CVE-2008-4128
Cisco IOS is susceptible to a Cross-Site Request Forgery (CSRF) vulnerability that is currently being actively exploited in the wild.
Critical vulnerabilities, curated daily for security professionals
Saturday's disclosures are led by web application and open-source platform vulnerabilities, headlined by a maximum-severity flaw in PrestaShop's ps_facetedsearch module and a cluster of critical issues in IBM Langflow OSS. Yesterday brought 30 critical CVEs (down 6% from 32) and 56 high-priority CVEs (down 31% from 81). Notable entries include CVE-2026-54159 (CVSS 10) in PrestaShop ps_facetedsearch, CVE-2026-8635, CVE-2026-8476, and CVE-2026-8481 (all CVSS 9.9) in IBM Langflow OSS, and CVE-2026-48062 (CVSS 9.8) in CodeIgniter4. The activity skews toward remote code execution and injection weaknesses in widely deployed e-commerce, CMS, and application frameworks, with WordPress plugins and PHP-based platforms prominent. Vendor patches were not yet reflected for these entries at disclosure, so teams should track upstream advisories and prioritize mitigations for internet-facing deployments; 10 CVEs carry confirmed active exploitation.
Immediate action: Prioritize PrestaShop ps_facetedsearch, IBM Langflow OSS, and CodeIgniter4 deployments, along with the actively exploited SharePoint, SonicWall SMA1000, and Fortinet FortiSandbox systems, for immediate review and mitigation. With no vendor patches reflected for the new critical items at disclosure, monitor upstream advisories closely and apply interim mitigations or access restrictions on internet-facing instances until fixes are published.
CVSS score (e.g. 9.1) — severity from 0–10. Red marks critical (9+), orange high (7–8.9).
Exploitability — how hard the flaw is to attack, read from the CVSS vector:
The lower the bar on all three, the easier to exploit at scale — “Network · No privileges · No interaction” is the worst case: hit from anywhere, no credentials, no victim action.
🔴 Actively exploited — confirmed under attack in the wild (CISA’s Known Exploited Vulnerabilities catalog). Prioritize these regardless of score.
EPSS · Nth percentile — FIRST.org’s estimated chance a flaw is exploited within 30 days. We flag it only in the top 10% — a statistical signal it’s unusually likely to be targeted, separate from whether attacks are confirmed.
Cisco IOS is susceptible to a Cross-Site Request Forgery (CSRF) vulnerability that is currently being actively exploited in the wild.
Microsoft SharePoint Server contains a vulnerability involving missing authentication for critical functions, allowing unauthenticated remote access.
A Server-side request forgery (SSRF) vulnerability in the SonicWall SMA1000 Work Place interface allows remote unauthenticated attackers to force the appliance to make unauthorized network requests.
SonicWall SMA1000 appliances are vulnerable to code injection, which can be exploited by an authenticated administrator to execute arbitrary code.
An unauthenticated, easily exploitable vulnerability in the Oracle Payments product of E-Business Suite allows remote attackers to compromise the service via HTTP.
A deserialization of untrusted data vulnerability in Microsoft SharePoint allows an unauthenticated, remote attacker to execute arbitrary code.
An OS command injection vulnerability in FortiSandbox allows unauthenticated attackers to execute unauthorized commands via specifically crafted HTTP requests.
Fortinet FortiSandbox is vulnerable to OS command injection, allowing unauthenticated attackers to execute unauthorized code on the appliance.
Microsoft Active Directory Federation Services is affected by a vulnerability involving insufficient granularity of access control.
The KNX Protocol Connection Authorization Option 1 contains an overly restrictive account lockout mechanism vulnerability that is currently being exploited in the wild.
An unauthenticated SQL injection vulnerability exists in Sangoma Switchvox SMB Edition that allows remote attackers to execute arbitrary database commands via the /pa endpoint.
WordPress is affected by a REST API batch endpoint route confusion issue which, when combined with other vulnerabilities, can lead to SQL injection and Remote Code Execution.
