2026-04-01
2026-04-01 17:16Z
CRIT

CVE-2024-43028 — Jeecg Jeecg_boot: A command injection vulnerability in the component /jmreport/show of jeecg boot v3.0.0 to v3.5.3

NVD (auto-promoted CVEs)·nvd.nist.govCVE-2024-43028

A command injection vulnerability in the component /jmreport/show of jeecg boot v3.0.0 to v3.5.3 allows attackers to execute arbitrary code via a crafted HTTP request. CVSSv3.1 9.8 (CRITICAL)

CWECWE 77VNDJeecgTYPVulnerability
9.8
CVSS v3.1
99
Edit Score
2026-04-01
2026-04-01 17:16Z
CRIT

CVE-2024-40489 — Jeecg Jeecg_boot: There is an injection vulnerability in jeecg boot versions 3.0.0 to 3.5.3 due to

NVD (auto-promoted CVEs)·nvd.nist.govCVE-2024-40489

There is an injection vulnerability in jeecg boot versions 3.0.0 to 3.5.3 due to lax character filtering, which allows attackers to execute arbitrary code on components through specially crafted HTTP requests. CVSSv3.1 9.8 (CRITICAL)

CWECWE 94VNDJeecgVNDThereTYPVulnerability
9.8
CVSS v3.1
99
Edit Score
2026-04-01
2026-04-01 16:23Z
CRIT

CVE-2026-31027 — Totolink A3600r_firmware: A3600R v5.9c.4959 contains a buffer overflow vulnerability in the setAppEasyWizardConfig interface of /lib/cste_modules/app.so.

NVD (auto-promoted CVEs)·nvd.nist.govCVE-2026-31027

TOTOlink A3600R v5.9c.4959 contains a buffer overflow vulnerability in the setAppEasyWizardConfig interface of /lib/cste_modules/app.so. The vulnerability occurs because the rootSsid parameter is not properly validated for length, allowing remote attackers to trigger a buffer overflow, potentially leading to arbitrary code execution or denial of service. CVSSv3.1 9.8 (CRITICAL)

CWECWE 120VNDTotolinkTYPVulnerability
9.8
CVSS v3.1
99
Edit Score
2026-04-01
2026-04-01 16:00Z
HIGH

Ludus SCCM Lab Expansion

SpecterOps·specterops.io

SpecterOps released Ludus SCCM Lab Expansion, an automated Ansible-based template for deploying a three-tiered Microsoft Configuration Manager (SCCM) lab environment with multiple site system roles across isolated VMs. The lab is designed to support research and testing of SCCM attack paths, including those documented in the Misconfiguration Manager research, and integrates with the ConfigManBearPig PowerShell tool for BloodHound visualization.

SRFApplicationTACTA0007VNDMicrosoftTYPResearchTYPToolSTGDiscoverySTGLat MovementTECT1087
78
Edit Score
2026-04-01
2026-04-01 15:22Z
HIGH

CVE-2026-30292 — An arbitrary file overwrite vulnerability in Docudepot PDF Reader: PDF Viewer APP v1.0.34 allows

NVD (auto-promoted CVEs)·nvd.nist.govCVE-2026-30292

An arbitrary file overwrite vulnerability in Docudepot PDF Reader: PDF Viewer APP v1.0.34 allows attackers to overwrite critical internal files via the file import process, leading to arbitrary code execution or information exposure. CVSSv3.1 8.4 (HIGH) · EPSS 5th percentile

CWECWE 73TYPVulnerability
8.4
CVSS v3.1
92
Edit Score
2026-04-01
2026-04-01 15:22Z
HIGH

CVE-2026-30291 — An arbitrary file overwrite vulnerability in Ora Tools PDF Reader ' Reader & Editor

NVD (auto-promoted CVEs)·nvd.nist.govCVE-2026-30291

An arbitrary file overwrite vulnerability in Ora Tools PDF Reader ' Reader & Editor APPv4.3.5 allows attackers to overwrite critical internal files via the file import process, leading to arbitrary code execution or information exposure. CVSSv3.1 8.4 (HIGH) · EPSS 5th percentile

CWECWE 73TYPVulnerability
8.4
CVSS v3.1
92
Edit Score
2026-04-01
2026-04-01 14:16Z
HIGH

CVE-2026-35093 — Freedesktop Libinput: A local attacker who can place a specially crafted Lua bytecode file in certain

NVD (auto-promoted CVEs)·nvd.nist.govCVE-2026-35093

A flaw was found in libinput. A local attacker who can place a specially crafted Lua bytecode file in certain system or user configuration directories can bypass security restrictions. This allows the attacker to run unauthorized code with the same permissions as the program using libinput, such as a graphical compositor. This could lead to the attacker monitoring keyboard input and sending that information to an external location. CVSSv3.1 8.8 (HIGH)

