CVE-2026-27246: Cross-site Scripting (DOM-based XSS) (CWE-79) in Adobe Adobe Con CVE-2026-27246 is a DOM-based Cross-Site Scripting (CWE-79) vulnerability affecting Adobe Connect versions 2025.3, 12.10, and earlier. The issue arises from insufficient sanitization or validation of data that influences the DOM, enabling a

CRITICAL DOM-based XSS in Adobe Connect (v2025.3, 12.10 & earlier). No patch yet. Advise users: avoid suspicious links, watch for Adobe updates. Details: radar.offseq.com/threat/cve-2026-27246-cr... #OffSeq #AdobeConnect #XSS

CVE-2026-27303: Deserialization of Untrusted Data (CWE-502) in Adobe Adobe Conne CVE-2026-27303 is a critical vulnerability in Adobe Connect affecting versions 2025.3, 12.10, and earlier. It involves deserialization of untrusted data, which can be exploited remotely without user interaction to execute arbitrary code in

CRITICAL: Adobe Connect deserialization bug (CVE-2026-27303) enables remote code execution — no user interaction needed. Patch not out yet. Restrict access & monitor advisories: radar.offseq.com/threat/cve-2026-27303-de... #OffSeq #AdobeConnect #Secu...

CVE-2026-1555: CWE-434 Unrestricted Upload of File with Dangerous Type in Owen W CVE-2026-1555 is a critical vulnerability in the Owen WebStack WordPress theme caused by the lack of proper file type validation in the io_img_upload() function. This allows unauthenticated attackers to upload arbitrary files, potentially e

Critical Owen WebStack WordPress flaw: Unauthenticated file uploads enable remote code execution. No patch out — restrict uploads & monitor for threats. CVSS 9.8. Details: radar.offseq.com/threat/cve-2026-1555-cwe... #OffSeq #WordPress #Security

CVE-2026-5752: CWE-94 Improper Control of Generation of Code ('Code Injection') This vulnerability (CVE-2026-5752) in Cohere's cohere-terrarium involves improper control of code generation (CWE-94) that leads to sandbox escape via JavaScript prototype chain traversal. Exploiting this flaw allows an attacker to execute

CRITICAL: Sandbox escape in Cohere cohere-terrarium (all versions) allows root code execution. No patch yet — restrict access & monitor for threats. More: radar.offseq.com/threat/cve-2026-5752-cwe... #OffSeq #Vuln #Cohere

CVE-2026-27304: Improper Input Validation (CWE-20) in Adobe ColdFusion CVE-2026-27304 is an improper input validation vulnerability in Adobe ColdFusion affecting versions 2023.18, 2025.6, and earlier. The flaw allows an attacker to execute arbitrary code in the context of the current user without requiring use

Adobe ColdFusion hit by CRITICAL vuln (CVE-2026-27304): attackers can run code as service user, no interaction needed. No patch yet — restrict access, monitor systems, and track Adobe’s advisories. radar.offseq.com/threat/cve-2026-27304-im... #OffSeq...

CVE-2026-39399: CWE-20: Improper Input Validation in NuGet NuGetGallery NuGetGallery, the package repository backend powering nuget.org, contains a vulnerability in its handling of .nuspec files. Due to insufficient input validation, an attacker can craft a nuspec file with malicious metadata that triggers cros

NuGetGallery CRITICAL vuln (CVSS 9.6): Malicious .nuspec files can cause remote code execution & tamper with blobs. Patch to commit 0e80f87628349207cdcaf55358491f8a6f1ca276 ASAP! radar.offseq.com/threat/cve-2026-39399-cw... #OffSeq #NuGet #cybersecurity

CVE-2026-22562: CWE-22 Path Traversal in Ubiquiti Inc UniFi Play PowerAmp This vulnerability (CVE-2026-22562) involves a path traversal flaw (CWE-22) in the firmware of Ubiquiti UniFi Play PowerAmp and UniFi Play Audio Port devices. Exploitation requires network access to the UniFi Play network and allows an atta

🚨 CVE-2026-22562: CRITICAL path traversal in Ubiquiti UniFi Play PowerAmp & Audio Port. Enables unauth RCE. Patch PowerAmp to 1.0.38+ & Audio Port to 1.1.9+ now! radar.offseq.com/threat/cve-2026-22562-cw... #OffSeq #Ubiquiti #VulnAlert

CVE-2026-4365: CWE-862 Missing Authorization in thimpress LearnPress – WordPress CVE-2026-4365 is a critical authorization bypass vulnerability in the LearnPress WordPress LMS plugin. The plugin exposes a wp_rest nonce in the public frontend, which is used as the sole security mechanism for the lp-load-ajax AJAX dispatc

LearnPress WordPress LMS plugin (≤4.3.2.8) hit by CRITICAL flaw: CVE-2026-4365 lets unauthenticated users delete quiz answers via exposed AJAX. Restrict endpoints & watch for patches! radar.offseq.com/threat/cve-2026-4365-cwe... #OffSeq #WordPress #S...

