newsThe portal itself — self-promo until real sponsors land
Subscribe, build a custom feed, or pitch a sponsorship at hello@acadenix.com
Latest intel// live feed
25 results//sorted by published//last sync 2026-06-10 00:11Z
Subscribe to news →
CVE-2025-14773 — Improper neutralization of input during web page generation ('cross-site scripting') vulnerability in ABB T-MAC
Improper neutralization of input during web page generation ('cross-site scripting') vulnerability in ABB T-MAC Plus. This issue affects T-MAC Plus: 4.0-24. CVSSv3.1 8.0 (HIGH)
8.0
CVSS v3.1
90
Edit Score
CVE-2025-14772 — Authorization: bypass through User-Controlled key vulnerability in ABB T-MAC Plus.
Authorization bypass through User-Controlled key vulnerability in ABB T-MAC Plus. This issue affects T-MAC Plus: 4.0-24. CVSSv3.1 8.8 (HIGH)
8.8
CVSS v3.1
94
Edit Score
CVE-2025-14771 — Files: or directories accessible to external parties vulnerability in ABB T-MAC Plus.
Files or directories accessible to external parties vulnerability in ABB T-MAC Plus. This issue affects T-MAC Plus: 4.0-24. CVSSv3.1 9.9 (CRITICAL)
9.9
CVSS v3.1
100
Edit Score
The sorry state of skill distribution
Trail of Bits·blog.trailofbits.com
Trail of Bits demonstrated critical bypasses of multiple AI skill marketplace scanners (ClawHub, Cisco skill-scanner, skills.sh integrations) using simple techniques: newline padding, .pyc bytecode poisoning, .docx indirection, and prompt injection. The research reveals that static scanning approaches cannot reliably detect malicious skills, and LLM-based analyzers are easily fooled by social engineering and misdirection embedded in skill documentation.
88
Edit Score
CVE-2026-4035 — A vulnerability in mlflow/mlflow versions prior to 3.11.0 allows for the resolution of environment
A vulnerability in mlflow/mlflow versions prior to 3.11.0 allows for the resolution of environment variables in AI Gateway secrets, which can be exploited to exfiltrate sensitive server-side environment credentials to an attacker-controlled endpoint. This issue arises because the `api_key` field in gateway secrets can accept `$ENV_VAR` references, which are resolved against the MLflow server's environment during runtime. The resolved secrets are then sent in provider authenti CVSSv3.1 9.1 (CRITICAL)
9.1
CVSS v3.1
96
Edit Score
Argamal: Malware hidden in hentai games
Kaspersky Securelist·securelist.comin the wild
Kaspersky discovered Argamal, a previously unknown RAT distributed via trojanized hentai games since at least 2024. The malware uses COM hijacking for persistence, multi-stage PowerShell delivery, and provides full remote control capabilities including file operations, surveillance, and command execution. Hundreds of victims identified primarily in Russia, Brazil, Germany, and Vietnam.
78
Edit Score
FSB’s matryoshka #2/3 – Gamaredon’s gifts that keeps unpacking – GammaLoad
Sekoia.io·sekoia.ioin the wild
Sekoia's TDR team published a deep technical analysis of GammaLoad, the intermediary loader component in Gamaredon's (FSB-operated) 2026 infection chain targeting Ukraine. The analysis documents a three-stage multi-loader architecture using VBScript and PowerShell, leveraging Dead Drop Resolvers (Telegraph, Telegram, Check-Host) to fetch C2 infrastructure, registry-based persistence via scheduled tasks, and in-memory execution to evade detection. The report includes 70+ recovered artifacts, live C2 interaction data, and IOCs, establishing a unified taxonomy (GammaPhish, GammaLoad, GammaWorm, GammaSteel, GammaWipe) to clarify Gamaredon's decade-long malware evolution.