CWECWE 94VNDFedoraprojectVNDFreedesktopTYPVulnerability
8.8
CVSS v3.1
94
Edit Score
728 × 90 / responsive · programmatic ad slot
2026-04-01
2026-04-01 14:16Z
HIGH

CVE-2026-35091 — Corosync Corosync: This can lead to an out-of-bounds read, causing a denial of service (DoS) and

NVD (auto-promoted CVEs)·nvd.nist.govCVE-2026-35091

A flaw was found in Corosync. A remote unauthenticated attacker can exploit a wrong return value vulnerability in the Corosync membership commit token sanity check by sending a specially crafted User Datagram Protocol (UDP) packet. This can lead to an out-of-bounds read, causing a denial of service (DoS) and potentially disclosing limited memory contents. This vulnerability affects Corosync when running in totemudp/totemudpu mode, which is the default configuration. CVSSv3.1 8.2 (HIGH)

CWECWE 253VNDCorosyncTYPVulnerability
8.2
CVSS v3.1
91
Edit Score
2026-04-01
2026-04-01 14:16Z
HIGH

CVE-2026-34430 — Deerflow Deerflow: ByteDance DeerFlow versions prior to commit 92c7a20 contain a sandbox escape vulnerability in bash

NVD (auto-promoted CVEs)·nvd.nist.govCVE-2026-34430

ByteDance DeerFlow versions prior to commit 92c7a20 contain a sandbox escape vulnerability in bash tool handling that allows attackers to execute arbitrary commands on the host system by bypassing regex-based validation using shell features such as directory changes and relative paths. Attackers can exploit the incomplete shell semantics modeling to read and modify files outside the sandbox boundary and achieve arbitrary command execution through subprocess invocation with sh CVSSv3.1 8.8 (HIGH) · EPSS 29th percentile

CWECWE 184VNDDeerflowVNDBytedanceTYPVulnerability
8.8
CVSS v3.1
94
Edit Score
2026-04-01
2026-04-01 14:16Z
HIGH

CVE-2026-0522 — Vertigis Fm: A local file inclusion vulnerability in the upload/download flow of the VertiGIS FM application

NVD (auto-promoted CVEs)·nvd.nist.govCVE-2026-0522

A local file inclusion vulnerability in the upload/download flow of the VertiGIS FM application allows authenticated attackers to read arbitrary files from the server by manipulating a file's path during its upload. When the file is subsequently downloaded, the file in the attacker controlled path is returned. Due to the application's ASP.NET architecture, this could potentially lead to remote code execution when the "web.config" file is obtained. Furthermore, the application CVSSv3.1 8.8 (HIGH)

CWECWE 610VNDVertigisTYPVulnerability
8.8
CVSS v3.1
94
Edit Score
2026-04-01
2026-04-01 13:16Z
CRIT

CVE-2026-29014 — Metinfo Metinfo: CMS versions 7.9, 8.0, and 8.1 contain an unauthenticated PHP code injection vulnerability

NVD (auto-promoted CVEs)·nvd.nist.govCVE-2026-29014

MetInfo CMS versions 7.9, 8.0, and 8.1 contain an unauthenticated PHP code injection vulnerability that allows remote attackers to execute arbitrary code by sending crafted requests with malicious PHP code. Attackers can exploit insufficient input neutralization in the execution path to achieve remote code execution and gain full control over the affected server. CVSSv3.1 9.8 (CRITICAL)

CWECWE 94VNDMetinfoTYPVulnerability
9.8
CVSS v3.1
99
Edit Score
2026-04-01
2026-04-01 11:15Z
HIGH

CVE-2026-24096 — Checkmk Checkmk: Insufficient permission validation on multiple REST API Quick Setup endpoints in Checkmk 2.5.0 (beta)

NVD (auto-promoted CVEs)·nvd.nist.govCVE-2026-24096

Insufficient permission validation on multiple REST API Quick Setup endpoints in Checkmk 2.5.0 (beta) before version 2.5.0b2 and 2.4.0 before version 2.4.0p25 allows low-privileged users to perform unauthorized actions or obtain sensitive information CVSSv3.1 8.8 (HIGH)

CWECWE 280VNDCheckmkVNDRestTYPVulnerability
8.8
CVSS v3.1
94
Edit Score
2026-04-01
2026-04-01 11:00Z
INFO

Mutation testing for the agentic era

Trail of Bits·blog.trailofbits.com

Trail of Bits released MuTON and mewt, mutation testing tools designed for blockchain smart contracts and general-purpose code. MuTON provides first-class support for TON languages (FunC, Tolk, Tact) while mewt is language-agnostic, supporting Solidity, Rust, Go, and others. The tools use Tree-sitter for parsing, implement mutant prioritization, and persist results to SQLite to address historical limitations of regex-based mutation testing.

