Jul 3, 2023 Cyber Threat Intelligence

Track daily vulnerability activity, KEV additions, public exploits, critical disclosures, and EPSS risk shifts.

Daily summary

  • Codekop: public exploit or PoC linked (XSS)
  • 6 new critical disclosures — review patch status on exposed services.

Top threats today

Three highest-priority changes — analyst brief, not a CVE dump.

Active exploit activity

CVE-2022-4297 Netflixtech Wp Autocomplete Search SQL Injection

  • Public exploit or PoC available
  • Exploit activity linked
  • Internet-facing CMS deployments affected

WordPress plugin exposure with public exploit material — mass targeting of internet-facing CMS installs is common once PoCs circulate.

Active exploit activity

CVE-2023-24078 Realtimelogic Fuguhub RCE

  • Public exploit or PoC available
  • Exploit activity linked
  • Remote code execution exposure

Realtimelogic Fuguhub RCE now has public exploit or PoC linkage — assume opportunistic scanning and targeted follow-on activity.

Critical exposure

CVE-2023-26258 Arcserve UDP through 9.0.6034 allows authentication bypass.

  • CVSS 9.8
  • Authentication bypass — unauthenticated access risk

New critical Arcserve Udp Auth Bypass (CVSS 9.8) — fresh disclosure window; early internet scanning often precedes mature exploit chains.

Active exploitation

CISA KEV — confirmed in-the-wild exploitation.

Nothing flagged in this category for this digest.

View KEV additions

Exploit & PoC activity

CVE-2023-36346 Exploit

POS Codekop v2.0 was discovered to contain a reflected cross-site scripting (XSS) vulnerability via the nm_member parameter at print.php.

CVE-2023-36348 Exploit

POS Codekop v2.0 was discovered to contain an authenticated remote code execution (RCE) vulnerability via the filename parameter.

CVE-2023-36355 Exploit

TP-Link TL-WR940N V4 was discovered to contain a buffer overflow via the ipStart parameter at /userRpm/WanDynamicIpV6CfgRpm.

CVE-2023-33137 Exploit

Microsoft Excel Remote Code Execution Vulnerability

CVE-2023-28285 Exploit

Microsoft Office Remote Code Execution Vulnerability

CVE-2023-24078 Exploit

Real Time Logic FuguHub v8.1 and earlier was discovered to contain a remote code execution (RCE) vulnerability via the component /FuguHub...

CVE-2022-4297 Exploit

The WP AutoComplete Search WordPress plugin through 1.0.4 does not sanitise and escape a parameter before using it in a SQL statement via...

View new exploit links

Exploitation dynamics

Nothing flagged in this category for this digest.

See EPSS increases

New critical disclosures

CVE-2020-22151 CVSS 9.8

Permissions vulnerability in Fuel-CMS v.1.4.6 allows a remote attacker to execute arbitrary code via a crafted zip file to the assests pa...

CVE-2020-22153 CVSS 9.8

File Upload vulnerability in FUEL-CMS v.1.4.6 allows a remote attacker to execute arbitrary code via a crafted .php file to the upload pa...

CVE-2020-22597 CVSS 9.8

An issue in Jerrscript- project Jerryscrip v.

CVE-2023-26258 CVSS 9.8

Arcserve UDP through 9.0.6034 allows authentication bypass.

CVE-2023-35797 CVSS 9.8

Improper Input Validation vulnerability in Apache Software Foundation Apache Airflow Hive Provider.

CVE-2023-36258 CVSS 9.8

An issue in LangChain before 0.0.236 allows an attacker to execute arbitrary code because Python code with os.system, exec, or eval can b...

View critical disclosures

cvelogic Threat Intelligence