admin

admin

CVE-2026-6212 – IDOR in Teracity’s TeraMIS

​CVE ID :CVE-2026-6212 Published : July 10, 2026, 6:35 p.m. | 42 minutes ago Description :Authorization bypass through User-Controlled key vulnerability in Teracity Software Technologies Inc. TeraMIS allows Privilege Abuse. This issue affects TeraMIS: from V03.26.01.14 through 30.04.2026. Severity: 8.8 |…

CVE-2026-2397 – SQLi in AdamPOS’ MobilMen 20T

​CVE ID :CVE-2026-2397 Published : July 10, 2026, 6:16 p.m. | 1 hour, 1 minute ago Description :Improper neutralization of special elements used in an SQL command (‘SQL injection’) vulnerability in Adam Retail Automation Ltd. MobilMen 20T allows SQL Injection. This issue…

Dormant GitHub Accounts Help Attackers Blend In While Mapping Corporate Orgs

​Datadog Security Labs is warning of “several overlapping campaigns” that are systematically enumerating corporate GitHub organizations, repositories, and user accounts through the GitHub API. “Operators rely on automated scraping tooling with custom or legitimate-sounding user agents, leveraging GitHub ‘ghost’ accounts that…

CVE-2026-61343 – LibreBooking path traversal

​CVE ID :CVE-2026-61343 Published : July 9, 2026, 6:16 p.m. | 56 minutes ago Description :LibreBooking’s email template editor save action passes the submitted template name directly into the destination file path, allowing a remote attacker with administrator credentials to write…