MITRE ATT&CK Mapping

Help Net Security Zero-Day Cisco NEW 5h ago

Cisco patches another actively exploited SD-WAN zero-day (CVE-2026-20182)

Cisco has patched yet another Catalyst SD-WAN Controller authentication bypass vulnerability (CVE-2026-20182) that has been exploited as a zero-day by “a hig...

T1556 1 IOC

Help Net Security →

GBHackers CVE GitHub NEW 5h ago

PraisonAI Vulnerability Actively Exploited Within Hours of Being Made Public

A high-severity vulnerability in PraisonAI is drawing urgent attention after security researchers observed exploitation attempts within hours of public discl...

T1556 1 IOC

GBHackers →

CSO Online Vulnerability Disclosure Cisco 6h ago

Cisco warns of an actively exploited SD-WAN flaw with max severity

Cisco has disclosed a max-severity authentication bypass vulnerability affecting its Catalyst SD-WAN Controller and Catalyst SD-WAN Manager platforms, warnin...

T1556

CSO Online →

GBHackers General Amazon 9h ago

Multiple cPanel Vulnerabilities Could Lead to Sensitive Resource Exposure

Multiple newly disclosed vulnerabilities in cPanel & WHM, including the critical CVE‑2026‑41940 authentication bypass bug and a cluster of May 2026 flaws, co...

T1556

GBHackers →

The Hacker News CVE Cisco 12h ago

CISA Adds Cisco SD-WAN CVE-2026-20182 to KEV After Admin Access Exploits

The U.S.

T1556 1 IOC

The Hacker News →

Tenable Blog Zero-Day Cisco 16h ago

Frequently asked questions about the continued exploitation of Cisco Catalyst SD-WAN vulnerabilities (CVE-2026-20182)

Multiple critical authentication bypass vulnerabilities in Cisco Catalyst SD-WAN Controller and Manager are under active exploitation by multiple threat clus...

T1556 1 IOC

Tenable Blog →

BleepingComputer Vulnerability Disclosure WordPress 20h ago

Hackers exploit auth bypass flaw in Burst Statistics WordPress plugin

Hackers are leveraging a critical authentication bypass vulnerability in the WordPress plugin Burst Statistics to obtain admin-level access to websites. [.

T1556

BleepingComputer →

BleepingComputer Zero-Day Cisco 21h ago

Cisco warns of new critical SD-WAN flaw exploited in zero-day attacks

Cisco is warning that a critical Catalyst SD-WAN Controller authentication bypass flaw, tracked as CVE-2026-20182, was actively exploited in zero-day attacks...

T1556 1 IOC

BleepingComputer →

Rapid7 Blog CVE Palo Alto Networks 22h ago

CVE-2026-0265: Authentication Bypass in Palo Alto Networks PAN-OS

Overview On May 13, 2026, Palo Alto Networks published a security advisory for CVE-2026-0265, a signature verification vulnerability that facilitates authent...

T1556 1 IOC

Rapid7 Blog →

The Hacker News CVE Cisco 23h ago

Cisco Catalyst SD-WAN Controller Auth Bypass Actively Exploited to Gain Admin Access

Cisco has released updates to address a maximum-severity authentication bypass flaw in Catalyst SD-WAN Controller that it said has been exploited in limited ...

T1556 1 IOC

The Hacker News →

Cisco Advisories Vulnerability Disclosure Cisco 1d ago

Cisco Catalyst SD-WAN Controller Authentication Bypass Vulnerability

May 2026: This security advisory provides the details and fix information for a vulnerability that was discovered and fixed after the Cisco Catalyst SD-WAN C...

T1556

Cisco Advisories →

Rapid7 Blog CVE Cisco Rapid7 1d ago

CVE-2026-20182: Critical authentication bypass in Cisco Catalyst SD-WAN Controller (FIXED)

Overview While researching a critical authentication bypass vulnerability, CVE-2026-20127, which was exploited in-the-wild, Rapid7 Labs discovered a new auth...

T1556 2 IOCs

Rapid7 Blog →

GBHackers CVE WordPress 1d ago

Critical WordPress Plugin Flaw Allows Unauthorized Access to Websites

A critical vulnerability in a widely used WordPress plugin has exposed more than 200,000 websites to potential takeover, raising urgent concerns across the s...

T1556 1 IOC

GBHackers →

CISA Advisories CVE Cisco 1d ago

CISA Adds One Known Exploited Vulnerability to Catalog

CISA has added one new vulnerability to its Known Exploited Vulnerabilities (KEV) Catalog, based on evidence of active exploitation. CVE-2026-20182 Cisco Cat...

T1556 1 IOC

CISA Advisories →

The Hacker News CVE 1d ago

PraisonAI CVE-2026-44338 Auth Bypass Targeted Within Hours of Disclosure

Threat actors have been observed attempting to exploit a recently disclosed security vulnerability in PraisonAI, an open-source multi-agent orchestration fra...

T1556 1 IOC

The Hacker News →

CSO Online Vulnerability Disclosure GitHub 1d ago

PraisonAI vulnerability gets scanned within 4 hours of disclosure

A newly disclosed authentication bypass flaw in the open-source AI orchestration framework PraisonAI was probed by internet scanners less than four hours aft...

T1556

CSO Online →

SecurityWeek Vulnerability Disclosure 1d ago

Hackers Targeted PraisonAI Vulnerability Hours After Disclosure

The first exploitation attempts were observed less than four hours after the authentication bypass was publicly disclosed. The post Hackers Targeted PraisonA...

T1556

SecurityWeek →

Exploit Database General 1d ago

[webapps] ePati Antikor NGFW 2.0.1301 - Authentication Bypass

ePati Antikor NGFW 2.0.

T1556

Exploit Database →

Wordfence Blog Vulnerability Disclosure Intel WordPress 2d ago

200,000 WordPress Sites at Risk from Critical Authentication Bypass Vulnerability in Burst Statistics Plugin

On May 8, 2026, PRISM, Wordfence Threat Intelligence’s autonomous vulnerability research platform, discovered a critical Authentication Bypass vulnerability ...

T1556

Wordfence Blog →

The Hacker News CVE 3d ago

cPanel CVE-2026-41940 Under Active Exploitation to Deploy Filemanager Backdoor

A threat actor named Mr_Rot13 has been attributed to the exploitation of a recently disclosed critical cPanel flaw to deploy a backdoor codenamed Filemanager...

T1556 1 IOC

The Hacker News →