CVE-2026-5613: Stack-based Buffer Overflow in Belkin F9K1015 The vulnerability in Belkin F9K1015 version 1.00.10 involves a stack-based buffer overflow triggered by improper handling of the webpage argument in the formReboot function located in /goform/formReboot. This flaw allows a remote attacker t

Belkin F9K1015 v1.00.10 hit by HIGH severity stack buffer overflow (CVE-2026-5613). Exploit public, no patch yet. Restrict access & disable remote mgmt ASAP. radar.offseq.com/threat/cve-2026-5613-sta... #OffSeq #IoTSecurity #Vuln

CVE-2026-1233: CWE-798 Use of Hard-coded Credentials in mvirik Text to Speech – CVE-2026-1233 identifies a vulnerability in the Text to Speech for WP (AI Voices by Mementor) plugin for WordPress, versions up to 1.9.8. The plugin's Mementor_TTS_Remote_Telemetry class contains hardcoded MySQL database credentials for the

Text to Speech for WP plugin ≤1.9.8 has HIGH severity flaw: hardcoded MySQL creds allow attackers write access to telemetry DB. Disable or restrict until patched. radar.offseq.com/threat/cve-2026-1233-cwe... #OffSeq #WordPress #Vuln

CVE-2026-2696: CWE-200 Information Exposure in Export All URLs The vulnerability identified as CVE-2026-2696 affects the Export All URLs WordPress plugin prior to version 5.1. This plugin exports URLs of posts on a WordPress site into CSV files. The issue arises because the plugin includes URLs of priv

Export All URLs WP plugin <5.1: HIGH severity info exposure. CSV exports with private URLs can be brute-forced — no auth needed. Restrict uploads dir & upgrade ASAP. radar.offseq.com/threat/cve-2026-2696-cwe... #OffSeq #WordPress #Vuln

Vulnerability Research Is Cooked

Vulnerability Research Is Cooked | #netsec #vuln #exploits #AI | sockpuppet.org/blog/2026/03...

CVE-2026-4946: CWE-78 Improper neutralization of special elements used in an OS CVE-2026-4946 is an OS command injection vulnerability classified under CWE-78 that affects NSA's Ghidra software, a widely used reverse engineering framework. The vulnerability exists in versions prior to 12.0.3 due to improper neutralizat

NSA Ghidra <12.0.3 hit by HIGH severity OS command injection. Malicious binaries can execute code if analysts click crafted UI annotations. Upgrade to 12.0.3+ ASAP. Details: radar.offseq.com/threat/cve-2026-4946-cwe... #OffSeq #Ghidra #Vuln

CVE-2026-3608: CWE-617 Reachable Assertion in ISC Kea CVE-2026-3608 is a vulnerability classified under CWE-617 (Reachable Assertion) affecting ISC Kea DHCP server software versions 2.6.0 through 2.6.4 and 3.0.0 through 3.0.2. The flaw arises when a specially crafted message is sent to one of

ISC Kea DHCP flaw (CVE-2026-3608, HIGH) lets remote attackers crash services via crafted messages. Audit deployments, restrict API/HA access, and monitor for threats. More: radar.offseq.com/threat/cve-2026-3608-cwe... #OffSeq #Vuln #DHCP

CVE-2026-4534: Stack-based Buffer Overflow in Tenda FH451 CVE-2026-4534 is a stack-based buffer overflow vulnerability affecting Tenda FH451 routers running firmware version 1.0.0.9. The vulnerability resides in the formWrlExtraSet function, specifically in the handling of the GO argument passed t

Tenda FH451 v1.0.0.9 hit by HIGH severity stack overflow (CVE-2026-4534). Remote attackers can execute code. Patch ASAP or restrict access to /goform/WrlExtraSet. PoC exploit is public. More: radar.offseq.com/threat/cve-2026-4534-sta... #OffSeq #Vuln...

