Critical exposure
CVE-2023-2583 Code Injection in GitHub repository jsreport/jsreport prior to 3.11.3.
- CVSS 10
New critical disclosure (CVSS 10) — high severity with a short public awareness window before exploit material typically surfaces.
Track daily vulnerability activity, KEV additions, public exploits, critical disclosures, and EPSS risk shifts.
Three highest-priority changes — analyst brief, not a CVE dump.
Critical exposure
New critical disclosure (CVSS 10) — high severity with a short public awareness window before exploit material typically surfaces.
Critical exposure
New critical Apple Ipados RCE (CVSS 9.8) — fresh disclosure window; early internet scanning often precedes mature exploit chains.
Critical exposure
New critical Online Pizza Ordering System Project Online Pizza Ordering System SQL Injection (CVSS 9.8) — fresh disclosure window; early internet scanning often precedes mature exploit chains.
CISA KEV — confirmed in-the-wild exploitation.
Nothing flagged in this category for this digest.
Nothing flagged in this category for this digest.
Nothing flagged in this category for this digest.
This was addressed with additional checks by Gatekeeper on files downloaded from an iCloud shared-by-me folder.
An issue has been discovered in GitLab CE/EE affecting all versions starting from 15.4 before 15.9.7, all versions starting from 15.10 be...
Code Injection in GitHub repository jsreport/jsreport prior to 3.11.3.
The issue was addressed with improved memory handling.
The issue was addressed with improved memory handling.
This issue was addressed with improved state management.
H3C GR-1200W MiniGRW1A0V100R006 was discovered to contain a stack overflow via the function version_set.
SourceCodester Online Pizza Ordering System v1.0 is vulnerable to SQL Injection via the QTY parameter.
`effectindex/tripreporter` is a community-powered, universal platform for submitting and analyzing trip reports.
libspdm is a sample implementation that follows the DMTF SPDM specifications.