Aggregator

A vulnerability described as problematic has been identified in managewp ManageWP Worker Plugin up to 4.9.31 on WordPress. This affects an unknown function of the component HTTP Request Header Handler. Executing a manipulation can lead to cross site scripting. The identification of this vulnerability is CVE-2026-3718. The attack may be launched remotely. There is no exploit available.

A vulnerability marked as critical has been reported in wpdevteam Essential Addons for Elementor Plugin up to 6.5.13 on WordPress. The impacted element is the function register_user. Performing a manipulation results in improper privilege management. This vulnerability was named CVE-2026-5193. The attack may be initiated remotely. There is no available exploit.

A vulnerability labeled as problematic has been found in boldthemes Bold Page Builder Plugin up to 5.6.8 on WordPress. The affected element is the function bt_bb_button. Such manipulation of the argument text leads to cross site scripting. This vulnerability is uniquely identified as CVE-2026-3694. The attack can be launched remotely. No exploit exists.

A vulnerability identified as critical has been detected in Infused Addons InfusedWoo Pro Plugin up to 5.1.2 on WordPress. Impacted is the function iwar_save_recipe of the component AJAX Handler. This manipulation causes missing authorization. This vulnerability is handled as CVE-2026-6510. The attack can be initiated remotely. There is not any exploit available.

A vulnerability categorized as critical has been discovered in erolsk8 Media Sync Plugin up to 1.4.9 on WordPress. This issue affects some unknown processing. The manipulation of the argument sub_dir/media_items results in path traversal. This vulnerability is known as CVE-2026-6670. It is possible to launch the attack remotely. No exploit is available.

A vulnerability was found in Infused Addons InfusedWoo Pro Plugin up to 5.1.2 on WordPress. It has been rated as critical. This vulnerability affects the function infusedwoo_gdpr_upddata. The manipulation leads to missing authorization. This vulnerability is traded as CVE-2026-6506. It is possible to initiate the attack remotely. There is no exploit available.

A vulnerability was found in shahinurislam Career Section Plugin up to 1.7 on WordPress. It has been declared as critical. This affects an unknown part. Executing a manipulation can lead to unrestricted upload. This vulnerability appears as CVE-2026-6271. The attack may be performed from remote. There is no available exploit.

A vulnerability was found in techjewel Fluent Forms Plugin up to 6.2.0 on WordPress. It has been classified as critical. Affected by this issue is the function exportEntries. Performing a manipulation results in authorization bypass. This vulnerability is reported as CVE-2026-5395. The attack is possible to be carried out remotely. No exploit exists.

A vulnerability was found in stylemix Motors Plugin up to 1.4.107 on WordPress and classified as problematic. Affected by this vulnerability is an unknown functionality. Such manipulation leads to file inclusion. This vulnerability is documented as CVE-2026-3892. The attack can be executed remotely. There is not any exploit available.

A vulnerability has been found in taskbuilder Taskbuilder Plugin up to 5.0.6 on WordPress and classified as critical. Affected is an unknown function. This manipulation of the argument project_search causes sql injection. This vulnerability is registered as CVE-2026-6225. Remote exploitation of the attack is possible. No exploit is available.

The alleged main administrator of Dream Market Incognito Market, one of the largest dark web marketplaces before its shutdown, has been indicted in the United States on money laundering charges. [...]

A vulnerability labeled as problematic has been found in multiparty up to 4.2.3/4.2.x. Affected is an unknown function of the component Content-Disposition Parser. The manipulation results in handling of exceptional conditions. This vulnerability was named CVE-2026-8162. The attack may be performed from remote. There is no available exploit. The affected component should be upgraded.

A vulnerability was found in Deskflow up to 1.26.0.167 and classified as problematic. This impacts the function SecureSocket::secureAccept. Such manipulation leads to resource consumption. This vulnerability is documented as CVE-2026-44296. The attack can be executed remotely. There is not any exploit available. It is suggested to upgrade the affected component.

A vulnerability, which was classified as critical, has been found in Linux Kernel up to 6.19.8. Affected by this vulnerability is the function acp3x_5682_init of the component ASoC. The manipulation of the argument return leads to null pointer dereference. This vulnerability is traded as CVE-2026-43480. Access to the local network is required for this attack to succeed. There is no exploit available. It is advisable to upgrade the affected component.

A vulnerability was found in Linux Kernel up to 6.6.129/6.12.77/6.18.18/6.19.8. It has been rated as critical. The affected element is the function xhci_irq. The manipulation leads to state issue. This vulnerability is referenced as CVE-2026-43488. The attack needs to be initiated within the local network. No exploit is available. Upgrading the affected component is advised.

苹果公司正研究如何在 App Store 中更好地支持包含 AI智能体和AI编码功能的应用。苹果正在设计一套系统，该系统将在允许AI应用功能的同时维持其安全与隐私标准，但关于该系统如何运作的细节尚不可

ESET researchers uncovered new activities attributed to FrostyNeighbor, updating its compromise chain to support the group’s continual cyberespionage operations

Суд осудил 41 участника преступного сообщества за обман бизнесменов.