CVE-2026-40288: CWE-78: Improper Neutralization of Special Elements used in an O The vulnerability in PraisonAI affects the workflow engine's handling of YAML files with type: job. Specifically, the JobWorkflowExecutor processes steps that execute shell commands (via subprocess.run()), inline Python code (via exec()), a

CRITICAL: PraisonAI <4.5.139 OS command injection via YAML files lets attackers run arbitrary code. Upgrade to 4.5.139+ now to prevent system takeover. radar.offseq.com/threat/cve-2026-40288-cw... #OffSeq #PraisonAI #VulnAlert

CVE-2026-40289: CWE-306: Missing Authentication for Critical Function in MervinP PraisonAI's browser bridge component listens on all network interfaces (0.0.0.0) and exposes a /ws WebSocket endpoint that lacks proper authentication and only conditionally validates the Origin header. Non-browser clients can omit the Orig

PraisonAI <4.5.139 & praisonaiagents <1.5.140 hit by CRITICAL vuln: unauthenticated users can hijack browser sessions via /ws. Upgrade or restrict access now! radar.offseq.com/threat/cve-2026-40289-cw... #OffSeq #Security #PraisonAI

CVE-2026-40313: CWE-829: Inclusion of Functionality from Untrusted Control Spher PraisonAI (versions ≤ 4.5.139) uses GitHub Actions workflows that improperly handle credentials by not disabling persistence of GITHUB_TOKEN and ACTIONS_RUNTIME_TOKEN during checkout. This results in these tokens being stored in .git/config

PraisonAI < 4.5.140 CRITICAL flaw: GitHub tokens leaked in workflow artifacts. Attackers can hijack repos & supply chains. Update ASAP & audit workflows! radar.offseq.com/threat/cve-2026-40313-cw... #OffSeq #GitHubSecurity #SupplyChain

CVE-2026-6264: CWE-306 Missing Authentication for Critical Function in Talend Ta A critical vulnerability in the Talend JobServer and Talend Runtime allows unauthenticated remote code execution via the JMX monitoring port. The attack vector is the JMX monitoring port of the Talend JobServer. The vulnerability can be mit

CRITICAL: Talend JobServer 8.0/7.3 vulnerable to unauthenticated RCE (CVE-2026-6264) via JMX port. Patch now or enforce TLS client auth! radar.offseq.com/threat/cve-2026-6264-cwe... #OffSeq #Talend #Vulnerability

CVE-2026-27681: CWE-89: Improper Neutralization of Special Elements used in an S This vulnerability (CVE-2026-27681) involves improper neutralization of special elements in SQL commands (CWE-89) within SAP Business Planning and Consolidation and SAP Business Warehouse products. Due to insufficient authorization checks,

CRITICAL SQL injection in SAP BPC & BW (CVSS 9.9) — Auth’d users can access or alter DB data. No official patch yet. Limit privileges & monitor SQL activity. radar.offseq.com/threat/cve-2026-27681-cw... #OffSeq #SAP #Security

CVE-2026-22563: CWE-20 Improper Input Validation in Ubiquiti Inc UniFi Play Powe This vulnerability (CVE-2026-22563) involves improper input validation (CWE-20) in Ubiquiti Inc's UniFi Play PowerAmp and UniFi Play Audio Port products. It allows a remote attacker with network access to the affected devices to perform com

Critical vuln: Ubiquiti UniFi Play PowerAmp & Audio Port allow command injection (CVE-2026-22563, CVSS 9.8). Patch to 1.0.38+/1.1.9+ now! 🛡️ radar.offseq.com/threat/cve-2026-22563-cw... #OffSeq #vulnerability #CVE202622563

CVE-2026-35337: CWE-502 Deserialization of Untrusted Data in Apache Software Fou Apache Storm versions prior to 2.8.6 deserialize base64-encoded TGT blobs from topology credentials using ObjectInputStream.readObject() without any class filtering or validation. This unsafe deserialization allows an authenticated user wit

Apache Storm Client pre-2.8.6 hit by CRITICAL deserialization flaw — authenticated users can achieve RCE on Nimbus/Worker JVMs. Upgrade to 2.8.6 or restrict deserialization classes ASAP. radar.offseq.com/threat/cve-2026-35337-cw... #OffSeq #ApacheSto...