SRFApplicationVNDTrail Of BitsTYPResearchTYPToolTECT1592
68
Edit Score
2026-04-01
2026-04-01 10:16Z
HIGH

CVE-2026-23899 — Joomla Joomla\!: An improper access check allows unauthorized access to webservice endpoints.

NVD (auto-promoted CVEs)·nvd.nist.govCVE-2026-23899

An improper access check allows unauthorized access to webservice endpoints. CVSSv3.1 8.8 (HIGH)

CWECWE 284VNDJoomlaTYPVulnerability
8.8
CVSS v3.1
94
Edit Score
2026-04-01
2026-04-01 10:16Z
HIGH

CVE-2026-21630 — Joomla Joomla\!: Improperly built order clauses lead to a SQL injection vulnerability in the articles webservice

NVD (auto-promoted CVEs)·nvd.nist.govCVE-2026-21630

Improperly built order clauses lead to a SQL injection vulnerability in the articles webservice endpoint. CVSSv3.1 8.8 (HIGH)

CWECWE 89VNDJoomlaVNDImproperlyTYPVulnerability
8.8
CVSS v3.1
94
Edit Score
2026-04-01
2026-04-01 06:00Z
HIGH

A laughing RAT: CrystalX combines spyware, stealer, and prankware features

Kaspersky Securelist·securelist.comin the wild

Kaspersky GReAT discovered CrystalX RAT, a MaaS platform actively promoted on Telegram and YouTube since January 2026, offering spyware, stealer, keylogger, clipper, and prankware capabilities. The malware targets Windows systems, exfiltrates credentials from Steam/Discord/Telegram and Chromium browsers via ChromeElevator, logs keystrokes, injects malicious browser extensions for crypto-wallet hijacking, and provides full remote access with VNC. Dozens of victims have been observed primarily in Russia, with active development and no geographic restrictions on the MaaS offering.

SRFApplicationSRFOsTACTA0005TACTA0001TACTA0002TACTA0006TACTA0007TACTA0003
68
Edit Score
2026-04-01
2026-04-01 02:16Z
CRIT

CVE-2026-4374 — Rti Connext_professional: Improper Restriction of XML External Entity Reference vulnerability in RTI Connext Professional (Cloud Discovery

NVD (auto-promoted CVEs)·nvd.nist.govCVE-2026-4374

Improper Restriction of XML External Entity Reference vulnerability in RTI Connext Professional (Cloud Discovery Service, Recording Service, Routing Service, Queueing Service, Observability Collector) allows Serialized Data External Linking, Data Serialization External Entities Blowup.<p>This issue affects Connext Professional: from 7.4.0 before 7.7.0, from 7.1.0 before 7.3.1.1, from 6.1.0 before 6.1.2.34, from 6.0.0 before 6.0.*, from 5.3.0 before 5.3.*.</p> CVSSv3.1 9.1 (CRITICAL) · EPSS 14th percentile

CWECWE 611VNDRtiTYPVulnerability
9.1
CVSS v3.1
96
Edit Score
2026-04-01
2026-04-01 00:00Z
CRIT

Inside the Axios supply chain compromise - one RAT to rule them all

Elastic Security Labs·elastic.coin the wild

Elastic Security Labs disclosed a supply chain compromise of the axios npm package (versions 1.14.1 and 0.30.4), affecting ~100M weekly downloads. A compromised maintainer account published backdoored versions that deployed a unified cross-platform RAT (Windows/macOS/Linux) via a malicious postinstall hook in a decoy dependency (plain-crypto-js). The implant shares identical C2 protocol, command set, and beacon behavior across all three platforms, with attribution overlap to WAVESHAPER/UNC1069 (DPRK-linked).

SRFApplicationSRFOsTACTA0005TACTA0002TACTA0007TACTA0003TACTA0011TACTA0043
95
Edit Score
2026-04-01
2026-04-01 00:00Z
CRIT

Elastic releases detections for the Axios supply chain compromise

Elastic Security Labs·elastic.coin the wild

Elastic Security Labs disclosed a supply chain compromise of the Axios npm package (versions 1.14.1, 0.30.4) where attackers injected a malicious transitive dependency (plain-crypto-js@4.2.1) that executes during npm install to deploy cross-platform RATs. The attack leverages a consistent post-install execution pattern across Linux, Windows, and macOS to retrieve and execute remote payloads, with Elastic releasing behavioral detection rules targeting the delivery chain rather than static indicators.

