Browsing: Alerts

Serial number: AV26-525Date: May 29, 2026 On May 28, 2026, Microsoft published a security update to address vulnerabilities in the…

<p>COMOS is affected by XXE injection vulnerabilities that could allow an attacker to extract arbitrary application files.</p> <p>Siemens has released…

Number: AL26-013Date: May 29, 2026 Audience This Alert is intended for IT professionals and managers. Purpose An Alert is used…

CISA is prioritizing the response to multiple emerging software supply chain intrusion campaigns targeting developer ecosystems Continuous Integration/Continuous Development (CI/CD)…

HomeDescriptionmanga-image-translator contains a remote code execution vulnerability in the shared API server mode due to unsafe deserialization of untrusted pickle…

Serial number: AV26-526 Date: May 29, 2026 On May 28, 2026, Oracle published a security advisory to address critical vulnerabilities in…

HomeDescriptionform-data-objectizer converts FormData to object. Prior to 1.0.1, form-data-objectizer walks bracket-notation form keys (e.g. name[sub]) into nested objects without filtering…

View CSAF Summary Successful exploitation of this vulnerability allows an attacker’s malicious script to execute in the browser of any…

Serial number: AV26-520Date: May 28, 2026 On May 28, 2026, Zimbra published a security advisory to address vulnerabilities in the following…

HomeDescriptionA Server-Side Template Injection (SSTI) vulnerability exists in Mautic’s theme engine. The platform renders uploaded Twig templates without a sandbox…