The CVE program is "saved" by a mystery contract with a mystery number. Transparency? Not so much.
Plus: lookup.disclose.io beta is live, EU CRA hits 6 months, exploited vulns up 105%.
Policy Pulse #8: blog.disclose.io/policy-pulse-issue-8-wee... #CVE #PolicyPulse
CVE-2026-4946 - High
π CVE-2026-4946 - High (8.8)
Ghidra versions prior to 12.0.3 improperly process annotation directives embedded in automaticall...
www.thehackerwire.com/vulnerability/CVE-2026-4...
#infosec #cybersecurity #CVE #vulnerability #security #patchstack
CVE-2026-0558 - High
π CVE-2026-0558 - High (7.5)
A vulnerability in parisneo/lollms, up to and including version 2.2.0, allows unauthenticated use...
www.thehackerwire.com/vulnerability/CVE-2026-0...
#infosec #cybersecurity #CVE #vulnerability #security #patchstack
CVE-2026-0562 - High
π CVE-2026-0562 - High (8.3)
A critical security vulnerability in parisneo/lollms versions up to 2.2.0 allows any authenticate...
www.thehackerwire.com/vulnerability/CVE-2026-0...
#infosec #cybersecurity #CVE #vulnerability #security #patchstack
CVE-2026-0560 - High
π CVE-2026-0560 - High (7.5)
A Server-Side Request Forgery (SSRF) vulnerability exists in parisneo/lollms versions prior to 2....
www.thehackerwire.com/vulnerability/CVE-2026-0...
#infosec #cybersecurity #CVE #vulnerability #security #patchstack
π΄ CVE-2026-34374 β CRITICAL (CVSS 9.1)
WWBN AVideo is an open source video platform. In versions up to and including 26.0, the `Live_schedule::keyExists()` method constructs a SQL query byβ¦
#CVE202634374 #CVE #cybersecurity
breachandbuild.com/cve-2026-34374-cve-2026-...
π΄ CVE-2026-30533 β CRITICAL (CVSS 9.8)
A SQL Injection vulnerability exists in SourceCodester Online Food Ordering System v1.0 in the admin/manage_product.php file via the "id" parameter.
#CVE202630533 #CVE #cybersecurity
breachandbuild.com/cve-2026-30533-cve-2026-...
π΄ CVE-2026-30532 β CRITICAL (CVSS 9.8)
A SQL Injection vulnerability exists in SourceCodester Online Food Ordering System v1.0 in the admin/view_product.php file via the "id" parameter.
#CVE202630532 #CVE #cybersecurity
breachandbuild.com/cve-2026-30532-cve-2026-...
π΄ CVE-2026-30530 β CRITICAL (CVSS 9.8)
A SQL Injection vulnerability exists in SourceCodester Online Food Ordering System v1.0 in the Actions.php file (specifically the save_customer action).β¦
#CVE202630530 #CVE #cybersecurity
breachandbuild.com/cve-2026-30530-cve-2026-...
π΄ CVE-2026-30302 β CRITICAL (CVSS 10.0)
The command auto-approval module in CodeRider-Kilo contains an OS Command Injection vulnerability, rendering its whitelist security mechanismβ¦
#CVE202630302 #CVE #cybersecurity
breachandbuild.com/cve-2026-30302-cve-2026-...
π΄ CVE-2026-34205 β CRITICAL (CVSS 9.6)
Home Assistant is open source home automation software that puts local control and privacy first. Home Assistant apps (formerly add-ons) configured withβ¦
#CVE202634205 #CVE #cybersecurity
breachandbuild.com/cve-2026-34205-cve-2026-...
π΄ CVE-2026-33875 β CRITICAL (CVSS 9.3)
Gematik Authenticator securely authenticates users for login to digital health applications. Versions prior to 4.16.0 are vulnerable to authenticationβ¦
#CVE202633875 #CVE #cybersecurity
breachandbuild.com/cve-2026-33875-cve-2026-...
When a major breach hits, every minute counts. β οΈ That's why our community-first approach at Yazoul Security prioritizes real-time alerts to help you stay informed and respond faster.
We monitor emerging threats so you don't have to.
https://www.yazoul.net
#CVE #CyberSecurity
CVE-2026-34005 - High
π CVE-2026-34005 - High (8.8)
In Sofia on Xiongmai DVR/NVR (AHB7008T-MH-V2 and NBD7024H-P) 4.03.R11 devices, root OS command in...
www.thehackerwire.com/vulnerability/CVE-2026-3...
#infosec #cybersecurity #CVE #vulnerability #security #patchstack
CVE-2026-34005 - High
π CVE-2026-34005 - High (8.8)
In Sofia on Xiongmai DVR/NVR (AHB7008T-MH-V2 and NBD7024H-P) 4.03.R11 devices, root OS command in...
www.thehackerwire.com/vulnerability/CVE-2026-3...
