Track daily vulnerability activity, KEV additions, public exploits, critical disclosures, and EPSS risk shifts.
Three highest-priority changes — analyst brief, not a CVE dump.
Critical active threat
Microsoft Windows RCE is on CISA KEV — confirmed in-the-wild exploitation. Expect continued targeting while the issue remains on the catalog.
Active exploit activity
Virtuasoftware Cobranca SQL Injection now has public exploit or PoC linkage — assume opportunistic scanning and targeted follow-on activity.
Critical exposure
New critical Kreado Kreasfero RCE (CVSS 9.8) — fresh disclosure window; early internet scanning often precedes mature exploit chains.
CISA KEV — confirmed in-the-wild exploitation.
Microsoft Windows Support Diagnostic Tool (MSDT) Remote Code Execution
Marval MSM v14.19.0.12476 is vulnerable to OS Command Injection due to the insecure handling of VBScripts.
Marval MSM v14.19.0.12476 is vulnerable to Cross Site Request Forgery (CSRF).
Rejected reason: DO NOT USE THIS CANDIDATE NUMBER.
Rejected reason: DO NOT USE THIS CANDIDATE NUMBER.
In TP-Link Router AX50 firmware 210730 and older, import of a malicious backup file via web interface can lead to remote code execution d...
There is a SQL Injection vulnerability in ChurchCRM 4.4.5 via the 'PersonID' field in /churchcrm/WhyCameEditor.php.
Virtua Cobranca before 12R allows SQL Injection on the login page.
A reflected cross-site scripting (XSS) vulnerability in the login portal of Avantune Genialcloud ProJ - 10 allows attackers to execute ar...
Sourcegraph is a code search and navigation engine.
index.php?sec=godmode/extensions&sec2=extensions/files_repo in Pandora FMS v7.0 NG allows authenticated administrators to upload maliciou...
Nothing flagged in this category for this digest.
Kreado Kreasfero 1.5 does not properly sanitize uploaded files to the media directory.
Depending on the configuration of the route permission table in file 'saprouttab', it is possible for an unauthenticated attacker to exec...
A vulnerability has been identified in SICAM GridEdge (Classic) (All versions < V2.6.6).
An issue in TopIDP3000 Topsec Operating System tos_3.3.005.665b.15_smpidp allows attackers to perform a brute-force attack via a crafted...
An issue in adm.cgi of WAVLINK AERIAL X 1200M M79X3.V5030.180719 allows attackers to execute arbitrary commands via a crafted POST request.
Fast Food Ordering System v1.0 is vulnerable to Delete any file.
Fast Food Ordering System v1.0 is vulnerable to SQL Injection via /ffos/admin/menus/view_menu.php?id=.
Hospital's Patient Records Management System v1.0 is vulnerable to SQL Injection via /hprms/admin/patients/manage_patient.php?id=.
Hospital's Patient Records Management System v1.0 is vulnerable to SQL Injection via /hprms/classes/Master.php?f=delete_patient_admission.
An issue was discovered in Couchbase Server before 7.0.4.