92
Edit Score
CVE-2026-44654 — Librechat Librechat: In versions up to and including 0.8.3, a shared-agent editor can delete file records
LibreChat is an enhanced ChatGPT clone that supports multiple AI providers. In versions up to and including 0.8.3, a shared-agent editor can delete file records through `DELETE /api/files` that the owner has reused across multiple agents. The deletion removes the file globally — not just from the shared agent — breaking the owner's other private agents that reference the same `file_id`. The private agent retains a stale `file_id` reference that no longer resolves. A shared-ag CVSSv3.1 8.1 (HIGH) · EPSS 12th percentile
8.1
CVSS v3.1
91
Edit Score
CVE-2026-35482 — Prior to version 2.0-M5-2606, a sandbox escape vulnerability in the alf.io extension script engine
alf.io is an open source ticket reservation system for conferences, trade shows, workshops, and meetups. Prior to version 2.0-M5-2606, a sandbox escape vulnerability in the alf.io extension script engine allows an authenticated administrator to execute arbitrary operating system commands on the server. The extension system is intended to execute restricted JavaScript in a sandboxed Rhino environment; however, a combination of an unguarded injected Java object (`returnClass`) CVSSv3.1 8.0 (HIGH)
8.0
CVSS v3.1
90
Edit Score
CVE-2026-32625 — LibreChat: This enables full compromise of the installation's cryptographic materials and database credentials without requiring
LibreChat is an enhanced ChatGPT clone that supports multiple AI providers. In versions up to and including 0.8.3, the Model Context Protocol (MCP) server integration resolves ${VAR} placeholders against the server's process.env during Zod schema validation of user-supplied MCP server URLs. Any authenticated user can create a malicious MCP server configuration with a URL pointing to an attacker-controlled domain containing environment variable references, causing the LibreCha CVSSv3.1 9.6 (CRITICAL)
9.6
CVSS v3.1
98
Edit Score
CVE-2022-4992 — Infinity: Dräger Infinity Acute Care System and Standalone Infinity M540 patient monitors versions VG4.1.1, VG4.0.3
Dräger Infinity Acute Care System and Standalone Infinity M540 patient monitors versions VG4.1.1, VG4.0.3, and lower (with VG4.2 partially affected) contain a network message handling vulnerability that allows remote attackers to inject spoofed or tampered data and cause denial-of-service conditions. Attackers can compromise network communications to modify device settings such as alarm states or alarm limits, or overwhelm the system with excessive network traffic causing the CVSSv3.1 8.6 (HIGH)
8.6
CVSS v3.1
93
Edit Score
CVE-2021-4481 — Protector: Dräger Protector Software prior to version 6.4.2 contains a local privilege escalation vulnerability due
Dräger Protector Software prior to version 6.4.2 contains a local privilege escalation vulnerability due to insecure file system permissions that allows local attackers to execute arbitrary code with elevated privileges. Attackers can replace binaries or loaded modules on the host system to execute code with NT SYSTEM privileges. CVSSv3.1 8.2 (HIGH)
8.2
CVSS v3.1
91
Edit Score
CVE-2021-4480 — Protector: Dräger Protector Software prior to version 6.4.2 contains a local privilege escalation vulnerability due
Dräger Protector Software prior to version 6.4.2 contains a local privilege escalation vulnerability due to insecure file system permissions that allows local attackers to execute arbitrary code with elevated privileges. Attackers can replace binaries or loaded modules on the host system to execute code with NT SYSTEM privileges. CVSSv3.1 8.2 (HIGH)
8.2
CVSS v3.1
91
Edit Score
CVE-2026-49448 — authentik is an open-source identity provider.
authentik is an open-source identity provider. Prior to versions 2025.12.6, 2026.2.4, and 2026.5.1, the Source stage can be bypassed by sending an empty POST. This issue has been patched in versions 2025.12.6, 2026.2.4, and 2026.5.1. CVSSv3.1 9.8 (CRITICAL)
9.8
CVSS v3.1
99
Edit Score
CVE-2026-49443 — authentik is an open-source identity provider.
