Jun 12, 2024 Cyber Threat Intelligence

Track daily vulnerability activity, KEV additions, public exploits, critical disclosures, and EPSS risk shifts.

Daily summary

PHP Group PHP added to CISA KEV — confirmed in-the-wild exploitation.
WordPress plugin RCE/exploit activity: 2 CVEs flagged today.
10 new critical disclosures — review patch status on exposed services.

Top threats today

Three highest-priority changes — analyst brief, not a CVE dump.

Critical active threat

CVE-2024-4577 PHP-CGI OS Command Injection

Actively exploited (CISA KEV)
Listed on CISA KEV

PHP Group PHP Command Injection is on CISA KEV — confirmed in-the-wild exploitation. Expect continued targeting while the issue remains on the catalog.

Critical exposure

CVE-2024-3922 Dokan SQL Injection

CVSS 10
Internet-facing CMS deployments affected

New critical Dokan SQL Injection (CVSS 10) — fresh disclosure window; early internet scanning often precedes mature exploit chains.

Critical exposure

CVE-2024-36265 Apache Submarine privilege escalation

CVSS 9.8
Potential privilege escalation to admin/root

New critical Apache Submarine privilege escalation (CVSS 9.8) — fresh disclosure window; early internet scanning often precedes mature exploit chains.

Active exploitation

CISA KEV — confirmed in-the-wild exploitation.

CVE-2024-4577 KEV

PHP-CGI OS Command Injection

CVE-2024-4610 KEV

Arm Mali GPU Kernel Driver Use-After-Free

View KEV additions

Exploit & PoC activity

Nothing flagged in this category for this digest.

View new exploit links

Exploitation dynamics

Nothing flagged in this category for this digest.

See EPSS increases

New critical disclosures

CVE-2024-1576 CVSS 9.3

SQL Injection vulnerability in MegaBIP software allows attacker to obtain site administrator privileges, including access to the administ...

CVE-2024-1577 CVSS 9.3

Remote Code Execution vulnerability in MegaBIP software allows to execute arbitrary code on the server without requiring authentication b...

CVE-2024-1659 CVSS 9.3

Arbitrary File Upload vulnerability in MegaBIP software allows attacker to upload any file to the server (including a PHP code file) with...

CVE-2024-36264 CVSS 9.8

** UNSUPPORTED WHEN ASSIGNED ** Improper Authentication vulnerability in Apache Submarine Commons Utils.

CVE-2024-36265 CVSS 9.8

** UNSUPPORTED WHEN ASSIGNED ** Incorrect Authorization vulnerability in Apache Submarine Server Core.

CVE-2024-36761 CVSS 9.8

naga v0.14.0 was discovered to contain a stack overflow via the component /wgsl/parse/mod.rs.

CVE-2024-36840 CVSS 9.1

SQL Injection vulnerability in Boelter Blue System Management v.1.3 allows a remote attacker to execute arbitrary code and obtain sensiti...

CVE-2024-37036 CVSS 9.8

CWE-787: Out-of-bounds Write vulnerability exists that could result in an authentication bypass when sending a malformed POST request and...

CVE-2024-3922 CVSS 10

The Dokan Pro plugin for WordPress is vulnerable to SQL Injection via the 'code' parameter in all versions up to, and including, 3.10.3 d...

CVE-2024-4898 CVSS 9.8

The InstaWP Connect – 1-click WP Staging & Migration plugin for WordPress is vulnerable to arbitrary option updates due to a missing auth...

View critical disclosures

cvelogic Threat Intelligence