Track daily vulnerability activity, KEV additions, public exploits, critical disclosures, and EPSS risk shifts.
Three highest-priority changes — analyst brief, not a CVE dump.
Critical active threat
F5 BIG-IP RCE is on CISA KEV — confirmed in-the-wild exploitation. Expect continued targeting while the issue remains on the catalog.
Critical exposure
New critical Oretnom23 Online Food Ordering System SQL Injection (CVSS 9.8) — fresh disclosure window; early internet scanning often precedes mature exploit chains.
Critical exposure
New critical disclosure (CVSS 9.8) — high severity with a short public awareness window before exploit material typically surfaces.
CISA KEV — confirmed in-the-wild exploitation.
F5 BIG-IP Stack-Based Buffer Overflow
Nothing flagged in this category for this digest.
Nothing flagged in this category for this digest.
Ubiquiti UniFi Network Controller prior to 5.10.12 (excluding 5.6.42), UAP FW prior to 4.0.6, UAP-AC, UAP-AC v2, and UAP-AC Outdoor FW pr...
A SQL Injection vulnerability exists in SourceCodester Online Food Ordering System v1.0 in the admin/manage_product.php file via the "id"...
WWBN AVideo is an open source video platform.
Langflow is a tool for building and deploying AI-powered agents and workflows.
Gematik Authenticator securely authenticates users for login to digital health applications.
Handlebars provides the power necessary to let users build semantic templates.
Notesnook is a note-taking app.
pyLoad is a free and open-source download manager written in Python.
Home Assistant is open source home automation software that puts local control and privacy first.
WWBN AVideo is an open source video platform.