https://threatnote.com/wire/cve-2026-42601-archivebox-vulnerable-to-rce-via-unvalidated-per-crawl-config-overrides-in-addview/ 2026-05-09T22:08:55+00:00 https://threatnote.com/wire/cve-2026-42571-privilege-escalation-attack-affecting-pelican-web-ui/ 2026-05-09T22:08:55+00:00 https://threatnote.com/wire/cve-2026-42569-phpvms-importer-authorization-bypass-causing-full-database-wipe/ 2026-05-09T22:08:56+00:00 https://threatnote.com/wire/police-shut-down-reboot-of-crimenetwork-marketplace-arrest-admin/ 2026-05-10T14:16:47+00:00 https://threatnote.com/wire/cve-2022-50944-aero-cms-0-0-1-php-code-injection-via-posts-php/ 2026-05-10T13:16:32+00:00 https://threatnote.com/wire/cve-2021-47949-cyberpanel-2-1-authenticated-remote-code-execution-via-symlink-attack/ 2026-05-10T13:16:31+00:00 https://threatnote.com/wire/cve-2021-47944-memono-notepad-4-2-denial-of-service-via-buffer-overflow/ 2026-05-10T13:16:30+00:00 https://threatnote.com/wire/cve-2021-47945-argus-surveillance-dvr-4-0-unquoted-service-path-privilege-escalation/ 2026-05-10T13:16:30+00:00 https://threatnote.com/wire/hackers-abuse-google-ads-claude-ai-chats-to-push-mac-malware/ 2026-05-10T17:52:15+00:00 https://threatnote.com/regulation/dpdpa-india-operational-readiness/ 2026-05-10T21:43:53+00:00 https://threatnote.com/wire/cve-2026-7790-unbounded-chunk-size-hex-digits-in-cowlib-cause-quadratic-cpu-and-memory-dos/ 2026-05-11T19:16:29+00:00 https://threatnote.com/wire/cve-2026-45223-crabbox-0-9-0-authentication-bypass-via-admin-claim-injection/ 2026-05-11T19:16:28+00:00 https://threatnote.com/wire/cve-2026-42864-firefighter-unauthenticated-ssrf-in-raid-jira_bot-endpoint-allows-iam-credential-theft/ 2026-05-11T19:16:24+00:00 https://threatnote.com/wire/teampcp-compromises-checkmarx-jenkins-ast-plugin-weeks-after-kics-supply-chain-attack/ 2026-05-11T18:30:00+00:00 https://threatnote.com/wire/cve-2026-4892-cve-2026-4892/ 2026-05-11T18:16:41+00:00 https://threatnote.com/wire/cve-2026-8431-ops-manager-rce-via-webhook-body/ 2026-05-12T19:16:34+00:00 https://threatnote.com/wire/cve-2026-8430-spip-prior-to-4-4-14-remote-code-execution-via-nginx/ 2026-05-12T19:16:34+00:00 https://threatnote.com/wire/cve-2026-8429-spip-prior-to-4-4-14-remote-code-execution-via-private-space/ 2026-05-12T19:16:34+00:00 https://threatnote.com/wire/cve-2026-34660-adobe-connect-incorrect-authorization-cwe-863/ 2026-05-12T19:16:30+00:00 https://threatnote.com/wire/cve-2026-34659-adobe-connect-deserialization-of-untrusted-data-cwe-502/ 2026-05-12T19:16:30+00:00 https://threatnote.com/wire/cve-2026-44574-next-js-middleware-proxy-bypass-through-dynamic-route-parameter-injection/ 2026-05-13T17:16:22+00:00 https://threatnote.com/wire/cve-2026-6282-lenovo-personal-cloud-storage-path-traversal-vulnerability/ 2026-05-13T16:17:01+00:00 https://threatnote.com/wire/cve-2026-6281-lenovo-personal-cloud-storage-command-injection-vulnerability/ 2026-05-13T16:17:01+00:00 https://threatnote.com/wire/cve-2026-45033-github-copilot-cli-nested-bare-repository-can-execute-arbitrary-commands-via-core-fsmonitor/ 2026-05-13T16:17:00+00:00 https://threatnote.com/wire/cve-2026-44470-claude-desktop-local-privilege-escalation-via-directory-junction-in-coworkvmservice/ 2026-05-13T16:16:58+00:00 https://threatnote.com/wire/cve-2025-15024-rce-in-yordam-informatics-library-automation-system/ 2026-05-14T17:48:41+00:00 