Track daily vulnerability activity, KEV additions, public exploits, critical disclosures, and EPSS risk shifts.
Three highest-priority changes — analyst brief, not a CVE dump.
Critical active threat
Citrix NetScaler ADC And NetScaler Gateway RCE is on CISA KEV — confirmed in-the-wild exploitation. Expect continued targeting while the issue remains on the catalog.
Critical exposure
New critical Warfareplugins Social Warfare RCE (CVSS 10) — fresh disclosure window; early internet scanning often precedes mature exploit chains.
Critical exposure
New critical disclosure (CVSS 10) — high severity with a short public awareness window before exploit material typically surfaces.
CISA KEV — confirmed in-the-wild exploitation.
Citrix NetScaler ADC and NetScaler Gateway Code Injection
Citrix NetScaler ADC and NetScaler Gateway Buffer Overflow
Google Chromium V8 Out-of-Bounds Memory Access
Nothing flagged in this category for this digest.
Nothing flagged in this category for this digest.
The Social Warfare plugin for WordPress is vulnerable to Remote Code Execution in versions up to, and including, 3.5.2 via the 'swp_url'...
Studio Network Solutions ShareBrowser before 7.0 on macOS mishandles signature verification, aka PMP-2636.
Inadequate access control in the C21 Live Encoder and Live Mosaic product, version 5.3.
Unrestricted upload of dangerous file types in the C21 Live Encoder and Live Mosaic product, version 5.3.
pyLoad is a free and open-source Download Manager written in pure Python.