Automated cyber signal feeds.
CVE ID :CVE-2026-42864 Published : May 11, 2026, 7:16 p.m. | 28 minutes ago Description :FireFighter is an incident management application. Prior to 0.0.54, the POST /api/v2/firefighter/raid/jira_bot endpoint (CreateJiraBotView) is reachable without authentication (permission_classes = [permissions.AllowAny]). Its attachments payload is fetched…
Checkmarx has confirmed that a modified version of the Jenkins AST plugin was published to the Jenkins Marketplace. “If you are using Checkmarx Jenkins AST plugin, you need to ensure that you are using the version 2.0.13-829.vc72453fa_1c16 that was published…
CVE ID :CVE-2026-4892 Published : May 11, 2026, 6:16 p.m. | 1 hour, 28 minutes ago Description :A heap-based out-of-bounds write vulnerability in the DHCPv6 implementation of dnsmasq allows local attackers to execute arbitrary code with root privileges via a crafted DHCPv6…
Attackers are abusing Google Ads and legitimate Claude.ai shared chats in an active malvertising campaign. Users searching for “Claude mac download” may come across sponsored search results that list claude.ai as the target website, but lead to instructions that install…
German authorities have shut down a relaunch version of the criminal marketplace ‘Crimenetwork’ that generated more than 3.6 million euros, and arrested its operator. […] To Read More Visit Read More
CVE ID :CVE-2022-50944 Published : May 10, 2026, 1:16 p.m. | 4 hours, 3 minutes ago Description :Aero CMS 0.0.1 contains a PHP code injection vulnerability that allows authenticated attackers to execute arbitrary PHP code by uploading malicious files through the image…
CVE ID :CVE-2021-47949 Published : May 10, 2026, 1:16 p.m. | 4 hours, 3 minutes ago Description :CyberPanel 2.1 contains a command execution vulnerability that allows authenticated attackers to read arbitrary files and execute remote code by exploiting symlink attacks through the…
CVE ID :CVE-2021-47944 Published : May 10, 2026, 1:16 p.m. | 4 hours, 3 minutes ago Description :memono Notepad 4.2 contains a denial of service vulnerability that allows attackers to crash the application by pasting excessively long character buffers into note fields.…
CVE ID :CVE-2021-47945 Published : May 10, 2026, 1:16 p.m. | 4 hours, 3 minutes ago Description :Argus Surveillance DVR 4.0 contains an unquoted service path vulnerability in the DVRWatchdog service that allows local attackers to escalate privileges by exploiting the service…
CVE ID :CVE-2026-42605 Published : May 9, 2026, 8:16 p.m. | 52 minutes ago Description :AzuraCast is a self-hosted, all-in-one web radio management suite. Prior to version 0.23.6, the currentDirectory request parameter in the Flow.js media upload endpoint (POST /api/station/{station_id}/files/upload) is…