CVE-2026-6138: OS Command Injection in Totolink A7100RU This vulnerability concerns an OS command injection in the Totolink A7100RU router firmware 7.4cu.2313_b20191024. The issue arises from the setAccessDeviceCfg function in the /cgi-bin/cstecgi.cgi CGI handler, where the 'mac' parameter is no

Totolink A7100RU routers face a CRITICAL OS command injection flaw (CVE-2026-6138). No patch yet — restrict remote access & monitor for fixes. Immediate action advised. radar.offseq.com/threat/cve-2026-6138-os-... #OffSeq #Vulnerability #RouterSecurity

CVE-2026-6154: OS Command Injection in Totolink A7100RU The Totolink A7100RU router firmware 7.4cu.2313_b20191024 contains an OS command injection vulnerability (CVE-2026-6154) in the setWizardCfg function of the /cgi-bin/cstecgi.cgi CGI handler. By manipulating the 'wizard' argument, an unauthe

Totolink A7100RU (7.4cu.2313_b20191024) hit by CRITICAL OS command injection (CVE-2026-6154). No patch yet — isolate routers, monitor advisories. Public exploit available. radar.offseq.com/threat/cve-2026-6154-os-... #OffSeq #CVE20266154 #cybersecurity

CVE-2026-6155: OS Command Injection in Totolink A7100RU This vulnerability affects the Totolink A7100RU router firmware 7.4cu.2313. The setWanCfg function in the CGI handler improperly sanitizes the pppoeServiceName parameter, allowing an attacker to inject arbitrary OS commands remotely. The CV

Totolink A7100RU (fw 7.4cu.2313) hit by CRITICAL OS command injection (CVE-2026-6155). Remote code execution possible — no patch yet. Disable remote mgmt, restrict access, monitor activity. radar.offseq.com/threat/cve-2026-6155-os-... #OffSeq #CVE202...

CVE-2026-6156: OS Command Injection in Totolink A7100RU This vulnerability in Totolink A7100RU firmware 7.4cu.2313_b20191024 involves an OS command injection in the setIpQosRules function of the /cgi-bin/cstecgi.cgi CGI Handler. The issue stems from improper sanitization of the 'Comment' paramet

Totolink A7100RU routers (7.4cu.2313_b20191024) face CRITICAL OS command injection (CVSS 9.3). Unauthenticated remote code execution possible. Restrict admin access & check for updates! radar.offseq.com/threat/cve-2026-6156-os-... #OffSeq #IoTSecurit...

CVE-2026-6139: OS Command Injection in Totolink A7100RU The Totolink A7100RU router firmware 7.4cu.2313_b20191024 contains an OS command injection vulnerability in the UploadOpenVpnCert function of the /cgi-bin/cstecgi.cgi CGI handler. Manipulation of the FileName parameter allows an unauthentic

Totolink A7100RU routers face a CRITICAL OS command injection flaw (CVSS 9.3). Unauthenticated remote exploit possible. No patch yet — isolate devices! radar.offseq.com/threat/cve-2026-6139-os-... #OffSeq #IoTSecurity

CVE-2026-6140: OS Command Injection in Totolink A7100RU A vulnerability was found in Totolink A7100RU 7.4cu.2313_b20191024. This impacts the function UploadFirmwareFile of the file /cgi-bin/cstecgi.cgi of the component CGI Handler. Performing a manipulation of the argument FileName results in os

Totolink A7100RU (7.4cu.2313_b20191024) hit by CRITICAL OS command injection. Remote exploit public — restrict device exposure & monitor closely! radar.offseq.com/threat/cve-2026-6140-os-... #OffSeq #Vulnerability #IoTSecurity

CVE-2026-6132: OS Command Injection in Totolink A7100RU This vulnerability affects the Totolink A7100RU router firmware 7.4cu.2313_b20191024. The issue lies in the setLedCfg function of the CGI handler (/cgi-bin/cstecgi.cgi), where manipulation of the 'enable' argument leads to OS command inject

CRITICAL OS command injection in Totolink A7100RU (7.4cu.2313_b20191024). Remote, unauthenticated exploit risk. No patch — restrict access & monitor devices. More info: radar.offseq.com/threat/cve-2026-6132-os-... #OffSeq #CVE20266132 #IoTSecurity

CVE-2026-6112: OS Command Injection in Totolink A7100RU The Totolink A7100RU router firmware 7.4cu.2313_b20191024 contains an OS command injection vulnerability in the setRadvdCfg function of the /cgi-bin/cstecgi.cgi CGI handler. By manipulating the maxRtrAdvInterval parameter, an unauthenticate

