Aggregator

CVE-2024-50459 | HM Plugin Stripe Donation and Payment Plugin up to 3.2.3 on WordPress authorization

Vuldb Updates
4 days 6 hours ago
A vulnerability classified as problematic was found in HM Plugin Stripe Donation and Payment Plugin up to 3.2.3 on WordPress. Affected by this vulnerability is an unknown functionality. Executing a manipulation can lead to missing authorization. This vulnerability is handled as CVE-2024-50459. The attack can be executed remotely. There is not any exploit available.
vuldb.com

SOHO router compromise leads to DNS hijacking and adversary-in-the-middle attacks

Threat intelligence | Microsoft Security Blog
4 days 7 hours ago

Executive summary Forest Blizzard, a threat actor linked to the Russian military, has been compromising insecure home and small-office internet equipment like routers, then modifying their settings in ways that turn them into part of the actor’s malicious infrastructure.

The post SOHO router compromise leads to DNS hijacking and adversary-in-the-middle attacks appeared first on Microsoft Security Blog.

Microsoft Threat Intelligence

SOHO router compromise leads to DNS hijacking and adversary-in-the-middle attacks

Threat intelligence | Microsoft Security Blog
4 days 7 hours ago

Executive summary Forest Blizzard, a threat actor linked to the Russian military, has been compromising insecure home and small-office internet equipment like routers, then modifying their settings in ways that turn them into part of the actor’s malicious infrastructure.

The post SOHO router compromise leads to DNS hijacking and adversary-in-the-middle attacks appeared first on Microsoft Security Blog.

Microsoft Threat Intelligence

Major outage cripples Russian banking apps and metro payments nationwide

Security Affairs
4 days 7 hours ago
A major outage hit Russian banking apps and payments, blocking card use, cash withdrawals, and mobile access for hours. A widespread outage disrupted banking apps and payment systems across Russia, leaving customers unable to pay by card, withdraw cash, or access mobile banking for hours. According to The Record Media, the incident affected major banks, […]
Pierluigi Paganini

CVE-2026-5627 | mintplex-labs anything-llm up to 1.12.0 AgentFlows index.js loadFlow/deleteFlow path traversal

VulDB Recent Entries
4 days 7 hours ago
A vulnerability categorized as problematic has been discovered in mintplex-labs anything-llm up to 1.12.0. This affects the function loadFlow/deleteFlow of the file server/utils/agentFlows/index.js of the component AgentFlows. Such manipulation leads to path traversal: '\..\filename'. This vulnerability is listed as CVE-2026-5627. The attack may be performed from remote. There is no available exploit. It is advisable to upgrade the affected component.
vuldb.com

CVE-2026-5741 | suvarchal docker-mcp-server up to 0.1.0 HTTP Interface src/index.ts stop_container/remove_container/pull_image os command injection

VulDB Recent Entries
4 days 7 hours ago
A vulnerability was found in suvarchal docker-mcp-server up to 0.1.0. It has been rated as critical. The impacted element is the function stop_container/remove_container/pull_image of the file src/index.ts of the component HTTP Interface. This manipulation causes os command injection. This vulnerability is tracked as CVE-2026-5741. The attack is possible to be carried out remotely. Moreover, an exploit is present. The project was informed of the problem early through an issue report but has not responded yet.
vuldb.com

CVE-2026-5739 | PowerJob 5.1.0/5.1.1/5.1.2 OpenAPI Endpoint /openApi/addWorkflowNode GroovyEvaluator.evaluate nodeParams code injection (Issue 1168)

VulDB Recent Entries
4 days 7 hours ago
A vulnerability was found in PowerJob 5.1.0/5.1.1/5.1.2. It has been declared as critical. The affected element is the function GroovyEvaluator.evaluate of the file /openApi/addWorkflowNode of the component OpenAPI Endpoint. The manipulation of the argument nodeParams results in code injection. This vulnerability is identified as CVE-2026-5739. The attack can be executed remotely. There is not any exploit available. The project was informed of the problem early through an issue report but has not responded yet.
vuldb.com

Acronis MDR by TRU brings 24/7 managed detection and response to MSPs

Help Net Security
4 days 7 hours ago

Acronis has announced the launch of Acronis MDR by Acronis TRU, a globally available 24/7/365 managed detection and response (MDR) service. Built specifically for managed service providers (MSPs) of all sizes, the service provides threat detection, incident response, and cyber resilience powered by the Acronis Threat Research Unit (TRU). With this offering, MSPs can expand their security capabilities and deliver scalable protection without the complexity or cost of operating an in-house security operations center. As … More →

The post Acronis MDR by TRU brings 24/7 managed detection and response to MSPs appeared first on Help Net Security.

Industry News

CVE-2026-5736 | PowerJob 5.1.0/5.1.1/5.1.2 detailPlus Endpoint InstanceController.java customQuery sql injection (Issue 1167)

VulDB Recent Entries
4 days 7 hours ago
A vulnerability was found in PowerJob 5.1.0/5.1.1/5.1.2. It has been classified as critical. Impacted is an unknown function of the file powerjob-server/powerjob-server-starter/src/main/java/tech/powerjob/server/web/controller/InstanceController.java of the component detailPlus Endpoint. The manipulation of the argument customQuery leads to sql injection. This vulnerability is referenced as CVE-2026-5736. Remote exploitation of the attack is possible. Furthermore, an exploit is available. The project was informed of the problem early through an issue report but has not responded yet.
vuldb.com

CVE-2026-35554 | Apache Kafka Clients up to 3.9.1/4.0.1/4.1.1 Producer Message use after free

VulDB Recent Entries
4 days 7 hours ago
A vulnerability was found in Apache Kafka Clients up to 3.9.1/4.0.1/4.1.1 and classified as critical. This issue affects some unknown processing of the component Producer Message Handler. Executing a manipulation can lead to use after free. The identification of this vulnerability is CVE-2026-35554. The attack may be launched remotely. There is no exploit available. It is suggested to upgrade the affected component.
vuldb.com

Managed ad