https://threatnote.com/wire/cisco-catalyst-sd-wan-controller-auth-bypass-actively-exploited-to-gain-admin-access/ 2026-05-14T17:45:20+00:00 https://threatnote.com/wire/cve-2025-15023-improper-access-control-in-yordam-informatics-library-automation-system/ 2026-05-14T17:36:14+00:00 https://threatnote.com/wire/stealer-backdoor-found-in-3-node-ipc-versions-targeting-developer-secrets/ 2026-05-14T17:22:43+00:00 https://threatnote.com/wire/cve-2026-44827-diffusers-none-py-trust-remote-code-bypass/ 2026-05-14T17:16:23+00:00 https://threatnote.com/wire/cve-2026-8695-radare2-6-1-5-use-after-free-via-gdbr_threads_list/ 2026-05-15T17:16:49+00:00 https://threatnote.com/wire/cve-2026-45038-tabby-dragging-and-dropping-a-file-into-tabby-can-lead-to-code-execution/ 2026-05-15T17:16:48+00:00 https://threatnote.com/wire/cve-2026-45035-tabby-rce-via-tabby-run-url-scheme/ 2026-05-15T17:16:48+00:00 https://threatnote.com/wire/cve-2026-44717-mcp-calculate-server-prompt-injection-to-rce/ 2026-05-15T17:16:48+00:00 https://threatnote.com/wire/cve-2026-44699-libjwt-algorithm-confusion-allows-jwt-forgery-with-rsa-jwk-as-empty-key-hmac/ 2026-05-15T17:16:47+00:00 https://threatnote.com/wire/cve-2021-47979-wordpress-plugin-backup-and-restore-1-0-3-arbitrary-file-deletion/ 2026-05-16T16:16:23+00:00 https://threatnote.com/wire/cve-2021-47977-wordpress-anti-malware-security-bruteforce-firewall-4-20-59-directory-traversal/ 2026-05-16T16:16:23+00:00 https://threatnote.com/wire/cve-2021-47976-textpattern-cms-4-9-0-dev-authenticated-remote-code-execution-via-plugin-upload/ 2026-05-16T16:16:23+00:00 https://threatnote.com/wire/cve-2021-47974-vx-search-13-5-28-unquoted-service-path-privilege-escalation/ 2026-05-16T16:16:22+00:00 https://threatnote.com/wire/cve-2021-47973-sticky-notes-widget-3-0-6-denial-of-service-via-buffer-overflow/ 2026-05-16T16:16:22+00:00 https://threatnote.com/hacker-culture/before-cybersecurity-became-an-industry-there-was-hacker-culture/ 2026-05-17T18:39:12+00:00 https://threatnote.com/hacker-culture/hackers-manifesto/ 2026-05-17T19:20:05+00:00 https://threatnote.com/wp-content/uploads/2026/05/Hacker-Manifesto.png https://threatnote.com/briefing/threatnote-briefing-1-week-of-may-11-to-17-2026/ 2026-05-17T19:49:35+00:00 https://threatnote.com/wire/cve-2018-25339-zechat-1-5-sql-injection-via-v-parameter-time-based-blind/ 2026-05-17T13:16:45+00:00 https://threatnote.com/wire/cve-2018-25338-zechat-1-5-sql-injection-via-hashtag-parameter/ 2026-05-17T13:16:45+00:00 https://threatnote.com/wire/cve-2018-25335-wordpress-plugin-peugeot-music-1-0-arbitrary-file-upload/ 2026-05-17T13:16:45+00:00 https://threatnote.com/wire/cve-2018-25333-nordex-n149-4-0-4-5-wind-turbine-web-server-sql-injection/ 2026-05-17T13:16:44+00:00 https://threatnote.com/wire/cve-2018-25332-gitbucket-4-23-1-unauthenticated-remote-code-execution/ 2026-05-17T13:16:44+00:00 https://threatnote.com/wire/cve-2026-45495-microsoft-edge-chromium-based-remote-code-execution-vulnerability/ 2026-05-18T18:17:38+00:00 https://threatnote.com/wire/cve-2026-45230-dumbassets-1-0-11-path-traversal-file-deletion-via-api-delete-file/ 2026-05-18T18:17:37+00:00 https://threatnote.com/wire/cve-2026-42822-azure-local-disconnected-operations-aldo-elevation-of-privilege-vulnerability/ 2026-05-18T18:17:34+00:00 https://threatnote.com/wire/interpol-operation-ramz-disrupts-mena-cybercrime-networks-with-201-arrests/ 2026-05-18T17:21:18+00:00 