Aggregator

18th May – Threat Intelligence Report

Check Point Research
4 weeks 1 day ago

For the latest discoveries in cyber research for the week of 18th May, please download our Threat Intelligence Bulletin. TOP ATTACKS AND BREACHES Vodafone, a major international telecom, has sustained a source code leak claimed by the Lapsus$ extortion group. The company confirmed limited access to GitHub files through compromised third-party development software, while stating that […]

The post 18th May – Threat Intelligence Report appeared first on Check Point Research.

urias

CVE-2026-8777 | Edimax BR-6428NS 1.10 POST Request /goform/formStaDrvSetup stadrv_ssid command injection (EUVD-2026-30719)

Vuldb Updates
4 weeks 1 day ago
A vulnerability identified as critical has been detected in Edimax BR-6428NS 1.10. This issue affects the function formStaDrvSetup of the file /goform/formStaDrvSetup of the component POST Request Handler. Performing a manipulation of the argument stadrv_ssid results in command injection. This vulnerability is identified as CVE-2026-8777. The attack can be initiated remotely. Additionally, an exploit exists. The vendor was contacted early about this disclosure but did not respond in any way.
vuldb.com

CVE-2026-8784 | npitre cramfs-tools up to 2.2 cramfsck.c change_file_status symlink (Issue 13 / EUVD-2026-30728)

Vuldb Updates
4 weeks 1 day ago
A vulnerability, which was classified as critical, has been found in npitre cramfs-tools up to 2.2. Affected is the function change_file_status of the file cramfsck.c. Performing a manipulation results in symlink following. This vulnerability is reported as CVE-2026-8784. The attack requires a local approach. Moreover, an exploit is present. It is recommended to apply a patch to fix this issue.
vuldb.com

CVE-2026-4320 | Creartia Internet Consulting ICMS Content Management HTTP Redirect authentication bypass (EUVD-2026-30762)

Vuldb Updates
4 weeks 1 day ago
A vulnerability identified as critical has been detected in Creartia Internet Consulting ICMS Content Management. This affects an unknown function of the component HTTP Redirect Handler. This manipulation causes authentication bypass using alternate channel. This vulnerability is handled as CVE-2026-4320. The attack can be initiated remotely. There is not any exploit available.
vuldb.com

CVE-2026-8734 | Oinone Pamirs up to 7.2.0 queryListByWrapper Interface RSQLToSQLNodeConnector.makeVariable sql injection (EUVD-2026-30683)

Vuldb Updates
4 weeks 1 day ago
A vulnerability classified as critical has been found in Oinone Pamirs up to 7.2.0. Affected by this issue is the function RSQLToSQLNodeConnector.makeVariable of the component queryListByWrapper Interface. This manipulation causes sql injection. This vulnerability is handled as CVE-2026-8734. The attack can be initiated remotely. Additionally, an exploit exists. The vendor was contacted early about this disclosure but did not respond in any way.
vuldb.com

CVE-2026-8747 | Z-BlogPHP 1.7.4.3430 Commend Approval c_system_event.php CheckComment improper authorization (EUVD-2026-30696)

Vuldb Updates
4 weeks 1 day ago
A vulnerability marked as critical has been reported in Z-BlogPHP 1.7.4.3430. This affects the function CheckComment of the file zb_system/function/c_system_event.php of the component Commend Approval Handler. This manipulation causes improper authorization. This vulnerability appears as CVE-2026-8747. The attack may be initiated remotely. In addition, an exploit is available.
vuldb.com

CVE-2026-8765 | Kilo-Org kilocode up to 7.0.47 File Diff API Endpoint worktree-diff.ts Bun.file path traversal (EUVD-2026-30709)

Vuldb Updates
4 weeks 1 day ago
A vulnerability marked as critical has been reported in Kilo-Org kilocode up to 7.0.47. This vulnerability affects the function Bun.file of the file packages/opencode/src/kilocode/review/worktree-diff.ts of the component File Diff API Endpoint. Performing a manipulation of the argument File results in path traversal. This vulnerability is cataloged as CVE-2026-8765. It is possible to initiate the attack remotely. Furthermore, there is an exploit available. The vendor was contacted early about this disclosure but did not respond in any way.
vuldb.com

CVE-2026-8771 | linlinjava litemall up to 1.8.0 Front-end WeChat API WxGoodsController.java list sql injection (EUVD-2026-30716)

Vuldb Updates
4 weeks 1 day ago
A vulnerability has been found in linlinjava litemall up to 1.8.0 and classified as critical. This impacts the function list of the file litemall-wx-api/src/main/java/org/linlinjava/litemall/wx/web/WxGoodsController.java of the component Front-end WeChat API. Performing a manipulation results in sql injection. This vulnerability is known as CVE-2026-8771. Remote exploitation of the attack is possible. Furthermore, an exploit is available. The vendor was contacted early about this disclosure but did not respond in any way.
vuldb.com

微软将修改 Edge 加载密码的方式

Solidot
4 weeks 1 day ago
安全研究员本月初披露,Edge 内置的密码管理器会在浏览器启动时候解密所有密码然后加载到内存里。他联络了微软,结果收到的回应是“源于设计(by design)”,认为不是安全隐患。微软当时强调这是应用的预期功能。然而仅仅过了几天,微软就改变了主意,宣布未来版本的 Edge 不会再在启动时加载密码。相关补丁已经释出到 Edge Canary 版本,将包含在 Edge build 148 或更新版本中。

Critical n8n Vulnerabilities Expose Automation Nodes to Full RCE

Cyber Security News
4 weeks 1 day ago

A fresh set of critical vulnerabilities in the popular workflow automation platform n8n is raising serious security concerns, as researchers warn that attackers could chain multiple flaws to achieve full remote code execution (RCE) on affected systems. The vulnerabilities, disclosed via GitHub Security Advisories and tracked as CVE-2026-44789, CVE-2026-44790, and CVE-2026-44791, impact multiple core nodes […]

The post Critical n8n Vulnerabilities Expose Automation Nodes to Full RCE appeared first on Cyber Security News.

Abinaya

Managed ad