Mitel MiVoice Connect Command Injection is on CISA KEV — confirmed in-the-wild exploitation. Expect continued targeting while the issue remains on the catalog.
Critical exposure
CVE-2023-0947Path Traversal in GitHub repository flatpressblog/flatpress prior to 1.3.
CVSS 9.8
New critical Flatpress Path Traversal (CVSS 9.8) — fresh disclosure window; early internet scanning often precedes mature exploit chains.
Critical exposure
CVE-2023-24107Hour Of Code Python 2015 Project Hour Of Code Python 2015 Code Execution
CVSS 9.8
Remote code execution exposure
New critical Hour Of Code Python 2015 Project Hour Of Code Python 2015 Code Execution (CVSS 9.8) — fresh disclosure window; early internet scanning often precedes mature exploit chains.