https://threatnote.com/wire/cve-2026-45829-chromadb-remote-code-injection-vulnerability/ 2026-05-18T17:16:34+00:00 https://threatnote.com/wire/cve-2026-8604-cross-site-request-forgery-csrf-in-scadabr/ 2026-05-19T18:16:32+00:00 https://threatnote.com/wire/cve-2026-8602-missing-authentication-for-critical-function-in-scadabr/ 2026-05-19T18:16:31+00:00 https://threatnote.com/wire/cve-2026-8603-improper-neutralization-of-special-elements-used-in-an-os-command-os-command-injection-in-scadabr/ 2026-05-19T18:16:31+00:00 https://threatnote.com/wire/cve-2026-6009-jaspersoft-library-deserialisation-vulnerability/ 2026-05-19T18:16:29+00:00 https://threatnote.com/wire/cve-2026-47107-windmill-1-703-2-incorrect-default-permissions-in-nsjail-configuration/ 2026-05-19T18:16:22+00:00 https://threatnote.com/wire/cve-2026-20223-cisco-secure-workload-unauthorized-api-access-vulnerability/ 2026-05-20T17:16:20+00:00 https://threatnote.com/wire/microsoft-open-sources-rampart-and-clarity-to-secure-ai-agents-during-development/ 2026-05-20T17:06:54+00:00 https://threatnote.com/wire/cve-2026-8598-unauthenticated-export-service-in-zkteco-cctv-cameras/ 2026-05-20T16:16:27+00:00 https://threatnote.com/wire/microsoft-takes-down-malware-signing-service-behind-ransomware-attacks/ 2026-05-20T14:36:44+00:00 https://threatnote.com/wire/cve-2026-8469-unauthenticated-denial-of-service-via-beam-atom-table-exhaustion-in-phoenix_storybook/ 2026-05-20T14:17:04+00:00 https://threatnote.com/wire/cve-2026-48249-open-ises-tickets-3-44-2-disabled-tls-certificate-verification-in-rm-incs-mobile_login-inc-php/ 2026-05-21T18:16:22+00:00 https://threatnote.com/wire/cve-2026-48248-open-ises-tickets-3-44-2-disabled-tls-certificate-verification-in-incs-login-inc-php/ 2026-05-21T18:16:22+00:00 https://threatnote.com/wire/cve-2026-48247-open-ises-tickets-3-44-2-disabled-tls-certificate-verification-in-incs-functions-inc-php/ 2026-05-21T18:16:21+00:00 https://threatnote.com/wire/cve-2026-48246-open-ises-tickets-3-44-2-disabled-tls-certificate-verification-in-ajax-reports-php/ 2026-05-21T18:16:21+00:00 https://threatnote.com/wire/cve-2026-48242-open-ises-tickets-3-44-2-hardcoded-mysql-database-credentials-in-import_mdb-php/ 2026-05-21T18:16:21+00:00 https://threatnote.com/wire/cve-2026-48700-pcmanfm-qt-file-path-uri-execution/ 2026-05-22T18:43:05+00:00 https://threatnote.com/wire/cve-2026-6406-docker-desktop-enhanced-container-isolation-bypass-via-use-api-socket-cli-flag/ 2026-05-22T18:32:15+00:00 https://threatnote.com/wire/first-vpn-dismantled-in-global-takedown-over-use-by-25-ransomware-groups/ 2026-05-22T17:35:02+00:00 https://threatnote.com/wire/cve-2026-9255-tool-execution-without-authorization-via-piped-stdin-in-kiro-cli/ 2026-05-22T16:38:10+00:00 https://threatnote.com/wire/lawmakers-demand-answers-as-cisa-tries-to-contain-data-leak/ 2026-05-22T16:34:24+00:00 https://threatnote.com/wire/cve-2018-25357-dolibarr-erp-crm-7-0-3-remote-code-evaluation-via-install-step1-php/ 2026-05-23T18:32:14+00:00 https://threatnote.com/wire/cve-2018-25358-d-link-dir601-2-02na-credential-disclosure-via-my_cgi-cgi/ 2026-05-23T18:30:57+00:00 https://threatnote.com/wire/cve-2018-25356-sipp-3-6-local-buffer-overflow-via-command-line-arguments/ 2026-05-23T18:30:55+00:00 https://threatnote.com/wire/cve-2018-25355-audiograbber-1-83-local-buffer-overflow-via-seh/ 2026-05-23T18:30:54+00:00 https://threatnote.com/wire/cve-2018-25353-redaxo-cms-mediapool-addon-5-5-1-arbitrary-file-upload/ 