authentik is an open-source identity provider. Prior to versions 2025.12.6, 2026.2.4, and 2026.5.1, an attacker with the ability to change a source connection, and an account in one of the configured sources can log into any account. This issue has been patched in versions 2025.12.6, 2026.2.4, and 2026.5.1. CVSSv3.1 8.8 (HIGH)
8.8
CVSS v3.1
94
Edit Score
CVE-2026-49143 — BrowserStack: Runner through 0.9.5 contains a remote code execution vulnerability in the /_log HTTP
BrowserStack Runner through 0.9.5 contains a remote code execution vulnerability in the /_log HTTP handler that allows unauthenticated network-adjacent attackers to execute arbitrary code by submitting crafted JSON request bodies to the handler, which passes user-supplied data to vm.runInNewContext() combined with eval(). Attackers can escape the Node.js vm sandbox by leveraging a host-context Function reference through util.format to access the host process via this.construc CVSSv3.1 8.8 (HIGH)
8.8
CVSS v3.1
94
Edit Score
CVE-2026-47201 — Prior to versions 2025.12.5, 2026.2.3, and 2026.5.1, authentik's SAML Source ACS endpoint is vulnerable
authentik is an open-source identity provider. Prior to versions 2025.12.5, 2026.2.3, and 2026.5.1, authentik's SAML Source ACS endpoint is vulnerable to XML Signature Wrapping when validating upstream SAML responses. An attacker with any account at the upstream IdP can reuse a valid signed assertion to authenticate as another federated user. This issue has been patched in versions 2025.12.5, 2026.2.3, and 2026.5.1. CVSSv3.1 8.5 (HIGH)
8.5
CVSS v3.1
93
Edit Score
CVE-2026-42849 — Prior to versions 2025.12.5 and 2026.2.3, due to the implementation of stages in the
authentik is an open-source identity provider. Prior to versions 2025.12.5 and 2026.2.3, due to the implementation of stages in the SFE (Simple Flow Executor) in order to make the interface more compatible with legacy browsers, it was possible to use an XSS exploit in the AutosubmitStage. This issue has been patched in versions 2025.12.5 and 2026.2.3. CVSSv3.1 9.3 (CRITICAL)
9.3
CVSS v3.1
97
Edit Score
CVE-2026-5076 — ARMember: The ARMember Premium plugin for WordPress is vulnerable to an insecure password reset mechanism
The ARMember Premium plugin for WordPress is vulnerable to an insecure password reset mechanism in all versions up to, and including, 7.3.1. The plugin stores a plaintext copy of the password reset key in the `arm_reset_password_key` user meta field when a user requests a password reset. This is in addition to the hashed key that WordPress core stores securely in `wp_users.user_activation_key`. The plaintext key stored in `wp_usermeta` can be used with the plugin's custom `ar CVSSv3.1 9.8 (CRITICAL)
9.8
CVSS v3.1
99
Edit Score
CVE-2026-49120 — Medplum: before 5.1.14 contains a server-side request forgery vulnerability in the subscription worker that
Medplum before 5.1.14 contains a server-side request forgery vulnerability in the subscription worker that allows authenticated users to perform unauthorized internal network requests by creating FHIR Subscription resources with arbitrary endpoint URLs. Attackers can point subscription endpoints at internal addresses such as cloud instance metadata services, internal databases, or container orchestration endpoints to exfiltrate IAM credentials and patient health records via t CVSSv3.1 8.5 (HIGH)
8.5
CVSS v3.1
93
Edit Score
CVE-2026-42211 — React: In versions 7.0.0 through 7.14.1, when using Framework Mode, a combination of steps could
React Router is a router for React. In versions 7.0.0 through 7.14.1, when using Framework Mode, a combination of steps could potentially allow unauthorized remote code execution (RCE) through external requests. This attack requires the application code to have an existing prototype pollution vulnerability, which can then be leveraged in a 2-step attack where the second step triggers unauthorized RCE on the remote server. This does not impact applications using Declarative Mo CVSSv3.1 8.1 (HIGH)
8.1
CVSS v3.1
91
Edit Score
CVE-2026-38967 — CrowCpp: Crow through v1.3.1 HTTP is vulnerable to response header injection via unvalidated response
CrowCpp Crow through v1.3.1 HTTP is vulnerable to response header injection via unvalidated response header values. CVSSv3.1 9.8 (CRITICAL)
9.8
CVSS v3.1
99
Edit Score
CVE-2026-33245 — React: In versions 7.7.0 through 7.13.1, when using React Router's unstable React Server Components (RSC)
React Router is a router for React. In versions 7.7.0 through 7.13.1, when using React Router's unstable React Server Components (RSC) APIs, there is a potential client-side Cross-Site Scripting (XSS) vulnerability in the RSC redirect handling if redirects come from untrusted sources. This does not impact applications that are not using the unstable RSC APIs in React Router. This is patched in version 7.13.2. CVSSv3.1 8.0 (HIGH)
8.0
CVSS v3.1
90
Edit Score
CVE-2026-28299 — SolarWinds: Web Help Desk is found to be affected by a denial-of-service vulnerability, which
SolarWinds Web Help Desk is found to be affected by a denial-of-service vulnerability, which when exploited, could cause the Web Help Desk server to crash due to insufficient memory. CVSSv3.1 8.2 (HIGH)
8.2
CVSS v3.1
91
Edit Score
CVE-2026-1829 — Content: The Content Visibility for Divi Builder plugin for WordPress is vulnerable to Remote Code
The Content Visibility for Divi Builder plugin for WordPress is vulnerable to Remote Code Execution in all versions up to, and including, 4.02 via the 'et_pb_text' shortcode 'cvdb_content_visibility_check' parameter. This makes it possible for authenticated attackers, with Contributor-level access and above, to execute code on the server. CVSSv3.1 8.8 (HIGH)
8.8
CVSS v3.1
94
Edit Score