Joomla Page Builder RCE Flaws Added to CISA KEV: Check for Web Shells
CISA added exploited JoomShaper SP Page Builder and PageBuilder CK flaws to…
Tenda Router Backdoor CVE-2026-11405: Check Your Firmware
CERT/CC warns that several Tenda router firmware builds contain a hidden admin…
Chrome CVE-2026-11645 Zero-Day
Google fixed Chrome CVE-2026-11645, a V8 flaw with an exploit in the…
Mirasvit Cache Warmer RCE
CISA added Mirasvit Cache Warmer CVE-2026-45247 to KEV. Check affected Magento stores,…
Kirki CVE-2026-8206
Kirki 6.0.0 through 6.0.6 can let unauthenticated attackers route password reset links…
CVE-2025-48595: Android Exploit Status, June Patch
CVE-2025-48595 has limited targeted exploitation signals. Check NVD details, PoC/exploit status, June…
Netlogon CVE-2026-41089 RCE
CVE-2026-41089 is now reported as actively exploited. Patch Windows Server domain controllers…
WP Maps Pro CVE-2026-8732
WP Maps Pro CVE-2026-8732 lets unauthenticated attackers create WordPress administrator accounts. Update…
Flowise Chatflow RCE
Flowise CVE-2026-40933 can turn a malicious chatflow import into server-side command execution.…
EMS Patch Trap
FortiClient EMS CVE-2026-35616 was abused to push EKZ Infostealer as a fake…
PAN-OS CVE-2026-0257 Patch
CISA added PAN-OS CVE-2026-0257 to KEV after exploitation. Check GlobalProtect portals and…
LiteSpeed cPanel Plugin CVE-2026-48172 Exploited for Root Scripts
LiteSpeed says CVE-2026-48172 is being actively exploited in its user-end cPanel plugin.…
