulnerability (CVE-2026-3300) in the Everest Forms Pro plugin to execute arbitrary code and seize administrative control of WordPress websites. Users should update to the patched version immediately and scan their systems for suspicious accounts like 'diksimarina'.
bleepingcomputer.com/news/secu

  • 0
  • 0
  • 0
  • 13h ago

CVE-2026-11451

Overview

  • GL.iNet
  • GL-MT3000
07 Jun 2026
Published
07 Jun 2026
Updated
CVSS v4.0
MEDIUM (6.9)
EPSS
0.99%
KEV

Description

A flaw has been found in GL.iNet GL-MT3000 4.4.5. This impacts the function snprintf of the file /cgi-bin/glc of the component FTP Protocol Handler. Executing a manipulation of the argument media_dir can lead to command injection. It is possible to launch the attack remotely. Upgrading to version 4.8.1 will fix this issue. You should upgrade the affected component. The vendor explains: "In version 4.8.1, before writing media_dir to the FTP configuration command, the code escapes single quotes using escape_single_quote(). The payloads in the report—which rely on closing a single quote, appending commands with a semicolon, and commenting out the tail with #—cannot escape execution under the current code path. We also verified this on a GL‑MT3000 device running firmware version 4.8.1 using similar payloads calling the /NAS_API_SET_PROTO_CONFIG interface. Although the interface returned success, the marker file intended to prove command execution was not created; the payload was written into /etc/vsftpd.conf only as ordinary configuration content and did not trigger any shell command execution. Therefore, with the current firmware version and default runtime environment, we could not reproduce the claimed “unauthorized command injection in set_proto_config”."

Statistics

  • 1 Post
Last activity: 19 hours ago

Fediverse

Profile picture fallback
OffSequence @offseq

CVE-2026-11451: MEDIUM severity command injection in GL.iNet GL-MT3000 (v4.4.5). 🛡️ Remote attackers can exploit FTP handler via media_dir. Fixed in 4.8.1 — update now! radar.offseq.com/threat/cve-20

  • 0
  • 0
  • 0
  • 19h ago

CVE-2026-50232

Overview

  • LMS Community
  • Lyrion Music Server
05 Jun 2026
Published
05 Jun 2026
Updated
CVSS v4.0
MEDIUM (5.1)
EPSS
0.03%
KEV

Description

Lyrion Music Server 9.2.0 contains a stored cross-site scripting vulnerability that allows attackers to inject malicious scripts through media file metadata tags like GENRE, ARTIST, and ALBUM. Attackers can craft files with XSS payloads in metadata tags that execute in the web interface when users view track information or play files, enabling access to management functions and settings disclosure.

Statistics

  • 1 Post
Last activity: 9 hours ago

Fediverse

Profile picture fallback
Hugo | DevOps | Cybersecurity @hugovalters

CVE-2026-50232 - Stored XSS in Lyrion Music Server 9.2.0. Malicious scripts via metadata tags like GENRE, ARTIST, ALBUM. CVSS 7.2. No patch available. Disable metadata previews or isolate until patch. #CVE #Lyrion #infosec

valtersit.com/cve/CVE-2026-502

  • 0
  • 0
  • 0
  • 9h ago

CVE-2026-11344

Overview

  • code-projects
  • Vehicle Management System
05 Jun 2026
Published
05 Jun 2026
Updated
CVSS v4.0
MEDIUM (6.9)
EPSS
0.04%
KEV

Description

A vulnerability was found in code-projects Vehicle Management System 1.0. This impacts an unknown function of the file newdriver.php of the component New Driver Registration Form. Performing a manipulation of the argument photo results in unrestricted upload. The attack may be initiated remotely. The exploit has been made public and could be used.

Statistics

  • 1 Post
Last activity: 14 hours ago

Fediverse

Profile picture fallback
Hugo | DevOps | Cybersecurity @hugovalters

CVE-2026-11344 - Arbitrary file upload in Code-Projects Vehicle Management System. Unrestricted upload via newdriver.php. CVSS 7.3. Exploit public. No patch available. Isolate immediately. #CVE #infosec #cybersecurity

valtersit.com/cve/CVE-2026-113

  • 0
  • 0
  • 0
  • 14h ago

CVE-2026-10580

Overview

  • hippooo
  • Hippoo Mobile App for WooCommerce
05 Jun 2026
Published
06 Jun 2026
Updated
CVSS v3.1
CRITICAL (9.8)
EPSS
0.27%
KEV

Description

The Hippoo Mobile App for WooCommerce plugin for WordPress is vulnerable to Authentication Bypass leading to Administrator Account Takeover in all versions up to and including 1.9.4. This is due to a logic conflation in HippooPermissions::get_user_permissions(), which returns the same null sentinel for both administrators and unauthenticated visitors — a value that HippooPermissions::has_role_access() unconditionally interprets as full administrator access — causing override_extension_permission_callback() to assign __return_true as the permission callback for every WordPress and WooCommerce REST route cloned under /wc-hippoo/v1/ext/ by HippooControllerWithAuth::re_register_external_routes(), while the block_unauthorized_access() pre-dispatch guard fails to block unauthenticated users for the same reason. This makes it possible for unauthenticated attackers to invoke any core REST endpoint without credentials — most critically, sending a POST request to /wc-hippoo/v1/ext/wp/v2/users/<id> with a {"password":"<new_password>"} body to reset the password of any WordPress user, including the site administrator, and gain full administrative control of the site.

