Aggregator

Buyer and Seller Contact Records Allegedly Leaked From French Real Estate Platform Timer Immobilier

Dark Web Informer - Cyber Threat Intelligence

2 days 20 hours ago

A threat actor using the alias 0xSec has posted what they describe as a small database from Timer Immobilier, a specialized French real-estate agency and online platform that runs a transparent “interactive sale” (auction-style) system for property buyers and sellers.

Dark Web Informer

CIS Benchmarks June 2026 Update

Blog Feed - Center for Internet Security

2 days 20 hours ago

The following CIS Benchmarks and CIS Build Kits have been updated or recently released. We've highlighted the major updates below.

ИИ обещает спасти климат. Но сначала отправит планету в десятилетнюю углеродную яму

Securitylab.ru

2 days 20 hours ago

2,85 гигатонны CO₂ — такой долг накопят алгоритмы, прежде чем хоть что-то начнут компенсировать.

Qilin

Dark Feed IO

2 days 20 hours ago

You must login to view this content

cohenido

Hackers Breached Klue Integration to Steal Salesforce CRM Data via OAuth Tokens

Cyber Security News

2 days 20 hours ago

Threat actors exploited a trusted third-party SaaS integration to silently harvest enterprise CRM data, marking the latest chapter in an escalating wave of OAuth-abuse attacks targeting Salesforce ecosystems. Researchers at ReliaQuest observed attackers leveraging a compromised Klue Battlecards integration, a competitive-intelligence platform that synchronizes battlecard and win/loss data with Salesforce, to exfiltrate large volumes of […]

The post Hackers Breached Klue Integration to Steal Salesforce CRM Data via OAuth Tokens appeared first on Cyber Security News.

Guru Baran

SecWiki News 2026-06-18 Review

SecWiki News(国内外安全资讯)

2 days 20 hours ago

注入与泄露：基于电磁注入和硬件非线性的主动侧信道泄露诱导方法 by ourren

更多最新文章，请访问SecWiki

Around 79,000 Records Allegedly Leaked From French Property Management Software MaGestionLocative

Dark Web Informer - Cyber Threat Intelligence

2 days 20 hours ago

A threat actor using the alias ChimeraZ has posted what they describe as a partial database of MaGestionLocative (magestionlocative.fr), a French property management software platform used by landlords and real-estate professionals.

Dark Web Informer

3万字讲透AI必懂的60个核心概念（汇总版）

君哥的体历

2 days 20 hours ago

What Businesses Should Know Before Migrating Their CMS

Hack Read

2 days 20 hours ago

Plan your CMS migration with clean content audits, SEO safeguards, tested data transfer, integrations, staff training, and a safe launch rollback plan with care.

Owais Sultan

Orphaned AI Agents: How to Find Hidden Access Risks Inside Your Network

The Hackers News

2 days 20 hours ago

If an autonomous AI agent interacts with your company's core intellectual property today, can your security team instantly name the person who authorized it? For most enterprises, the answer is a simple no. The rush to adopt internal AI tools has left a massive trail of administrative debt: orphaned agents (AI tools left running after their creator leaves the company) and standing privileges (

The Hacker News

CVE-2026-9158 | Eclipse 4diac up to 3.1.0 Management Interface use after free (EUVD-2026-37896)

VulDB Recent Entries

2 days 21 hours ago

A vulnerability was found in Eclipse 4diac up to 3.1.0. It has been classified as critical. Impacted is an unknown function of the component Management Interface. This manipulation causes use after free. This vulnerability appears as CVE-2026-9158. The attacker needs to be present on the local network. There is no available exploit.

vuldb.com

CVE-2026-12539 | Docker Sandboxes up to 0.32.x communication channel to intended endpoints (EUVD-2026-37893)

VulDB Recent Entries

2 days 21 hours ago

A vulnerability was found in Docker Sandboxes up to 0.32.x and classified as problematic. This issue affects some unknown processing. The manipulation results in improper restriction of communication channel to intended endpoints. This vulnerability is reported as CVE-2026-12539. The attack requires a local approach. No exploit exists. It is suggested to upgrade the affected component.

vuldb.com

CVE-2026-56012 | David Lingren Media LIbrary Assistant Plugin up to 3.35 on WordPress sql injection (EUVD-2026-37895)

VulDB Recent Entries

2 days 21 hours ago

A vulnerability has been found in David Lingren Media LIbrary Assistant Plugin up to 3.35 on WordPress and classified as critical. This vulnerability affects unknown code. The manipulation leads to sql injection. This vulnerability is documented as CVE-2026-56012. The attack can be initiated remotely. There is not any exploit available.

vuldb.com

CVE-2026-42488 | Xen

VulDB Recent Entries

2 days 21 hours ago

A vulnerability, which was classified as problematic, was found in Xen. This affects an unknown part. Executing a manipulation can lead to an unknown weakness. This vulnerability is registered as CVE-2026-42488. The attack requires access to the local network. No exploit is available.

vuldb.com

CVE-2026-12527 | Shenzhen Liandian Communication V380 IP Camera/AppFHE1 AppFHE1_V1.0.6.020230803 missing authentication (EUVD-2026-37894)

VulDB Recent Entries

2 days 21 hours ago

A vulnerability, which was classified as critical, has been found in Shenzhen Liandian Communication V380 IP Camera and AppFHE1 AppFHE1_V1.0.6.020230803. Affected by this issue is some unknown functionality. Performing a manipulation results in missing authentication. This vulnerability is cataloged as CVE-2026-12527. The attack must originate from the local network. There is no exploit available.

vuldb.com

CVE-2026-50141 | woodpecker-ci woodpecker up to 3.14.0 authentication spoofing (ID 21 / EUVD-2026-37897)

VulDB Recent Entries

2 days 21 hours ago

A vulnerability classified as critical was found in woodpecker-ci woodpecker up to 3.14.0. Affected by this vulnerability is an unknown functionality. Such manipulation leads to authentication bypass by spoofing. This vulnerability is listed as CVE-2026-50141. The attack may be performed from remote. There is no available exploit. Upgrading the affected component is advised.

vuldb.com

CVE-2026-12039 | Docker Sandboxes up to 0.32.x DNS Resolution communication channel to intended endpoints

VulDB Recent Entries

2 days 21 hours ago

A vulnerability classified as problematic has been found in Docker Sandboxes up to 0.32.x. Affected is an unknown function of the component DNS Resolution Handler. This manipulation causes improper restriction of communication channel to intended endpoints. This vulnerability is tracked as CVE-2026-12039. The attack is restricted to local execution. No exploit exists. It is recommended to upgrade the affected component.

vuldb.com

CVE-2026-42487 | Xen improper synchronization

VulDB Recent Entries

2 days 21 hours ago

A vulnerability described as critical has been identified in Xen. This impacts an unknown function. The manipulation results in improper synchronization. This vulnerability is identified as CVE-2026-42487. The attack can be executed remotely. There is not any exploit available.

vuldb.com

CVE-2026-42490 | Xen permission

VulDB Recent Entries

2 days 21 hours ago

A vulnerability marked as critical has been reported in Xen. This affects an unknown function. The manipulation leads to permission issues. This vulnerability is referenced as CVE-2026-42490. Remote exploitation of the attack is possible. No exploit is available.

vuldb.com

CVE-2026-42489 | Xen permission

VulDB Recent Entries

2 days 21 hours ago

A vulnerability labeled as critical has been found in Xen. The impacted element is an unknown function. Executing a manipulation can lead to permission issues. The identification of this vulnerability is CVE-2026-42489. The attack may be launched remotely. There is no exploit available.

vuldb.com

Aggregator

Managed ad