2026-05-23T18:30:53+00:00 https://threatnote.com/advisory/dpdpa-is-not-about-tools-it-is-about-lawful-processing/ 2026-05-24T18:22:07+00:00 https://threatnote.com/briefing/threatnote-briefing-2-dpdpas-real-problem-and-this-weeks-wire/ 2026-05-24T18:30:42+00:00 https://threatnote.com/wire/cve-2018-25351-joomla-component-ekrishta-2-10-sql-injection-via-username/ 2026-05-23T18:30:51+00:00 https://threatnote.com/wire/cve-2018-25379-collectric-cmu-1-0-sql-injection-via-lang-parameter/ 2026-05-25T14:15:22+00:00 https://threatnote.com/wire/cve-2018-25377-flash-slideshow-maker-professional-5-20-buffer-overflow-seh/ 2026-05-25T14:15:20+00:00 https://threatnote.com/wire/cve-2018-25376-socusoft-3gp-photo-slideshow-8-05-buffer-overflow-seh/ 2026-05-25T14:15:19+00:00 https://threatnote.com/wire/cve-2018-25375-socusoft-ipod-photo-slideshow-8-05-buffer-overflow-seh/ 2026-05-25T14:15:19+00:00 https://threatnote.com/wire/cve-2018-25374-softneta-meddream-pacs-server-premium-6-7-1-1-directory-traversal/ 2026-05-25T14:15:18+00:00 https://threatnote.com/wire/cve-2026-8890-code100x-mobile-api-authentication-bypass-via-header-spoofing/ 2026-05-26T19:16:34+00:00 https://threatnote.com/wire/cve-2026-3660-ibm-engineering-lifecycle-management-jazz-foundation-is-vulnerable-to-authentication-bypass/ 2026-05-26T19:16:27+00:00 https://threatnote.com/wire/cve-2026-9560-openvpn-connect-privilege-escalation-vulnerability/ 2026-05-26T18:16:58+00:00 https://threatnote.com/wire/cve-2026-8855-ibm-http-server-is-affected-by-multiple-vulnerabilities/ 2026-05-26T18:16:57+00:00 https://threatnote.com/wire/cve-2026-8834-ibm-http-server-is-affected-by-multiple-vulnerabilities/ 2026-05-26T18:16:56+00:00 https://threatnote.com/wire/cve-2026-4868-authorization-bypass-through-user-controlled-key-in-gitlab/ 2026-05-27T19:16:24+00:00 https://threatnote.com/wire/cve-2026-5509-arbitrary-command-injection-via-browser-developer-console-in-tp-link-archer-be450-and-be7200/ 2026-05-27T18:16:29+00:00 https://threatnote.com/wire/cve-2026-48153-budibase-ssrf-via-oauth2-token-endpoint-url-reaches-internal-hosts-and-cloud-metadata/ 2026-05-27T18:16:27+00:00 https://threatnote.com/wire/cve-2026-48152-budibase-basic-app-users-can-exfiltrate-stored-rest-datasource-auth-by-rewriting-datasource-base-url/ 2026-05-27T18:16:27+00:00 https://threatnote.com/wire/cve-2026-48150-budibase-workspace-scoped-builder-escalates-to-global-admin-via-api-public-v1-roles-assign/ 2026-05-27T18:16:27+00:00 https://threatnote.com/wire/cve-2026-32847-deepcode-1-2-0-path-traversal-via-spa-catch-all-route-in-main-py/ 2026-05-28T19:32:13+00:00 https://threatnote.com/wire/cve-2026-33590-insecure-default-permissions-in-portainer-ce/ 2026-05-28T19:30:06+00:00 https://threatnote.com/wire/cve-2026-4944-hardcoded-trust_remote_codetrue-in-vllm-project-vllm-bypasses-user-security-control/ 2026-05-28T19:16:42+00:00 https://threatnote.com/wire/cve-2026-46509-deepobj-improperly-controlled-modification-of-object-prototype-attributes-prototype-pollution/ 2026-05-28T19:16:39+00:00 https://threatnote.com/wire/cve-2026-45044-rustfs-authentication-bypass-in-profile-cpu-and-profile-memory-allows-unauthenticated-access-to-profiling-handlers/ 2026-05-28T19:16:38+00:00 https://threatnote.com/wire/cve-2026-9051-authentication-bypass-vulnerability-in-ni-systemlink-enterprise/ 2026-05-29T19:16:28+00:00 