CVE-2026-31938: CWE-79: Improper Neutralization of Input During Web Page Generat CVE-2026-31938 is a critical cross-site scripting (XSS) vulnerability identified in the parallax jsPDF library, a widely used JavaScript tool for generating PDF documents in browsers. The flaw exists in versions prior to 4.2.1, where the 'o

CRITICAL XSS in parallax jsPDF (<4.2.1): Exploitable via crafted PDF options — scripts run in victim's browser on open. Upgrade to 4.2.1+ now! radar.offseq.com/threat/cve-2026-31938-cw... #OffSeq #XSS #Vuln

CVE-2026-23489: CWE-20: Improper Input Validation in pluginsGLPI fields CVE-2026-23489 is a critical security vulnerability identified in the 'fields' plugin of GLPI, an open-source IT asset management and service desk software widely used by organizations globally. The 'fields' plugin enables users to add cust

GLPI 'fields' plugin <1.23.3 has a CRITICAL flaw — privileged users can run arbitrary PHP code. Upgrade to 1.23.3+ & audit permissions now! radar.offseq.com/threat/cve-2026-23489-cw... #OffSeq #GLPI #vuln

CVE-2026-31886: CWE-22: Improper Limitation of a Pathname to a Restricted Direct Dagu is a workflow engine with a web interface that prior to version 2.2.4 contains a critical path traversal vulnerability (CVE-2026-31886) classified under CWE-22. The vulnerability stems from improper validation of the dagRunId request p

dagu <2.2.4 faces a CRITICAL path traversal (CVE-2026-31886) — attackers can delete /tmp & disrupt systems. Upgrade to 2.2.4+ or patch input validation ASAP! radar.offseq.com/threat/cve-2026-31886-cw... #OffSeq #dagu #vuln

CVE-2026-3630: cwe-121 Stack-based Buffer Overflow in DeltaWW COMMGR2 CVE-2026-3630 identifies a stack-based buffer overflow vulnerability (CWE-121) in Delta Electronics' COMMGR2 software, a product likely used in industrial control or communication management contexts. The vulnerability arises from improper

CRITICAL: DeltaWW COMMGR2 hit by stack buffer overflow (CVE-2026-3630, CVSS 9.8). Remote RCE possible, no patch yet. Segment networks & monitor now! radar.offseq.com/threat/cve-2026-3630-cwe... #OffSeq #ICS #Vuln

CVE-2026-28501: CWE-89: Improper Neutralization of Special Elements used in an S CVE-2026-28501 is a critical SQL Injection vulnerability identified in the open-source video platform WWBN AVideo, specifically affecting versions prior to 24.0. The vulnerability exists in the objects/videos.json.php and objects/video.php

CRITICAL: WWBN AVideo < 24.0 hit by SQL Injection via JSON POST (catName). Unauthenticated exploit risks full DB compromise. Upgrade to v24.0+ or add WAF rules now! radar.offseq.com/threat/cve-2026-28501-cw... #OffSeq #Vuln #SQLInjection

CVE-2026-27012: CWE-306: Missing Authentication for Critical Function in devcode OpenSTAManager is an open-source software used for managing technical assistance and invoicing. Versions 2.9.8 and earlier contain a critical security flaw identified as CVE-2026-27012, classified under CWE-306 (Missing Authentication for C

OpenSTAManager <=2.9.8 faces a CRITICAL bug: CVE-2026-27012 allows attackers to gain admin rights by bypassing authentication. Restrict access & monitor activity until patched! radar.offseq.com/threat/cve-2026-27012-cw... #OffSeq #vuln #CVE202627012

CVE-2026-28409: CWE-78: Improper Neutralization of Special Elements used in an O CVE-2026-28409 is a critical OS command injection vulnerability (CWE-78) found in the WeGIA web management software, which is designed for charitable institutions. The vulnerability exists in the database restoration functionality prior to

WeGIA <3.6.5 hit by CRITICAL OS command injection (CVSS 10). RCE possible via backup restore + admin access (auth bypass possible). Upgrade to 3.6.5 now for protection! radar.offseq.com/threat/cve-2026-28409-cw... #OffSeq #vuln #CVE202628409

CVE-2026-2251: CWE-22 Improper Limitation of a Pathname to a Restricted Director CVE-2026-2251 is a critical security vulnerability classified under CWE-22 (Improper Limitation of a Pathname to a Restricted Directory, commonly known as Path Traversal) found in Xerox FreeFlow Core software versions up to and including 8.

