MITRE ATT&CK Mapping

GBHackers Vulnerability Disclosure GitHub 1d ago

Hackers Compromise Laravel-Lang Packages via 700 GitHub Repos

A sophisticated and active supply chain attack has struck the Laravel-Lang open-source organization, compromising over 700 historical package versions across...

T1190 T1195

GBHackers →

GBHackers Campaigns 2d ago

Hackers Use Six-Layer Persistence on FreePBX Systems

Hackers are actively exploiting FreePBX systems using a highly resilient six-layer persistence mechanism. The campaign has been attributed with high confiden...

T1190

GBHackers →

CSO Online CVE 3d ago

Unpatched ChromaDB flaw leaves servers open to remote code execution

Researchers have published details about a critical vulnerability in ChromaDB that could allow unauthenticated attackers to execute arbitrary code and access...

T1190 1 IOC

CSO Online →

BleepingComputer Data Breach Google Oracle 3d ago

Google accidentally exposed details of unfixed Chromium flaw

Google has accidentally leaked details about an unfixed issue in Chromium that keeps JavaScript running in the background even when the browser is closed, al...

T1190

BleepingComputer →

GBHackers Vulnerability Disclosure Apache 3d ago

Apache OFBiz RCE Flaw Abuses Password-Change Restrictions for Authentication Bypass

A critical authentication bypass vulnerability in Apache OFBiz allows attackers to hijack forced password-change flows and achieve remote code execution (RCE...

T1190 T1556

GBHackers →

CISA Advisories Vulnerability Disclosure 3d ago

ABB B&R Automation Studio

View CSAF Summary ABB became aware of vulnerability in the product versions listed as affected in the advisory. An update is available that replaces an outda...

T1190 T1598

CISA Advisories →

SecurityWeek CVE Drupal 3d ago

Drupal Patches Highly Critical Vulnerability Exposing Websites to Hacking

CVE-2026-9082 can be exploited without authentication for information disclosure, privilege escalation, and remote code execution. The post Drupal Patches Hi...

T1190 T1548 1 IOC

SecurityWeek →

GBHackers Zero-Day F5 3d ago

New NGINX 0-Day RCE “nginx-poolslip” Threatens Millions of Servers

A newly discovered zero-day vulnerability in NGINX, dubbed “nginx-poolslip,” is raising serious concerns across the global cybersecurity community, as it exp...

T1190

GBHackers →

Zero Day Initiative CVE 3d ago

ZDI-26-319: Progress Software Kemp LoadMaster addcountry Command Injection Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Progress Software Kemp LoadMaster. Authentication is requir...

T1190 T1059 1 IOC

Zero Day Initiative →

Zero Day Initiative CVE 3d ago

ZDI-26-318: Progress Software Kemp LoadMaster ssodomain_killsession Command Injection Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Progress Software Kemp LoadMaster. Authentication is requir...

T1190 T1059 1 IOC

Zero Day Initiative →

The Hacker News CVE Drupal 3d ago

Highly Critical Drupal Core Flaw Exposes PostgreSQL Sites to RCE Attacks

Drupal has released security updates for a "highly critical" security vulnerability in Drupal Core that could be exploited by attackers to achieve remote cod...

T1190 T1548 2 IOCs

The Hacker News →

Wordfence Blog Malware WordPress 4d ago

How a Webmail Log File Became a Root-Level Backdoor

A forensic breakdown of how an attacker turned CyberPanel's SnappyMail logging into a persistent webshell that survived every WordPress cleanup attempt. The ...

T1190 T1598

Wordfence Blog →

Cisco Advisories Vulnerability Disclosure Cisco 4d ago

Cisco ThousandEyes Virtual Appliance Authenticated Remote Code Execution Vulnerability

A vulnerability in the SSL certificate handling of Cisco ThousandEyes Virtual Appliance could allow an authenticated, remote attacker to execute commands on ...

T1190

Cisco Advisories →

SC Media Vulnerability Disclosure 4d ago

Max-severity vulnerability in ChromaDB allows unauthenticated remote code execution

The vulnerability affects the Python API server logic within the PyPI package, which sees nearly 14 million monthly downloads.

T1190

SC Media →

The Hacker News Vulnerability Disclosure 5d ago

SEPPMail Secure E-Mail Gateway Vulnerabilities Enable RCE and Mail Traffic Access

Critical security vulnerabilities have been disclosed in SEPPMail Secure E-Mail Gateway, an enterprise-grade email security solution, that could be exploited...

T1190

The Hacker News →

GBHackers CVE 5d ago

20-Year-Old PostgreSQL Flaw Gets Public PoC Exploit for Remote Code Execution

A newly released proof-of-concept (PoC) exploit for CVE-2026-2005 has brought renewed attention to a critical vulnerability in PostgreSQL’s pgcrypto extensio...

T1190 1 IOC

GBHackers →

GBHackers Vulnerability Disclosure Amazon 5d ago

PostgreSQL Flaws Expose Databases to Remote Code Execution and SQL Injection

PostgreSQL has released critical security updates addressing multiple high-impact vulnerabilities that could allow remote code execution (RCE), SQL injection...

T1190

GBHackers →

GBHackers Vulnerability Disclosure Amazon 5d ago

SEPPmail Gateway Flaws Expose Organizations to RCE and Email Traffic Interception

Multiple critical vulnerabilities in the SEPPmail Secure E-Mail Gateway are putting thousands of organizations at risk of remote code execution (RCE) and the...

T1190

GBHackers →

Help Net Security CVE F5 6d ago

Attackers are exploiting critical NGINX vulnerability (CVE-2026-42945)

A critical NGINX vulnerability (CVE-2026-42945) disclosed last week is being exploited by attackers, VulnCheck security researcher Patrick Garrity revealed o...

T1190 1 IOC

Help Net Security →

GBHackers CVE F5 6d ago

Critical NGINX Vulnerability Lets Hackers Launch Remote Code Execution Attacks

A newly disclosed vulnerability in NGINX is already being actively exploited, raising serious concerns across the global cybersecurity community. Tracked as ...

T1190 1 IOC

GBHackers →