SRFOsTACTA0005TACTA0001TACTA0003SRFSupply ChainVNDElasticVNDAxiosTYPResearch
88
Edit Score
2026-03-31
2026-03-31 22:16Z
HIGH

CVE-2026-34406 — Aptrs Aptrs: Prior to version 2.0.1, the edit_user endpoint (POST /api/auth/edituser/<pk>) allows Any user who can

NVD (auto-promoted CVEs)·nvd.nist.govCVE-2026-34406

APTRS (Automated Penetration Testing Reporting System) is a Python and Django-based automated reporting tool designed for penetration testers and security organizations. Prior to version 2.0.1, the edit_user endpoint (POST /api/auth/edituser/<pk>) allows Any user who can reach that endpoint and submit crafted permission to escalate their own account (or any other account) to superuser by including "is_superuser": true in the request body. The root cause is that CustomUserSeri CVSSv3.1 8.8 (HIGH)

CWECWE 915VNDAptrsTYPVulnerability
8.8
CVSS v3.1
94
Edit Score
2026-03-31
2026-03-31 22:16Z
CRIT

CVE-2026-34400 — Alerta_project Alerta: Prior to version 9.1.0, the Query string search API (q=) was vulnerable to SQL

NVD (auto-promoted CVEs)·nvd.nist.govCVE-2026-34400

Alerta is a monitoring tool. Prior to version 9.1.0, the Query string search API (q=) was vulnerable to SQL injection via the Postgres query parser, which built WHERE clauses by interpolating user-supplied search terms directly into SQL strings via f-strings. This issue has been patched in version 9.1.0. CVSSv3.1 9.8 (CRITICAL)

CWECWE 89VNDAlerta ProjectVNDAlertaTYPVulnerability
9.8
CVSS v3.1
99
Edit Score
2026-03-31
2026-03-31 21:16Z
CRIT

CVE-2026-1579 — Px4 Autopilot: The MAVLink communication protocol does not require cryptographic authentication by default.

NVD (auto-promoted CVEs)·nvd.nist.govCVE-2026-1579

The MAVLink communication protocol does not require cryptographic authentication by default. When MAVLink 2.0 message signing is not enabled, any message -- including SERIAL_CONTROL, which provides interactive shell access -- can be sent by an unauthenticated party with access to the MAVLink interface. PX4 provides MAVLink 2.0 message signing as the cryptographic authentication mechanism for all MAVLink communication. When signing is enabled, unsigned messages are rejec CVSSv3.1 9.8 (CRITICAL)

CWECWE 306VNDPx4VNDMavlinkTYPVulnerability
9.8
CVSS v3.1
99
Edit Score
2026-03-31
2026-03-31 20:16Z
HIGH

CVE-2026-4800 — Lodash Lodash: When an application passes untrusted input as options.imports key names, an attacker can inject

NVD (auto-promoted CVEs)·nvd.nist.govCVE-2026-4800

Impact: The fix for CVE-2021-23337 (https://github.com/advisories/GHSA-35jh-r3h4-6jhm) added validation for the variable option in _.template but did not apply the same validation to options.imports key names. Both paths flow into the same Function() constructor sink. When an application passes untrusted input as options.imports key names, an attacker can inject default-parameter expressions that execute arbitrary code at template compilation time. Additionally, _.template CVSSv3.1 8.1 (HIGH)

CWECWE 94VNDLodashVNDImpactTYPVulnerability
8.1
CVSS v3.1
91
Edit Score
2026-03-31
2026-03-31 20:16Z
HIGH

CVE-2026-30290 — Intouchapp Intouch_contacts_\&_caller_id: An arbitrary file overwrite vulnerability in InTouch Contacts & Caller ID APP v6.38.1 allows

NVD (auto-promoted CVEs)·nvd.nist.govCVE-2026-30290

An arbitrary file overwrite vulnerability in InTouch Contacts & Caller ID APP v6.38.1 allows attackers to overwrite critical internal files via the file import process, leading to arbitrary code execution or information exposure. CVSSv3.1 8.4 (HIGH)

CWECWE 22VNDIntouchappTYPVulnerability
8.4
CVSS v3.1
92
Edit Score
2026-03-31
2026-03-31 20:16Z
CRIT

CVE-2026-30285 — Zora Zora: An arbitrary file overwrite vulnerability in Zora: Post, Trade, Earn Crypto v2.60.0 allows attackers

NVD (auto-promoted CVEs)·nvd.nist.govCVE-2026-30285

An arbitrary file overwrite vulnerability in Zora: Post, Trade, Earn Crypto v2.60.0 allows attackers to overwrite critical internal files via the file import process, leading to arbitrary code execution or information exposure. CVSSv3.1 9.8 (CRITICAL)

CWECWE 22VNDZoraTYPVulnerability
9.8
CVSS v3.1
99
Edit Score