Critical exposure
CVE-2021-3262 Trispark Novusedu SQL injection
- CVSS 9.8
New critical Trispark Novusedu SQL injection (CVSS 9.8) — fresh disclosure window; early internet scanning often precedes mature exploit chains.
Track daily vulnerability activity, KEV additions, public exploits, critical disclosures, and EPSS risk shifts.
Three highest-priority changes — analyst brief, not a CVE dump.
Critical exposure
New critical Trispark Novusedu SQL injection (CVSS 9.8) — fresh disclosure window; early internet scanning often precedes mature exploit chains.
Critical exposure
New critical Vmware Aria Operations For Networks Auth Bypass (CVSS 9.8) — fresh disclosure window; early internet scanning often precedes mature exploit chains.
Critical exposure
New critical Bladex Springblade SQL Injection (CVSS 9.8) — fresh disclosure window; early internet scanning often precedes mature exploit chains.
CISA KEV — confirmed in-the-wild exploitation.
Nothing flagged in this category for this digest.
Nothing flagged in this category for this digest.
Nothing flagged in this category for this digest.
An issue found in Earcms Ear App v.20181124 allows a remote attacker to execute arbitrary code via the uload/index-uplog.php.
TripSpark VEO Transportation-2.2.x-XP_BB-20201123-184084 NovusEDU-2.2.x-XP_BB-20201123-184084 allows unsafe data inputs in POST body para...
Motorola MBTS Site Controller accepts hard-coded backdoor password.
Aria Operations for Networks contains an Authentication Bypass vulnerability due to a lack of unique cryptographic key generation.
In SpringBlade V3.6.0 when executing SQL query, the parameters submitted by the user are not wrapped in quotation marks, which leads to S...
A heap-based buffer overflow exists in the qr_reader_match_centers function of ZBar 0.23.90.
A stack-based buffer overflow vulnerability exists in the lookup_sequence function of ZBar 0.23.90.
Qlik Sense HTTP Tunneling
An issue was discovered in FRRouting FRR through 9.0.
An issue was discovered in FRRouting FRR 9.0.