https://threatnote.com/wire/cve-2026-49367-jetbrains-intellij-idea-command-execution-vulnerability/ 2026-05-29T19:16:26+00:00 https://threatnote.com/wire/cve-2026-47744-shopper-authorization-bypass-and-rbac-privilege-escalation-in-team-settings/ 2026-05-29T19:16:26+00:00 https://threatnote.com/wire/cve-2026-49368-jetbrains-youtrack-stored-xss-vulnerability-in-project-notification-templates/ 2026-05-29T19:16:26+00:00 https://threatnote.com/wire/cve-2026-47740-shopper-authorization-bypass-in-multiple-livewire-admin-components/ 2026-05-29T19:16:25+00:00 https://threatnote.com/wire/cve-2026-10126-edimax-br-6478ac-post-request-formqos-buffer-overflow/ 2026-05-30T17:16:21+00:00 https://threatnote.com/wire/cve-2026-10124-shibby-tomato-zserv-ripd-rip_zebra_read_ipv4-stack-based-overflow/ 2026-05-30T16:17:04+00:00 https://threatnote.com/wire/cve-2026-10123-trendnet-tew-432brp-formsetdomainfilter-stack-based-overflow/ 2026-05-30T16:17:04+00:00 https://threatnote.com/wire/cve-2026-10122-trendnet-tew-432brp-formsetprotocolfilter-stack-based-overflow/ 2026-05-30T16:17:04+00:00 https://threatnote.com/wire/cve-2026-10121-trendnet-tew-432brp-formseturlfilter-stack-based-overflow/ 2026-05-30T16:17:04+00:00 https://threatnote.com/wire/cve-2026-10192-tenda-w12-httpd-set_local_time_0-stack-based-overflow/ 2026-05-31T17:16:30+00:00 https://threatnote.com/wire/cve-2026-10191-tenda-w12-httpd-cgiwifimacfilterset-stack-based-overflow/ 2026-05-31T16:16:41+00:00 https://threatnote.com/wire/cve-2026-10189-tenda-w12-httpd-cgisystimeinfoset-stack-based-overflow/ 2026-05-31T16:16:41+00:00 https://threatnote.com/wire/cve-2026-10188-tenda-w12-httpd-cgistakickoff-stack-based-overflow/ 2026-05-31T15:16:16+00:00 https://threatnote.com/wire/cve-2026-10187-totolink-n300rh-web-management-wireless-so-setwifibasicconfig-stack-based-overflow/ 2026-05-31T15:16:15+00:00 https://threatnote.com/wire/miasma-supply-chain-attack-compromises-red-hat-npm-packages-with-credential-stealing-worm/ 2026-06-01T17:40:28+00:00 https://threatnote.com/wire/hackers-used-metas-ai-support-bot-to-seize-instagram-accounts/ 2026-06-01T17:32:50+00:00 https://threatnote.com/wire/cve-2026-45156-nextcloud-authentication-bypass-in-id4me-handling-via-missing-jwt-signature-verification-in-user-oidc/ 2026-06-01T17:17:09+00:00 https://threatnote.com/wire/cve-2026-45132-cloudpirates-open-source-helm-charts-github-actions-workflow-leaks-pat-and-ssh-signing-key-via-unsafe-credential-handling/ 2026-06-01T17:17:08+00:00 https://threatnote.com/wire/cve-2026-45131-cloudpirates-open-source-helm-charts-github-actions-pull_request_target-workflow-allows-secret-exfiltration-via-fork-pull-requests/ 2026-06-01T17:17:08+00:00 https://threatnote.com/wire/google-june-2026-android-update-patches-124-flaws-one-actively-exploited/ 2026-06-02T18:46:00+00:00 https://threatnote.com/wire/gamaredon-exploits-winrar-to-deliver-gammaworm-and-gammasteel-against-ukraine/ 2026-06-02T18:21:49+00:00 https://threatnote.com/wire/oracle-weblogic-cve-2024-21182-added-to-kev-catalog-after-active-exploitation/ 2026-06-02T18:14:42+00:00 https://threatnote.com/wire/cve-2026-42074-openclaude-sandbox-bypass-via-model-controlled-dangerouslydisablesandbox-input/ 2026-06-02T17:16:32+00:00 https://threatnote.com/wire/cve-2026-0611-spacelabs-healthcare-sentinel-10-5-x-11-6-0-unauthenticated-rce-via-net-remoting/ 2026-06-02T17:16:25+00:00 https://threatnote.com/wire/cve-2026-42321-glpi-has-stored-xss-in-asset-locks/ 