Welcome to Day One of Pwn2Own Berlin 2026! Today, 22 entries took the Pwn2Own stage to target AI Databases, Coding Agents, Local Inferences, and a separate category for NVIDIA products, as the world’s top security researchers push technology to its limits. Exploits, surprises, and breakthrough discoveries are unfolding.

After Day One, we awarded $523,000 for 24 unique 0-days! DEVCORE is currently in the lead for Master of Pwn, but a pack of teams are right on their heels. Stay tuned tomorrow for more results and surprises.

Follow the action live! We’ll be posting real-time updates and results throughout the competition on our blog and across social media. Stay up to date by following us on Twitter, Mastodon, LinkedIn, and Bluesky, and join the conversation using #Pwn2Own Berlin and #P2OBerlin for continuous coverage. 

FAILURE - Unfortunately, Le Duc Anh Vu (@vulda17) of Viettel Cyber Security (@vcslab) could not get their exploit of OpenAI Codex working within the time allotted.

SUCCESS - Orange Tsai (@orange_8361) of DEVCORE Research Team (@d3vc0r3) chained 4 logic bugs to achieve a sandbox escape on Microsoft Edge, earning $175,000 and 17.5 Master of Pwn points.

SUCCESS - chompie of IBM X-Force Offensive Research (XOR) used a single bug to exploit NV Container Toolkit, earning $50,000 and 5 Master of Pwn points.

SUCCESS - k3vg3n chained 3 bugs including SSRF and Code Injection to take down LiteLLM. $40,000 and 4 Master of Pwn points. Full win.

SUCCESS - Satoki Tsuji (@satoki00) of Ikotas Labs, Inc. used an Overly Permissive Allowed List bug to exploit NVIDIA Megatron Bridge, earning $20,000 and 2 Master of Pwn points.

FAILURE - Unfortunately, Park Jae Min could not get their exploit of Oracle Autonomous AI Database working within the time allotted. #Pwn2Own #P2OBerlin

SUCCESS - Emanuele Barbeno, Cyrill Bannwart, Yves Bieri, Lukasz D., Urs Mueller of Compass Security (@compasssecurity) used a single CWE-150 bug to exploit OpenAI Codex, earning $40,000 and 4 Master of Pwn points.

SUCCESS - Angelboy (@scwuaptx) & TwinkleStar03 (@_twinklestar03) of DEVCORE Research Team used an Improper Access Control bug to escalate privileges on Microsoft Windows 11, earning $30,000 and 3 Master of Pwn points.

WITHDRAWAL - Ben Koo (@kiddo_pwn) of Team DDOS has withdrawn their entry for Mozilla Firefox – Renderer Only in the Web Browser category

FAILURE - Unfortunately, Interrupt Labs could not get their exploit of NV Container Toolkit working within the time allotted

COLLISON - Although successful on stage, the Ikotas Labs, Inc. team targeting LiteLLM in the Local Inference category used bugs that were previously known. They still earn $8,000 and 1.75 Master of Pwn points.

SUCCESS - Yoseop Kim (@pwning_me) used a CWE-470 bug to exploit NVIDIA Megatron Bridge in the second round, earning $10,000 and 2 Master of Pwn points.

COLLISON - Although successful on stage, maitai (@MaitaiThe) of Doyensec (@Doyensec) targeting OpenAI Codex in the Coding Agent category used a bug that was previously known to the vendor. They still earn $10,000 and 2 Master of Pwn points.

WITHDRAWAL - Yoseop Kim(@pwning_me) has withdrawn their entry for Mozilla Firefox – Renderer Only in the Web Browser category

SUCCESS - haehae (@haehaeYang) of Out Of Bounds chained 2 bugs (CWE-190, CWE-362) to exploit Chroma, earning $20,000 and 2 Master of Pwn points.

SUCCESS - Billy (@st424204), Pan Zhenpeng (@Peterpan980927) & Weiming Shi (@bestswngs) of STARLabs SG (@starlabs_sg) chained 5 bugs (incl. SSRF and Code Injection) to exploit LM Studio, earning $40,000 and 4 Master of Pwn points. Full win!

SUCCESS - Marcin Wiązowski used a heap-based buffer overflow to escalate privileges on Microsoft Windows 11 in the second round, earning $15,000 and 3 Master of Pwn points.

WITHDRAWAL - Qrious Secure (@qriousec) has withdrawn their entry for LM Studio in the Local Inference category.

SUCCESS - Chompie of IBM X-Force Offensive Research (XOR) used a race condition to escalate privileges on Red Hat Enterprise Linux for Workstations, earning $20,000 and 2 Master of Pwn points.

COLLISON - Although successful on stage, Nguyen Thanh Dat (@rewhiles) of Viettel Cyber Security (@vcslab) targeting Anthropic Claude Code in the Coding Agent category used a bug that was previously known to the vendor. They still earn $20,000 and 2 Master of Pwn points

SUCCESS - haehae (@haehaeYang) of Out Of Bounds used a Path Traversal bug to exploit NVIDIA Megatron Bridge in the second round, earning $10,000 and 2 Master of Pwn points. Full win!

SUCCESS - Kentaro Kawane of GMO Cybersecurity by Ierae chained 2 Use-After-Free bugs to escalate privileges on Microsoft Windows 11 in the third round, earning $15,000 and 3 Master of Pwn points.