#infosec #cybersecurity #CVE #vulnerability #security #patchstack
CVE-2026-32915 - High
π CVE-2026-32915 - High (8.8)
OpenClaw before 2026.3.11 contains a sandbox boundary bypass vulnerability allowing leaf subagent...
www.thehackerwire.com/vulnerability/CVE-2026-3...
#infosec #cybersecurity #CVE #vulnerability #security #patchstack
CVE-2026-32914 - High
π CVE-2026-32914 - High (8.8)
OpenClaw before 2026.3.12 contains an insufficient access control vulnerability in the /config an...
www.thehackerwire.com/vulnerability/CVE-2026-3...
#infosec #cybersecurity #CVE #vulnerability #security #patchstack
CVE-2026-32918 - High
π CVE-2026-32918 - High (8.4)
OpenClaw before 2026.3.11 contains a session sandbox escape vulnerability in the session_status t...
www.thehackerwire.com/vulnerability/CVE-2026-3...
#infosec #cybersecurity #CVE #vulnerability #security #patchstack
CVE-2026-32924 - Critical
π΄ CVE-2026-32924 - Critical (9.8)
OpenClaw before 2026.3.12 contains an authorization bypass vulnerability where Feishu reaction ev...
www.thehackerwire.com/vulnerability/CVE-2026-3...
#infosec #cybersecurity #CVE #vulnerability #security #patchstack
CVE-2026-32922 - Critical
π΄ CVE-2026-32922 - Critical (9.9)
OpenClaw before 2026.3.11 contains a privilege escalation vulnerability in device.token.rotate th...
www.thehackerwire.com/vulnerability/CVE-2026-3...
#infosec #cybersecurity #CVE #vulnerability #security #patchstack
CVE-2026-32918 - High
π CVE-2026-32918 - High (8.4)
OpenClaw before 2026.3.11 contains a session sandbox escape vulnerability in the session_status t...
www.thehackerwire.com/vulnerability/CVE-2026-3...
#infosec #cybersecurity #CVE #vulnerability #security #patchstack
CVE-2026-32918 - High
π CVE-2026-32918 - High (8.4)
OpenClaw before 2026.3.11 contains a session sandbox escape vulnerability in the session_status t...
www.thehackerwire.com/vulnerability/CVE-2026-3...
#infosec #cybersecurity #CVE #vulnerability #security #patchstack
CVE-2026-32978 - High
π CVE-2026-32978 - High (8)
OpenClaw before 2026.3.11 contains an approval integrity vulnerability where system.run approvals...
www.thehackerwire.com/vulnerability/CVE-2026-3...
#infosec #cybersecurity #CVE #vulnerability #security #patchstack
CVE-2026-32975 - Critical
π΄ CVE-2026-32975 - Critical (9.8)
OpenClaw before 2026.3.12 contains a weak authorization vulnerability in Zalouser allowlist mode ...
www.thehackerwire.com/vulnerability/CVE-2026-3...
#infosec #cybersecurity #CVE #vulnerability #security #patchstack
CVE-2026-32918 - High
π CVE-2026-32918 - High (8.4)
OpenClaw before 2026.3.11 contains a session sandbox escape vulnerability in the session_status t...
www.thehackerwire.com/vulnerability/CVE-2026-3...
#infosec #cybersecurity #CVE #vulnerability #security #patchstack
CVE-2026-32978 - High
π CVE-2026-32978 - High (8)
OpenClaw before 2026.3.11 contains an approval integrity vulnerability where system.run approvals...
www.thehackerwire.com/vulnerability/CVE-2026-3...
#infosec #cybersecurity #CVE #vulnerability #security #patchstack
CVE-2026-32975 - Critical
π΄ CVE-2026-32975 - Critical (9.8)
OpenClaw before 2026.3.12 contains a weak authorization vulnerability in Zalouser allowlist mode ...
www.thehackerwire.com/vulnerability/CVE-2026-3...
#infosec #cybersecurity #CVE #vulnerability #security #patchstack
CVE-2026-32974 - High
π CVE-2026-32974 - High (8.6)
OpenClaw before 2026.3.12 contains an authentication bypass vulnerability in Feishu webhook mode ...
www.thehackerwire.com/vulnerability/CVE-2026-3...
#infosec #cybersecurity #CVE #vulnerability #security #patchstack
CVE-2026-32973 - Critical
π΄ CVE-2026-32973 - Critical (9.8)
OpenClaw before 2026.3.11 contains an exec allowlist bypass vulnerability where matchesExecAllowl...
www.thehackerwire.com/vulnerability/CVE-2026-3...
#infosec #cybersecurity #CVE #vulnerability #security #patchstack
CVE-2026-33573 - High
π CVE-2026-33573 - High (8.8)
OpenClaw before 2026.3.11 contains an authorization bypass vulnerability in the gateway agent RPC...
www.thehackerwire.com/vulnerability/CVE-2026-3...
#infosec #cybersecurity #CVE #vulnerability #security #patchstack