2026-06-03T16:16:30+00:00 https://threatnote.com/wire/cve-2026-5241-policy-bypass-in-lightglue-nested-config-resolution-in-huggingface-transformers/ 2026-06-03T14:16:46+00:00 https://threatnote.com/wire/cve-2026-35085-stack-buffer-overflow-in-method-gdv-serverconfig/ 2026-06-03T13:16:21+00:00 https://threatnote.com/wire/cve-2026-35084-stack-buffer-overflow-in-method-dali-devconfig/ 2026-06-03T13:16:21+00:00 https://threatnote.com/wire/cve-2026-35083-stack-buffer-overflow-in-method-bac-deviceobject/ 2026-06-03T13:16:20+00:00 https://threatnote.com/wire/cve-2026-25551-seagull-software-bartender-deserialization-privilege-escalation-via-net-remoting-service/ 2026-06-04T17:20:09+00:00 https://threatnote.com/wire/cve-2026-10880-unauthenticated-sql-injection-in-osnexus-quantastor/ 2026-06-04T17:19:33+00:00 https://threatnote.com/wire/cve-2025-67446-neterbit-nw-431f-router-authentication-bypass-via-predictable-cookie/ 2026-06-04T17:16:30+00:00 https://threatnote.com/wire/cve-2026-25550-seagull-software-bartender-unauthenticated-rce-via-net-remoting-service/ 2026-06-04T17:13:13+00:00 https://threatnote.com/wire/cisco-patches-cve-2026-20230-in-unified-cm-as-exploit-code-goes-public/ 2026-06-04T16:55:51+00:00 https://threatnote.com/wire/ironworm-and-new-miasma-worm-variant-hit-npm-in-supply-chain-attacks/ 2026-06-05T18:05:30+00:00 https://threatnote.com/wire/cve-2026-2379-arista-eos-ipsec-tunnel-sequence-number-mismatch-via-interface-flaps-when-anti-replay-is-disabled/ 2026-06-05T17:59:40+00:00 https://threatnote.com/wire/cve-2026-50733-markdown-preview-enhanced-arbitrary-code-execution-via-wavedrom-eval/ 2026-06-05T17:49:53+00:00 https://threatnote.com/wire/cve-2026-49493-markdown-preview-enhanced-arbitrary-code-execution-via-bitfield-interpretjs/ 2026-06-05T17:49:52+00:00 https://threatnote.com/wire/cve-2026-49492-markdown-preview-enhanced-os-command-injection-in-external-file-and-link-opening/ 2026-06-05T17:49:52+00:00 https://threatnote.com/wire/cve-2026-11413-jingdong-jd-cloud-box-ax6600-jdcweb_rpc-set_macfilter-stack-based-overflow/ 2026-06-06T14:16:20+00:00 https://threatnote.com/wire/new-chatgpt-lockdown-mode-limits-tools-that-could-enable-data-exfiltration/ 2026-06-06T13:36:57+00:00 https://threatnote.com/wire/free-apps-are-quietly-turning-smart-tvs-into-web-scraping-proxies-for-ai/ 2026-06-06T08:29:05+00:00 https://threatnote.com/wire/cisa-adds-actively-exploited-solarwinds-serv-u-dos-flaw-to-kev-catalog/ 2026-06-06T08:14:31+00:00 https://threatnote.com/wire/ai-agent-uncovers-21-zero-days-in-ffmpeg-chrome-patches-record-429-bugs/ 2026-06-06T07:28:30+00:00 https://threatnote.com/insights/the-permission-was-the-easy-part/ 2026-06-07T19:24:48+00:00 https://threatnote.com/wire/cve-2026-49494-comodo-internet-security-inspect-sys-ipv6-integer-underflow-remote-denial-of-service/ 2026-06-07T13:16:20+00:00 https://threatnote.com/wire/cve-2026-26422-clash-verge-service-ipc-local-privilege-escalation/ 2026-06-06T23:16:43+00:00 https://threatnote.com/briefing/threatnote-briefing-3-week-of-may-25-june-8-2026/ 2026-06-07T20:37:57+00:00 https://threatnote.com/wire/cve-2026-8913-command-injection-in-tp-links-archer-mr600-wireguard-client-configuration/ 2026-06-08T18:16:34+00:00 https://threatnote.com/wire/cve-2026-11556-tenda-f451-web-management-writefacmac-formwritefacmac-os-command-injection/ 2026-06-08T18:16:33+00:00 