Track daily vulnerability activity, KEV additions, public exploits, critical disclosures, and EPSS risk shifts.
Three highest-priority changes — analyst brief, not a CVE dump.
Critical exposure
New critical Peaksel Animal Sounds And Ringtones RCE (CVSS 9.8) — fresh disclosure window; early internet scanning often precedes mature exploit chains.
Critical exposure
New critical Zora RCE (CVSS 9.8) — fresh disclosure window; early internet scanning often precedes mature exploit chains.
Critical exposure
New critical Funambol Zefiro RCE (CVSS 9.8) — fresh disclosure window; early internet scanning often precedes mature exploit chains.
CISA KEV — confirmed in-the-wild exploitation.
Nothing flagged in this category for this digest.
Nothing flagged in this category for this digest.
Nothing flagged in this category for this digest.
XenForo before 2.3.7 contains a security issue affecting Passkeys that have been added to user accounts.
The MAVLink communication protocol does not require cryptographic authentication by default.
An arbitrary file overwrite vulnerability in UXGROUP LLC Cast to TV Screen Mirroring v2.2.77 allows attackers to overwrite critical inter...
An arbitrary file overwrite vulnerability in PEAKSEL D.O.O.
An arbitrary file overwrite vulnerability in Zora: Post, Trade, Earn Crypto v2.60.0 allows attackers to overwrite critical internal files...
An arbitrary file overwrite vulnerability in Funambol, Inc.
The MS27102A Remote Spectrum Monitor is vulnerable to an authentication bypass that allows unauthorized users to access and manipulate it...
APTRS (Automated Penetration Testing Reporting System) is a Python and Django-based automated reporting tool designed for penetration tes...
SiYuan is a personal knowledge management system.
SiYuan is a personal knowledge management system.