🚨 CRITICAL: Xerox FreeFlow Core (≤8.0.7) hit by RCE flaw (CVE-2026-2251). Path traversal enables unauthenticated attacks. Upgrade to 8.1.0 now! radar.offseq.com/threat/cve-2026-2251-cwe... #OffSeq #Vuln #PrintSecurity

CVE-2026-3044: Stack-based Buffer Overflow in Tenda AC8 CVE-2026-3044 identifies a critical security vulnerability in the Tenda AC8 router firmware version 16.03.34.06. The vulnerability is a stack-based buffer overflow located in the webCgiGetUploadFile function of the HTTP daemon service, spec

Tenda AC8 routers (16.03.34.06) face HIGH severity stack buffer overflow — public exploit out. Restrict access, monitor /cgi-bin/UploadCfg, and prep for patches. 🔒 radar.offseq.com/threat/cve-2026-3044-sta... #OffSeq #RouterSecurity #Vuln

CVE-2026-26016: CWE-639: Authorization Bypass Through User-Controlled Key in pte Pterodactyl is an open-source game server management panel, with Wings acting as its server control plane. Prior to version 1.12.1, a critical vulnerability (CVE-2026-26016) exists due to missing authorization checks in multiple Wings contr

CRITICAL: Pterodactyl Panel <1.12.1 allows node token abuse for full server access & deletion. Upgrade to 1.12.1 & secure your tokens now! 🚨 radar.offseq.com/threat/cve-2026-26016-cw... #OffSeq #Pterodactyl #Vuln

CVE-2026-26119: CWE-287: Improper Authentication in Microsoft Windows Admin Cent CVE-2026-26119 is a vulnerability classified under CWE-287 (Improper Authentication) found in Microsoft Windows Admin Center version 1809.0. Windows Admin Center is a web-based management tool for Windows servers and clusters, widely used i

HIGH severity alert: Windows Admin Center 1809.0 flaw (CVE-2026-26119) lets authorized users escalate privileges. No patch yet — restrict access & monitor for abuse. radar.offseq.com/threat/cve-2026-26119-cw... #OffSeq #WindowsAdminCenter #Vuln

CVE-2026-22048: 918 in NETAPP StorageGRID (formerly StorageGRID Webscale) CVE-2026-22048 is a Server-Side Request Forgery (SSRF) vulnerability identified in NETAPP StorageGRID (formerly StorageGRID Webscale) versions prior to 11.9.0.12 and 12.0.0.4. This vulnerability specifically affects deployments where Single

🚨 HIGH-severity SSRF bug in NETAPP StorageGRID — SSO + Entra ID lets authenticated users disrupt configs or access. Upgrade or disable SSO ASAP! radar.offseq.com/threat/cve-2026-22048-91... #OffSeq #NETAPP #Vuln

CVE-2026-22208: CWE-749 Exposed Dangerous Method or Function in OpenS100 Project The vulnerability CVE-2026-22208 affects OpenS100, an open-source reference implementation for viewing S-100 maritime charts and related geospatial data. The root cause is the initialization of the Lua interpreter via luaL_openlibs() withou

OpenS100 CRITICAL vuln: RCE via Lua in S-100 viewer. Malicious catalogues can run arbitrary code if imported. Block untrusted files, sandbox apps, patch ASAP. radar.offseq.com/threat/cve-2026-22208-cw... #OffSeq #CVE202622208 #vuln

CVE-2026-1333: CWE-457 Use of Uninitialized Variable in Dassault Systèmes SOLIDW CVE-2026-1333 is a vulnerability classified under CWE-457 (Use of Uninitialized Variable) found in Dassault Systèmes SOLIDWORKS eDrawings, specifically affecting the EPRT file reading procedure in versions from SOLIDWORKS Desktop 2025 SP0 t

SOLIDWORKS eDrawings 2025 – 2026 SP0: HIGH risk from CVE-2026-1333. Malicious EPRT files can trigger code execution. Patch, restrict file handling, and educate users. radar.offseq.com/threat/cve-2026-1333-cwe... #OffSeq #SOLIDWORKS #vuln

CVE-2026-26369: Improper Privilege Management in JUNG eNet SMART HOME server CVE-2026-26369 is a critical security vulnerability identified in the JUNG eNet SMART HOME server software versions 2.2.1 and 2.3.1. The root cause is improper privilege management due to insufficient authorization validation within the set

