Aggregator

CVE-2026-56012 | David Lingren Media LIbrary Assistant Plugin up to 3.35 on WordPress sql injection (EUVD-2026-37895)

VulDB Recent Entries
1 week 1 day ago
A vulnerability has been found in David Lingren Media LIbrary Assistant Plugin up to 3.35 on WordPress and classified as critical. This vulnerability affects unknown code. The manipulation leads to sql injection. This vulnerability is documented as CVE-2026-56012. The attack can be initiated remotely. There is not any exploit available.
vuldb.com

CVE-2026-42488 | Xen

VulDB Recent Entries
1 week 1 day ago
A vulnerability, which was classified as problematic, was found in Xen. This affects an unknown part. Executing a manipulation can lead to an unknown weakness. This vulnerability is registered as CVE-2026-42488. The attack requires access to the local network. No exploit is available.
vuldb.com

CVE-2026-12527 | Shenzhen Liandian Communication V380 IP Camera/AppFHE1 AppFHE1_V1.0.6.020230803 missing authentication (EUVD-2026-37894)

VulDB Recent Entries
1 week 1 day ago
A vulnerability, which was classified as critical, has been found in Shenzhen Liandian Communication V380 IP Camera and AppFHE1 AppFHE1_V1.0.6.020230803. Affected by this issue is some unknown functionality. Performing a manipulation results in missing authentication. This vulnerability is cataloged as CVE-2026-12527. The attack must originate from the local network. There is no exploit available.
vuldb.com

CVE-2026-50141 | woodpecker-ci woodpecker up to 3.14.0 authentication spoofing (ID 21 / EUVD-2026-37897)

VulDB Recent Entries
1 week 1 day ago
A vulnerability classified as critical was found in woodpecker-ci woodpecker up to 3.14.0. Affected by this vulnerability is an unknown functionality. Such manipulation leads to authentication bypass by spoofing. This vulnerability is listed as CVE-2026-50141. The attack may be performed from remote. There is no available exploit. Upgrading the affected component is advised.
vuldb.com

CVE-2026-12039 | Docker Sandboxes up to 0.32.x DNS Resolution communication channel to intended endpoints

VulDB Recent Entries
1 week 1 day ago
A vulnerability classified as problematic has been found in Docker Sandboxes up to 0.32.x. Affected is an unknown function of the component DNS Resolution Handler. This manipulation causes improper restriction of communication channel to intended endpoints. This vulnerability is tracked as CVE-2026-12039. The attack is restricted to local execution. No exploit exists. It is recommended to upgrade the affected component.
vuldb.com

ThreatsDay Bulletin: Claude Chat Abuse, NastyC2 npm Packages, Device-Code Phishing + 25 More Stories

The Hackers News
1 week 1 day ago
The internet did not break this week. It got used exactly as designed, which is worse. Searches were siphoned through shady browser add-ons. AI chat links turned into malware delivery paths. macOS attacks ran in memory and left almost nothing behind. Cloud agents looked like helpers until attackers treated them like open shells. Add exposed edge gear, poisoned packages, cash courier scams,
The Hacker News

Multiple Vulnerabilities in Firefox 152 Enables Remote Code Execution Attacks

Cyber Security News
1 week 1 day ago

Mozilla has released Firefox 152 to address multiple high-severity vulnerabilities that could allow remote code execution (RCE) and sandbox escape attacks. The security advisory, published on June 16, 2026, highlights a wide range of flaws affecting core browser components and emphasizes the urgency for users to update immediately. Several of the patched vulnerabilities are classified […]

The post Multiple Vulnerabilities in Firefox 152 Enables Remote Code Execution Attacks appeared first on Cyber Security News.

Abinaya

Pear

Dark Feed IO
1 week 1 day ago

You must login to view this content

cohenido

Managed ad