https://threatnote.com/wire/cve-2026-11553-tenda-hg7hg9-hg10-formpppedit-stack-based-overflow/ 2026-06-08T18:16:32+00:00 https://threatnote.com/wire/cve-2026-46481-openmetadata-test_connection-workflow-leaks-ingestion-bot-jwt-and-database-password-to-regular-users/ 2026-06-08T17:16:51+00:00 https://threatnote.com/wire/cve-2026-41448-adguard-home-authentication-bypass-via-path-traversal-in-admin-token-cookie/ 2026-06-08T17:16:42+00:00 https://threatnote.com/wire/cve-2026-50635-limesurvey-password-reset-host-header-injection-discloses-reset-token/ 2026-06-09T18:17:10+00:00 https://threatnote.com/wire/cve-2026-50636-limesurvey-remotecontrol-invite_participants-remind_participants-sql-injection/ 2026-06-09T18:17:10+00:00 https://threatnote.com/wire/cve-2026-34693-adobe-experience-manager-forms-jee-cross-site-scripting-reflected-xss-cwe-79/ 2026-06-09T18:16:39+00:00 https://threatnote.com/wire/cve-2026-34691-adobe-experience-manager-forms-jee-cross-site-scripting-stored-xss-cwe-79/ 2026-06-09T18:16:38+00:00 https://threatnote.com/wire/cve-2026-7383-possible-heap-buffer-overflow-in-asn-1-multibyte-string-conversion/ 2026-06-09T17:17:50+00:00 https://threatnote.com/wire/cve-2026-9151-command-injection-vulnerability-in-openvpn-on-multiple-tp-link-archer-routers/ 2026-06-10T18:17:15+00:00 https://threatnote.com/wire/cve-2026-50570-fission-incomplete-capability-denylist-in-environment-function-podspec-validation-allows-tenant-added-cap_sys_time-and-cross-tenant-node-wall-clock-corruption/ 2026-06-10T18:17:13+00:00 https://threatnote.com/wire/cve-2026-50566-fission-environment-runtime-container-and-builder-container-securitycontext-bypass-allows-privileged-pod-creation/ 2026-06-10T18:17:13+00:00 https://threatnote.com/wire/cve-2026-50564-fission-environment-crd-podspec-passthrough-enables-hostpid-hostnetwork-privileged-pods-node-escape/ 2026-06-10T18:17:12+00:00 https://threatnote.com/wire/cve-2026-50563-fission-container-executor-function-podspec-injection-leading-to-node-escape/ 2026-06-10T18:17:12+00:00 https://threatnote.com/wire/cve-2026-45176-idira-endpoint-privilege-manager-agent-local-privilege-escalation-via-internal-communication-or-file-operation-manipulation/ 2026-06-11T18:49:00+00:00 https://threatnote.com/wire/cve-2026-45177-idira-secrets-manager-saas-edge-authentication-bypass-of-an-internal-validation-mechanism/ 2026-06-11T18:40:17+00:00 https://threatnote.com/wire/cve-2026-48547-kanadojo-0-1-18-command-injection-via-patchnotesdata-json-in-release-yml/ 2026-06-11T18:33:14+00:00 https://threatnote.com/wire/cve-2026-45178-idira-secrets-manager-self-hosted-improper-access-control-in-internal-cluster-endpoints/ 2026-06-11T18:19:08+00:00 https://threatnote.com/wire/cve-2026-49261-mariadb-server-has-unsafe-parameter-handling-in-wsrep_notify_cmd/ 2026-06-11T18:16:26+00:00 https://threatnote.com/wire/400-arch-linux-aur-packages-hijacked-to-install-rust-credential-stealer/ 2026-06-12T19:24:50+00:00 https://threatnote.com/wire/cve-2026-53408-zoom-workplace-improper-authorization-vulnerability/ 2026-06-12T19:16:30+00:00 https://threatnote.com/wire/cve-2026-53407-zoom-workplace-improper-authorization/ 2026-06-12T19:16:29+00:00 https://threatnote.com/wire/cve-2026-50108-naxclow-iot-platform-missing-authorization/ 2026-06-12T19:16:29+00:00 https://threatnote.com/wire/cve-2026-50101-naxclow-iot-platform-not-using-password-aging/ 2026-06-12T19:16:29+00:00 