CRITICAL: JUNG eNet SMART HOME server (2.2.1, 2.3.1) vuln lets users escalate to admin via /jsonrpc/management. Restrict access & monitor for abuse until patch. radar.offseq.com/threat/cve-2026-26369-im... #OffSeq #SmartHome #Vuln

CVE-2026-26011: CWE-787: Out-of-bounds Write in ros-navigation navigation2 CVE-2026-26011 is a critical vulnerability affecting the navigation2 package of the ROS 2 Navigation Framework, specifically versions 1.3.11 and earlier. The flaw exists in the Adaptive Monte Carlo Localization (AMCL) particle filter cluste

CRITICAL heap out-of-bounds write in ROS 2 navigation2 (≤1.3.11) via /initialpose lets attackers crash or exploit robots. Isolate DDS domains & monitor traffic. Patch when available! radar.offseq.com/threat/cve-2026-26011-cw... #OffSeq #ROS2 #vuln

CVE-2026-1729: CWE-306 Missing Authentication for Critical Function in scriptsbu CVE-2026-1729 is a critical vulnerability classified under CWE-306 (Missing Authentication for Critical Function) found in the AdForest WordPress theme developed by scriptsbundle. This vulnerability affects all versions up to and including

CRITICAL: AdForest WordPress theme flaw (CVE-2026-1729) lets attackers bypass login as any user. No patch yet — disable vulnerable OTP, use WAF rules, and monitor closely. Details: radar.offseq.com/threat/cve-2026-1729-cwe... #OffSeq #WordPress #Vuln...

CVE-2026-26009: CWE-78: Improper Neutralization of Special Elements used in an O CVE-2026-26009 is an OS command injection vulnerability categorized under CWE-78 affecting the karutoil catalyst platform, which is designed for enterprise game server hosting, game communities, and billing panel integrations. The root caus

CRITICAL: CVE-2026-26009 in karutoil catalyst (<11980aaf3f46315b02777f325ba02c56b110165d) enables cluster-wide root RCE via template perms. Patch now & restrict access! 🚨 radar.offseq.com/threat/cve-2026-26009-cw... #OffSeq #vuln #karutoil

CVE-2026-25894: CWE-321: Use of Hard-coded Cryptographic Key in frangoteam FUXA CVE-2026-25894 is a critical security vulnerability affecting frangoteam's FUXA software, a web-based process visualization tool commonly used in SCADA, HMI, and dashboard environments. The vulnerability arises from the use of hard-coded cr

CRITICAL: frangoteam FUXA (<1.2.10) has a hard-coded key flaw (CVE-2026-25894) — remote attackers can get admin access & run code. Upgrade to 1.2.10+ and audit JWT secrets now! radar.offseq.com/threat/cve-2026-25894-cw... #OffSeq #ICS #Vuln

Leaking your private data from the cloud with CPU vulnerabilities

www.youtube.com/watch?v=_fPa...
#l1tf #halfspectre #vuln

Last Week in AppSec for 08. January 2026 - Checkmarx React2Shell keeps going, Shai-Hulud doesn't. MongoDB and RustFS have problems. AdonisJS could write arbitrary files. 08. January 2026: Last Week In AppSec

It's been a busy couple of weeks for #AppSec; including ongoing named vulns like React2Shell and MongoBleed, because what's a #vuln without a Brand™? Also AdonisJS, RustFS, and the Shai-Hulud that didn't happen

📑 READ more: buff.ly/xbVornQ

#JavaScript #npm #MongoDB #React #Rust

Security threat visualization

CRITICAL: CVE-2025-14733 in WatchGuard Fireware OS VPNs (11.10.2–12.11.5, 2025.1–2025.1.3) allows remote code exec. Disable IKEv2 dynamic peers or limit exposure until patched. radar.offseq.com/threat/cve-2025-14733-cw... #OffSeq #WatchGuard #Vuln

Security threat visualization

Ninja Forms for WordPress hit by a HIGH severity flaw (CVE-2025-11924) exposing form data via REST API. Patch 3.13.1 is ineffective. Restrict API access & monitor tokens now! Details: radar.offseq.com/threat/cve-2025-11924-cw... #OffSeq #WordPress #Vuln