Aggregator

A vulnerability categorized as critical has been discovered in Ctrlpanel-gg panel up to 1.1.x. This impacts the function datatable of the file /admin/ of the component DataTable Endpoint. Such manipulation leads to improper access controls. This vulnerability is documented as CVE-2026-34233. The attack can be executed remotely. There is not any exploit available. It is advisable to upgrade the affected component.

A vulnerability marked as problematic has been reported in themeum Kirki Plugin up to 6.0.6 on WordPress. This vulnerability affects the function downloadZIP. The manipulation leads to relative path traversal. This vulnerability is uniquely identified as CVE-2026-8073. The attack is possible to be carried out remotely. No exploit exists. It is suggested to upgrade the affected component.

A vulnerability described as problematic has been identified in themeum Kirki Plugin up to 6.0.6 on WordPress. This issue affects some unknown processing. The manipulation results in missing authorization. This vulnerability was named CVE-2026-8096. The attack may be performed from remote. There is no available exploit. Upgrading the affected component is recommended.

A vulnerability was found in Live555 up to 2026.04.21. It has been classified as critical. This vulnerability affects unknown code of the component RTSP Session Command Handler. Performing a manipulation results in incorrect authorization. This vulnerability is cataloged as CVE-2026-41470. It is possible to initiate the attack remotely. There is no exploit available. Upgrading the affected component is recommended.

A max-severity vulnerability in the latest Python FastAPI version of the ChromaDB project allows unauthenticated attackers to run arbitrary code on exposed servers. [...]

A brief overview of the forces at play that will get more organizations on board with creating and consuming AI bill of materials (BOM).

A newly documented attack chain linked to the threat group UAC-0184 has been observed using Windows’ built-in bitsadmin tool and HTA files to sneak malicious payloads onto targeted systems. The campaign is primarily aimed at Ukraine, with clear indicators pointing toward military-related targets, including individuals connected to the Ukrainian Defence Forces. The level of craft […]

The post UAC-0184 Malware Chain Uses bitsadmin and HTA Files for Gated Payload Delivery appeared first on Cyber Security News.

Verizon's 2026 Data Breach Investigations Report (DBIR) finds that exploits are now involved in 31% of initial access for breaches, while patching lags too far behind the bad guys.

macOS users are facing a new and sophisticated threat as a variant of the SHub infostealer malware, dubbed “Reaper,” has been observed deploying a fake Google Software Update LaunchAgent to maintain persistent access on infected machines. The malware stays hidden by borrowing the identity of brands that users already trust, making it exceptionally difficult to […]

The post macOS Malware Installs Fake Google Software Update LaunchAgent for Persistence appeared first on Cyber Security News.

Microsoft says it has disrupted a malware-signing-as-a-service (MSaaS) operation that abused the company's Artifact Signing service to generate fraudulent code-signing certificates used by ransomware gangs and other cybercriminals. [...]

A vulnerability marked as critical has been reported in ScadaBR 1.2.0. Affected by this issue is some unknown functionality. The manipulation leads to hard-coded credentials. This vulnerability is traded as CVE-2026-8605. It is possible to initiate the attack remotely. There is no exploit available.

A vulnerability labeled as problematic has been found in Mozilla Firefox up to 150.x on iOS. Affected by this vulnerability is an unknown functionality of the component Hosted Reader Mode. Executing a manipulation can lead to information disclosure. This vulnerability appears as CVE-2026-8706. The attack may be performed from remote. There is no available exploit. The affected component should be upgraded.

A vulnerability identified as problematic has been detected in laurent22 joplin up to 3.7.0. Affected is an unknown function of the component Local Web Service API. Performing a manipulation of the argument Title results in allocation of resources. This vulnerability is reported as CVE-2025-57798. The attack requires a local approach. No exploit exists. You should upgrade the affected component.

A vulnerability categorized as critical has been discovered in Ctrlpanel-gg panel up to 1.1.x. This impacts the function datatable of the file /admin/ of the component DataTable Endpoint. Such manipulation leads to improper access controls. This vulnerability is documented as CVE-2026-34233. The attack can be executed remotely. There is not any exploit available. It is advisable to upgrade the affected component.

A vulnerability was found in Ctrlpanel-gg panel up to 1.1.x. It has been rated as problematic. This affects the function update of the component Admin Settings Update Endpoint. This manipulation of the argument settings_class causes use of externally-controlled input to select classes or code. This vulnerability is registered as CVE-2026-34216. Remote exploitation of the attack is possible. No exploit is available. Upgrading the affected component is advised.

Verizon’s annual Data Breach Investigations Report uncovered a surge of exploited vulnerabilities, and a growing lack of critical defect remediation industrywide.

The post Attackers hit vulnerabilities hard last year, making exploits the top entry point for breaches appeared first on CyberScoop.

AI agent security starts with a simple fact: the more authority an agent has, the tighter its access…

A vulnerability was found in ScadaBR 1.2.0. It has been declared as critical. The impacted element is an unknown function. The manipulation results in os command injection. This vulnerability is cataloged as CVE-2026-8603. The attack may be launched remotely. There is no exploit available.

A vulnerability was found in Tenable Terrascan up to 1.18.3. It has been classified as critical. The affected element is the function AWS::CloudFormation::Stack of the component Remote Scan Endpoint. The manipulation leads to server-side request forgery. This vulnerability is listed as CVE-2026-47358. The attack may be initiated remotely. There is no available exploit.

A vulnerability was found in Tenable Terrascan up to 1.18.3 and classified as critical. Impacted is the function remote_type of the file /v1/{iac}/{iacVersion}/{cloud}/remote/dir/scan of the component Remote Directory Scan Endpoint. Executing a manipulation of the argument remote_url can lead to server-side request forgery. This vulnerability is tracked as CVE-2026-47357. The attack can be launched remotely. No exploit exists.