Totolink A7100RU routers (fw 7.4cu.2313_b20191024) face CRITICAL OS command injection (CVE-2026-6112). No patch — restrict access & monitor! 🚨 radar.offseq.com/threat/cve-2026-6112-os-... #OffSeq #Vulnerability #RouterSecurity

CVE-2026-6113: OS Command Injection in Totolink A7100RU This vulnerability affects the Totolink A7100RU router firmware 7.4cu.2313_b20191024. The setTtyServiceCfg function in the CGI handler improperly sanitizes the ttyEnable parameter, enabling remote attackers to perform OS command injection.

CRITICAL OS command injection in Totolink A7100RU (7.4cu.2313_b20191024) 🚨 Remote, no-auth exploit possible. No patch — disable remote mgmt & restrict access. Stay alert for vendor updates. radar.offseq.com/threat/cve-2026-6113-os-... #OffSeq #Vulner...

CVE-2026-6115: OS Command Injection in Totolink A7100RU This vulnerability affects the Totolink A7100RU router running firmware version 7.4cu.2313_b20191024. It is caused by improper input validation in the setAppCfg function of the /cgi-bin/cstecgi.cgi CGI handler, allowing remote attackers to

Totolink A7100RU routers (7.4cu.2313_b20191024) face a CRITICAL OS command injection flaw. Remote, unauth'd compromise possible. Limit device exposure & watch for patches. radar.offseq.com/threat/cve-2026-6115-os-... #OffSeq #RouterSecurity #Vulnerab...

CVE-2026-6116: OS Command Injection in Totolink A7100RU This vulnerability exists in the Totolink A7100RU router firmware 7.4cu.2313_b20191024 within the CGI handler component, specifically the setDiagnosisCfg function in /cgi-bin/cstecgi.cgi. An attacker can manipulate the 'ip' parameter to inj

Totolink A7100RU routers face a CRITICAL OS command injection (CVE-2026-6116). Remote attackers can run code without auth. No patch — disable remote access or isolate now. radar.offseq.com/threat/cve-2026-6116-os-... #OffSeq #Vulnerability #IoTSecurity

CVE-2026-6114: OS Command Injection in Totolink A7100RU This vulnerability affects the Totolink A7100RU router firmware 7.4cu.2313_b20191024. The setNetworkCfg function in the /cgi-bin/cstecgi.cgi CGI handler improperly sanitizes the 'proto' argument, enabling an attacker to perform OS command i

Totolink A7100RU routers (7.4cu.2313_b20191024) have a CRITICAL OS command injection flaw. Remote attackers can take control — no patch available. Disable remote management & monitor for fixes. radar.offseq.com/threat/cve-2026-6114-os-... #OffSeq #CV...

CVE-2026-1116: CWE-79 Improper Neutralization of Input During Web Page Generatio A Cross-site Scripting (XSS) vulnerability was identified in the `from_dict` method of the `AppLollmsMessage` class in parisneo/lollms prior to version 2.2.0. The vulnerability arises from the lack of sanitization or HTML encoding of the `c

HIGH severity XSS in parisneo/lollms (pre-2.2.0) lets attackers inject scripts via unsanitized input. Update now to prevent account takeover! ⚠️ radar.offseq.com/threat/cve-2026-1116-cwe... #OffSeq #XSS #Security

CVE-2026-6106: Cross Site Scripting in 1Panel-dev MaxKB This vulnerability in 1Panel-dev MaxKB (up to version 2.2.1) involves improper handling of the Name argument in the StaticHeadersMiddleware function within the Public Chat Interface. This flaw enables remote attackers to perform cross-site

New MEDIUM XSS vuln in 1Panel-dev MaxKB (v2.2.0/2.2.1) — attackers can inject scripts via Public Chat. Upgrade to v2.8.0 ASAP. No known exploits yet. radar.offseq.com/threat/cve-2026-6106-cro... #OffSeq #XSS #Security

CVE-2026-5217: CWE-79 Improper Neutralization of Input During Web Page Generatio The Optimole WordPress plugin suffers from a stored cross-site scripting vulnerability due to improper neutralization of input in the 's' parameter of the /wp-json/optimole/v1/optimizations REST endpoint. The endpoint validates requests wit

HIGH severity XSS in Optimole (WordPress, ≤4.2.2) lets unauthenticated attackers inject scripts via REST API. Disable plugin until patch available. radar.offseq.com/threat/cve-2026-5217-cwe... #OffSeq #WordPress #XSS