Track daily vulnerability activity, KEV additions, public exploits, critical disclosures, and EPSS risk shifts.
Daily summary
Wbce Cms: public exploit or PoC linked (SQL injection)
7 new critical disclosures — review patch status on exposed services.
Top threats today
Three highest-priority changes — analyst brief, not a CVE dump.
Active exploit activity
CVE-2021-3817wbce_cms is vulnerable to Improper Neutralization of Special Elements used in an SQL Command
Public exploit or PoC available
Exploit activity linked
Wbce Cms SQL injection now has public exploit or PoC linkage — assume opportunistic scanning and targeted follow-on activity.
Critical exposure
CVE-2021-43439RCE in Add Review Function in iResturant 1.0 Allows remote attacker to execute commands remotely
CVSS 9.8
Remote code execution exposure
New critical Iresturant Project Iresturant RCE (CVSS 9.8) — fresh disclosure window; early internet scanning often precedes mature exploit chains.
Critical exposure
CVE-2021-44675Zohocorp Manageengine Servicedesk Plus Msp RCE
CVSS 9.8
Remote code execution exposure
New critical Zohocorp Manageengine Servicedesk Plus Msp RCE (CVSS 9.8) — fresh disclosure window; early internet scanning often precedes mature exploit chains.