The AI Copilot WordPress plugin fails to bind OAuth tokens to specific users, allowing unauthenticated attackers to impersonate administrators and execute privileged tools.
A PHP object injection vulnerability in the PrestaShop ps_facetedsearch module allows unauthenticated attackers to achieve remote code execution via a malicious serialized object.
IBM Langflow OSS contains a code injection vulnerability allowing authenticated users to escalate privileges to superuser and execute arbitrary system commands.
A file upload validation bypass in CodeIgniter4 allows attackers to upload executable PHP files by manipulating MIME-derived extensions.
IBM Langflow OSS contains a remote code execution vulnerability due to insecure deserialization in the AsyncDiskCache class, allowing arbitrary code execution via malicious pickle payloads.
A remote code execution vulnerability exists in the IBM Langflow OSS code validation API, which executes user-supplied Python code without sandboxing or validation.
A buffer overflow vulnerability in OpenHTJ2K allows remote attackers to execute arbitrary code via multiple decoder functions.
A vulnerability in the websocket-driver-node frame parsing logic allows remote attackers to cause integer overflows and payload misinterpretation by sending specifically crafted byte sequences.
IBM Langflow OSS contains a code injection vulnerability in its ToolGuard integration, allowing authenticated users to bypass security controls and execute arbitrary Python code.
A critical authentication bypass vulnerability in IBM Langflow OSS allows unauthenticated remote attackers to execute arbitrary flows, potentially leading to remote code execution.
A critical flaw in the variable-base scalar multiplication gadget within Zcash-related components allows an attacker to produce valid proofs for Orchard Actions by bypassing integrity checks.
A path traversal vulnerability in the IBM Langflow OSS APIRequest component allows an authenticated attacker to write arbitrary files to the server by manipulating file paths.
A critical code injection vulnerability in IBM Langflow OSS allows unauthenticated attackers to gain superuser privileges and execute arbitrary code on the host system.
An authorization bypass vulnerability in the Avo framework allows authenticated low-privileged users to perform unauthorized association modifications via the POST /resources/:resource/:id/:related endpoint.
IBM Engineering AI Hub versions 1.0.0 through 1.2.0 are vulnerable to stored cross-site scripting due to improper input sanitization, allowing remote attackers to execute arbitrary scripts.
An unverified password change vulnerability in the Vimesoft Enterprise Video Platform allows remote, unauthenticated attackers to bypass authentication mechanisms.
GisLab Laboratory Management System is vulnerable to SQL injection due to improper neutralization of special elements in SQL commands, allowing unauthenticated attackers to execute arbitrary queries.
An authentication bypass vulnerability in Ciena Navigator NCS and Blue Planet products allows unauthenticated attackers to manipulate HTTP requests to gain unauthorized access.
IBM Langflow OSS versions 1.0.0 through 1.10.1 contain hard-coded credentials used for authentication and internal communication, which could be exploited by remote attackers.
IBM Langflow OSS versions 1.0.0 through 1.10.0 allow unauthenticated attackers to create new user accounts that may automatically gain access to remote code execution endpoints.
An authorization bypass vulnerability in Vimesoft Enterprise Video Platform allows unauthenticated attackers to access restricted functions by manipulating user-controlled keys.
IBM Langflow OSS contains an authentication bypass vulnerability in the auto_login endpoint, allowing unauthenticated attackers to gain full administrative access via long-lived bearer tokens.
A missing authorization vulnerability in Vimesoft Enterprise Video Platform allows unauthenticated attackers to access sensitive functionality not properly constrained by ACLs.
HCL Aftermarket EPC contains a business logic flaw that allows unauthenticated users to retrieve passwords from the server and redirect them to attacker-controlled email addresses.
The Storable module for Perl contains a signed integer overflow when deserializing SX_HOOK records, potentially leading to denial of service or arbitrary code execution.
Ciena software products contain hidden system accounts with predictable default passwords, potentially allowing unauthorized access and privilege escalation.