https://threatnote.com/wire/cve-2026-12183-nefteprodukttekhnika-buk-ts-g-improper-authentication/ 2026-06-13T18:16:22+00:00 https://threatnote.com/wire/critical-splunk-enterprise-flaw-lets-attackers-run-code-without-authentication/ 2026-06-13T13:23:03+00:00 https://threatnote.com/wire/cve-2026-11624-model-context-protocol-dns-rebinding-vulnerability/ 2026-06-13T10:16:17+00:00 https://threatnote.com/wire/u-s-orders-anthropic-to-suspend-fable-5-and-mythos-5-access-for-foreign-nationals/ 2026-06-13T05:42:50+00:00 https://threatnote.com/wire/cve-2026-53868-capgo-12-128-2-denial-of-service-via-unverified-email-account-registration-and-deletion/ 2026-06-12T22:16:56+00:00 https://threatnote.com/wire/cve-2026-54413-driftregion-uds-integer-underflow-out-of-bounds-read/ 2026-06-14T17:38:16+00:00 https://threatnote.com/wire/cve-2026-54412-mqtt-c-heap-out-of-bounds-read-and-integer-underflow/ 2026-06-14T17:26:36+00:00 https://threatnote.com/wire/cve-2026-54410-nanomodbus-tcp-server-off-by-one-buffer-overflow/ 2026-06-14T17:10:12+00:00 https://threatnote.com/wire/cve-2026-54420-litespeed-cpanel-plugin-symlink-privilege-escalation/ 2026-06-14T04:16:28+00:00 https://threatnote.com/wire/cve-2026-12174-d-link-dcs-935l-http-rhea-snprintf-format-string/ 2026-06-13T21:16:18+00:00 https://threatnote.com/wire/north-korean-hackers-are-turning-developer-tools-into-malware-delivery-channels/ 2026-06-15T19:32:52+00:00 https://threatnote.com/wire/litellm-vulnerability-chain-lets-low-privilege-users-take-over-ai-gateway-servers/ 2026-06-15T16:39:01+00:00 https://threatnote.com/wire/cve-2026-9862-core-privileged-access-manager-boks-autoregistration-service-command-injection-vulnerability/ 2026-06-15T16:16:35+00:00 https://threatnote.com/wire/one-click-microsoft-365-copilot-flaw-could-have-let-attackers-steal-emails-files-and-mfa-codes/ 2026-06-15T15:09:05+00:00 https://threatnote.com/wire/cve-2026-5242-code-injection-in-mia-technologies-pizzy-library/ 2026-06-15T14:16:37+00:00 https://threatnote.com/wire/google-vertex-ai-sdk-flaw-let-attackers-hijack-model-uploads-via-bucket-squatting/ 2026-06-16T19:05:41+00:00 https://threatnote.com/wire/cve-2026-53866-openclaw-2026-5-12-allowlist-bypass-in-shell-inline-command-parsing/ 2026-06-16T18:05:11+00:00 https://threatnote.com/wire/cve-2026-53864-openclaw-2026-5-26-insufficient-environment-variable-sanitization-in-node-js-control-variables/ 2026-06-16T18:05:09+00:00 https://threatnote.com/wire/cve-2026-53857-openclaw-2026-5-3-mutable-display-name-binding-in-zalo-allowfrom-policy/ 2026-06-16T18:05:05+00:00 https://threatnote.com/wire/cve-2026-53855-openclaw-2026-4-2-shell-positional-parameters-bypass-in-inline-eval-checks/ 2026-06-16T18:05:03+00:00 https://threatnote.com/wire/crypto-clipper-campaign-abuses-fake-reviews-ai-narrators-and-virustotal-comments/ 2026-06-17T18:14:24+00:00 https://threatnote.com/wire/cve-2026-55196-hermes-webui-0-51-409-unauthenticated-passkey-registration-via-authentication-bypass/ 2026-06-17T17:58:56+00:00 https://threatnote.com/wire/cve-2026-53871-hermes-webui-0-51-368-profile-scoped-authorization-bypass-via-forged-hermes_profile-cookie/ 2026-06-17T17:58:29+00:00 https://threatnote.com/wire/cve-2026-53869-hermes-agent-0-16-0-dns-rebinding-bypass-via-websocket-endpoints/ 2026-06-17T17:57:30+00:00 https://threatnote.com/wire/microsoft-confirms-rogueplanet-defender-zero-day-says-patch-is-in-development/ 2026-06-17T17:36:28+00:00