CVE-2026-48282: ColdFusion RDS Vulnerability Actively Exploited
CVE-2026-48282 is a critical ColdFusion RDS path traversal vulnerability under active exploitation. Learn the risks, IOCs, and how…
75 articles
CVE-2026-48282 is a critical ColdFusion RDS path traversal vulnerability under active exploitation. Learn the risks, IOCs, and how…
Langflow CVE-2026-33017 is under active exploitation. Attackers deploy Monero miners via unauthenticated RCE. Get IOCs, patch steps, and…
Oracle E-Business Suite (EBS) sits at the center of finance, procurement, and payment operations for many large enterprises.…
CVE-2026-42271 enables unauthenticated RCE in LiteLLM when chained with CVE-2026-48710. Learn wha is at risk and how to…
Oracle has disclosed CVE-2026-35273, a critical vulnerability in PeopleSoft Enterprise PeopleTools that has already been exploited by threat…
CVE-2026-45247 is a critical PHP deserialization vulnerability in Mirasvit Cache Warmer allowing unauthenticated RCE. Learn the impact and…
Two critical NGINX heap buffer overflows are under active exploitation. Learn what's at risk, affected versions, and fixes…
A critical SQLi vulnerability in Drupal core is actively exploited. Find out which versions are affected, what's at…
CVE-2026-44575 lets attackers bypass Next.js middleware via .rsc and segment-prefetch requests. Learn exploit steps, fixes and AppTrana coverage.
Critical Ollama flaw CVE-2026-7482 exposes 300K servers, letting attackers leak API keys, prompts, and credentials through just three…
CVE-2026-23918 is a high-severity Apache HTTP/2 double-free flaw affecting version 2.4.66. Learn the root cause, who's at risk,…
A critical zero-day vulnerability in cPanel & WHM is giving attackers unauthenticated root-level access to servers managing over…