The Proxmox libpve-storage-perl library contains an XML External Entity (XXE) vulnerability that could lead to unauthorized data disclosure or service disruption.
A privilege escalation vulnerability in D-Link DIR-1253 allows unauthenticated attackers to manipulate the etc/shadow component file to gain unauthorized system access.
HAPI FHIR is susceptible to uncontrolled resource consumption due to inefficient regular expression complexity, which can be triggered by unauthenticated attackers to cause a denial of service.
Adobe Acrobat Reader is vulnerable to a heap-based buffer overflow that may allow an attacker to execute arbitrary code in the context of the current user.
The Cursor code editor for Windows is vulnerable to remote code execution via an untrusted search path, allowing attackers to execute malicious code when a user interacts with a workspace.
Pimcore contains an SQL injection vulnerability allowing authenticated attackers to execute arbitrary SQL commands.
Google Cloud Firebase Studio was affected by a missing authorization vulnerability allowing unauthorized users to download source code and access sensitive data via GCS URL signing requests.
Dancer::Plugin::Auth::Google fails to perform proper SSL certificate validation during authentication requests, potentially allowing man-in-the-middle attacks.
A missing authorization vulnerability in Pimcore allows authenticated users to perform unauthorized actions, potentially leading to data integrity issues or service disruption.
Pimcore is vulnerable to insecure deserialization of untrusted data, which can be leveraged by an authenticated user with high privileges to achieve remote code execution.
A TOCTOU race condition in the Zoom Workplace VDI Plugin for Windows allows authenticated local users to escalate privileges during installation or uninstallation.
Zoom Rooms for Windows contains an improper privilege management vulnerability that may allow an authenticated local user to perform unauthorized actions.
JLine3 is affected by an uncontrolled resource consumption vulnerability that allows unauthenticated remote attackers to cause a denial of service.
JLine3 is affected by an uncontrolled resource consumption vulnerability that allows unauthenticated remote attackers to cause a denial of service.
The Apache Airflow Git provider defaults to disabling SSH host-key verification, allowing man-in-the-middle attacks to intercept credentials or inject malicious repository content.
The User Registration & Membership plugin for WordPress is vulnerable to improper privilege management, potentially allowing unauthorized access to administrative functions.
A privilege escalation vulnerability in the Apache Airflow FAB auth manager allows authenticated users to gain global DAG permissions due to a naming collision with the `DAGs` resource.
The Shibboleth WordPress plugin fails to properly verify identity headers, allowing unauthenticated attackers to spoof sessions and potentially gain administrative access.
The css_parser Ruby library is vulnerable to Server-Side Request Forgery (SSRF) due to improper handling of CSS input, allowing unauthenticated attackers to perform unauthorized requests.
ViewComponent for Ruby on Rails is vulnerable to Cross-site Scripting (XSS) due to improper neutralization of input during web page generation.
The joserfc library is vulnerable to authentication bypass and weak credential handling due to flaws in its implementation of JSON Object Signing and Encryption standards.
The AsyncSSH Python package is susceptible to a path traversal vulnerability that could allow unauthorized access to files outside of the intended directory.
Datadog dd-trace-py is susceptible to a resource exhaustion vulnerability due to a lack of limits on resource allocation.
ZenHive mpp fails to properly validate input quantities, allowing unauthenticated remote clients to inflate gas costs for sponsors.
ZenHive mpp contains an input validation vulnerability that enables unauthenticated remote clients to drain fee-payer wallets by specifying arbitrary gas prices.
ZenHive mpp contains an input validation vulnerability that allows unauthenticated remote attackers to drain fee-payer wallets, causing denial of service.
Zalando Skipper is vulnerable to HTTP request smuggling due to inconsistent interpretation of HTTP requests between the proxy and backend services.
The @hapi/content package is susceptible to interpretation conflicts when parsing HTTP Content headers, potentially allowing for unexpected application behavior.
IBM Langflow OSS is vulnerable to OS Command Injection, allowing authenticated users with low privileges to execute arbitrary system commands on the host server.