Statistics

  • 1 Post
Last activity: 12 hours ago

Fediverse

Profile picture fallback
Hugo | DevOps | Cybersecurity @hugovalters

CVE-2026-10580 - Critical Authentication Bypass in Hippoo WordPress plugin. Flaw conflates admin and unauthenticated user permissions, allowing full admin takeover. CVSS 9.8. No patch available. Disable plugin now. #CVE #WordPress #infosec

valtersit.com/cve/CVE-2026-105

  • 0
  • 0
  • 0
  • 12h ago

CVE-2026-8053

Overview

  • MongoDB, Inc.
  • MongoDB Server
12 May 2026
Published
14 May 2026
Updated
CVSS v4.0
HIGH (8.7)
EPSS
0.09%
KEV

Description

An issue in MongoDB Server's time-series collection implementation allows an authenticated user with database write privileges to trigger an out-of-bounds memory write in the mongod process. The issue results from an inconsistency in the internal field-name-to-index mapping within the time-series bucket catalog. Under certain conditions this can result in arbitrary code execution. This issue impacts MongoDB Server v5.0 versions prior to 5.0.33, v6.0 versions prior to 6.0.28, v7.0 versions prior to 7.0.34, v8.0 versions prior to 8.0.23, v8.2 versions prior to 8.2.9 and v8.3 versions prior to 8.3.2.

Statistics

  • 1 Post
Last activity: 16 hours ago

Bluesky

Profile picture fallback
Emeric HUNTER @theemerichunter.bsky.social
CVE-2026-8053: Thinking your MongoDB is safe 'cause you don't use time-series? Think again! When memory goes wild, your best case is a wonky night with postmortems, worst case: your data's wide open for an impromptu performance all night long!
  • 0
  • 0
  • 0
  • 16h ago

CVE-2026-42945

Overview

  • F5
  • NGINX Plus
13 May 2026
Published
21 May 2026
Updated
CVSS v3.1
HIGH (8.1)
EPSS
0.29%
KEV

Description

NGINX Plus and NGINX Open Source have a vulnerability in the ngx_http_rewrite_module module. This vulnerability exists when the rewrite directive is followed by a rewrite, if, or set directive and an unnamed Perl-Compatible Regular Expression (PCRE) capture (for example, $1, $2) with a replacement string that includes a question mark (?). An unauthenticated attacker along with conditions beyond its control can exploit this vulnerability by sending crafted HTTP requests. This may cause a heap buffer overflow in the NGINX worker process leading to a restart. Additionally, attackers can execute code on systems with Address Space Layout Randomization (ASLR) disabled or when the attacker can bypass ASLR.  Note: Software versions which have reached End of Technical Support (EoTS) are not evaluated.

Statistics

  • 1 Post
Last activity: 6 hours ago

Fediverse

Profile picture fallback
Benedikt Heine @bebehei

@j0nas Vielleicht Debian 12? Selbst nginx RIFT ist da noch rausgepatcht worden: security-tracker.debian.org/tr

Wenn man so nginx versionen in den Fehlerseiten liest, denken die meissten Leute, OMG ist es alt, aber oft ist's einfach Debian und nur halb so wild.

  • 0
  • 0
  • 0
  • 6h ago

CVE-2022-0492

Overview

  • kernel
03 Mar 2022
Published
03 Jun 2026
Updated
CVSS
Pending
EPSS
28.12%
KEV

Description

A vulnerability was found in the Linux kernel’s cgroup_release_agent_write in the kernel/cgroup/cgroup-v1.c function. This flaw, under certain circumstances, allows the use of the cgroups v1 release_agent feature to escalate privileges and bypass the namespace isolation unexpectedly.

Statistics

  • 1 Post
Last activity: 13 hours ago

Fediverse

Profile picture fallback
ekiledjian @edwardk

CISA has added the Linux kernel vulnerability CVE-2022-0492 to its Known Exploited Vulnerabilities catalog due to its use in privilege escalation attacks. This flaw allows attackers to manipulate cgroups to gain root-level access or escape containerized environments.
cybersecuritynews.com/linux-ke

  • 0
  • 0
  • 0
  • 13h ago
Showing 21 to 28 of 28 CVEs