CVE-2026-48282: ColdFusion RDS Vulnerability Actively Exploited
CVE-2026-48282 is a critical ColdFusion RDS path traversal vulnerability under active exploitation. Learn the risks, IOCs, and how…
14 articles
CVE-2026-48282 is a critical ColdFusion RDS path traversal vulnerability under active exploitation. Learn the risks, IOCs, and how…
Langflow CVE-2026-33017 is under active exploitation. Attackers deploy Monero miners via unauthenticated RCE. Get IOCs, patch steps, and…
CVE-2026-42271 enables unauthenticated RCE in LiteLLM when chained with CVE-2026-48710. Learn wha is at risk and how to…
Oracle has disclosed CVE-2026-35273, a critical vulnerability in PeopleSoft Enterprise PeopleTools that has already been exploited by threat…
Critical Langflow vulnerability CVE-2025-3248 allows unauthenticated remote code execution, enabling attackers to fully compromise vulnerable servers.
CVE-2025-24813, an Apache Tomcat RCE flaw, is under active attack. PoC exploit availability boosts risks, enabling threat actors…
A critical vulnerability (CVE-2024-9264) in Grafana allows remote code execution, risking system commands and sensitive file access. Immediate…
CUPS RCE Vulnerabilities (CVE-2024-47076, CVE-2024-47177, CVE-2024-47175, CVE-2024-47176) put systems at risk of remote attacks through malicious printers.
Learn about CVE-2024-8190, an OS command injection vulnerability in Ivanti CSA. Discover how it allows remote code execution…
A command injection flaw (CVE-2024-27348) in SPIP allows remote attacks without authentication. Learn mitigation steps & how AppTrana…
A new zero-day vulnerability, CVE-2024-38856, has been discovered in the Apache OFBiz open-source enterprise resource planning (ERP) platform,…
CVE-2024-4577 is a CGI argument injection vulnerability within PHP, capable of compromising Windows servers running PHP. Learn how…