A path traversal vulnerability in IBM Langflow OSS allows authenticated attackers to read or potentially overwrite sensitive files outside of the intended application directories.
IBM Langflow OSS contains an unspecified vulnerability that allows authenticated attackers to perform unauthorized actions, necessitating an immediate software update.
IBM Langflow OSS versions 1.0.0 through 1.10.0 are susceptible to a code injection vulnerability, which may allow authenticated users to execute arbitrary code.
A vulnerability in the Agentic-Flow AI agent orchestration platform allows for OS command injection via insufficient input neutralization.
The systeminformation library for Node.js is vulnerable to OS command injection due to improper neutralization of input elements.
The ChronoForms extension for Joomla, versions 1.0 through 8.0.52, contains an unauthenticated stored cross-site scripting (XSS) vulnerability.
A reflected cross-site scripting (XSS) vulnerability exists in Sangoma Switchvox SMB Edition version 8, allowing for unauthorized script execution.
A path traversal vulnerability in GitHub Enterprise Server allows authenticated attackers with code execution in the Dependabot container to write files to arbitrary repository paths.
A security flaw in the ongres scram library allows for algorithm downgrade attacks during SASL authentication, potentially leading to unauthorized authentication bypass.
IBM Langflow OSS versions 1.0.0 through 1.10.1 are affected by an authorization bypass vulnerability allowing authenticated users to access resources via user-controlled keys.
IBM Langflow OSS is vulnerable to an unspecified security flaw that may allow for unauthorized system impact.
IBM Storage Protect Client contains a security vulnerability that may allow an unauthenticated attacker to impact system confidentiality, integrity, and availability.
SigNoz is susceptible to open redirection and insufficient verification of data authenticity, which can be leveraged to manipulate SSO/OAuth state and facilitate session token theft.
OpenClaw is susceptible to an authentication bypass vulnerability due to insufficient verification of data authenticity, potentially allowing unauthenticated access to sensitive functionality.
IBM Db2 is susceptible to a code injection vulnerability that could allow an authenticated local user to execute unauthorized code.
ForgeCode, an AI pair-programming CLI, is vulnerable to arbitrary code execution because it automatically loads and executes MCP servers defined in untrusted repositories.
OpenClaw contains a vulnerability where it improperly loads untrusted plugins during setup mode, potentially leading to arbitrary code execution on the host.
A use-after-free vulnerability in YAML::Syck allows local, authenticated attackers to potentially execute arbitrary code or cause a crash.
IBM Langflow OSS versions 1.0.0 through 1.10.0 contain a vulnerability that may allow an authenticated user to gain unauthorized access to sensitive information.
A server-side request forgery (SSRF) vulnerability in OpenClaw allows an authenticated user to bypass network policies via the execution server.
A server-side request forgery (SSRF) vulnerability in the browser snapshot feature of OpenClaw allows an authenticated user to perform unauthorized requests.
YAML::Syck is affected by an out-of-bounds read vulnerability that could lead to information disclosure or application instability.
Emlog versions 2.6.13 and earlier are vulnerable to path traversal and remote file inclusion due to improper control of file paths and include statements.
The stoatchat application contains an authorization bypass vulnerability where users with read-only permissions can retrieve webhook tokens.
Datadog dd-trace-go versions prior to 2.8.1 are vulnerable to resource exhaustion due to a lack of limits on allocated resources.
Netty is susceptible to uncontrolled resource consumption, allowing unauthenticated remote attackers to cause a denial of service via resource exhaustion.
The DataDog dd-trace-js library is vulnerable to resource exhaustion due to improper allocation of resources without limits, enabling remote denial of service.
Perl versions through 5.43.10 contain an integer overflow in S_measure_struct, which can lead to an out-of-bounds heap read during pack and unpack operations.
AhnLab EPP Management contains a vulnerability that permits an authenticated attacker to execute unauthorized actions, potentially leading to total system compromise.