CVE-2008-4128
Cisco IOS is susceptible to a Cross-Site Request Forgery (CSRF) vulnerability that is currently being actively exploited in the wild.
Critical vulnerabilities, curated daily for security professionals
Friday's disclosures center on high-impact flaws in widely deployed infrastructure and collaboration tooling, including jupyter-server enterprise_gateway (CVE-2026-44181, CVSS 10) and Zoom Workplace for Windows (CVE-2026-53412, CVSS 9.8). Critical CVEs rose to 32 (up 78% from the prior day) and high-priority CVEs climbed to 81 (up 138%), across 113 total vulnerabilities. Additional notable critical issues include Kopia backup (CVE-2026-45695, CVSS 9.8), Yamcs mission control (CVE-2026-46562, CVSS 9.8), and two Microsoft Kiota flaws (CVE-2026-59864 and CVE-2026-59865, both CVSS 9.3). The set is dominated by remote code execution and authentication bypass conditions affecting backup systems, developer tooling, WordPress plugins, and enterprise gateways, and 10 vulnerabilities have confirmed active exploitation spanning Microsoft SharePoint, SonicWall SMA1000, and Fortinet FortiSandbox. Patch availability is currently reported at 0%, so teams should prioritize monitoring vendor advisories, applying interim mitigations, and restricting exposure of affected services.
Immediate action: Prioritize the actively exploited flaws in Microsoft SharePoint, SonicWall SMA1000, and Fortinet FortiSandbox, and reduce exposure of jupyter-server enterprise_gateway and internet-facing Kopia and Yamcs deployments. With patch availability at 0% for today's critical disclosures, apply vendor mitigations, restrict network access, and monitor advisories closely for fixes as they are released.
CVSS score (e.g. 9.1) — severity from 0–10. Red marks critical (9+), orange high (7–8.9).
Exploitability — how hard the flaw is to attack, read from the CVSS vector:
The lower the bar on all three, the easier to exploit at scale — “Network · No privileges · No interaction” is the worst case: hit from anywhere, no credentials, no victim action.
🔴 Actively exploited — confirmed under attack in the wild (CISA’s Known Exploited Vulnerabilities catalog). Prioritize these regardless of score.
EPSS · Nth percentile — FIRST.org’s estimated chance a flaw is exploited within 30 days. We flag it only in the top 10% — a statistical signal it’s unusually likely to be targeted, separate from whether attacks are confirmed.
Cisco IOS is susceptible to a Cross-Site Request Forgery (CSRF) vulnerability that is currently being actively exploited in the wild.
Microsoft SharePoint Server contains a vulnerability involving missing authentication for critical functions, allowing unauthenticated remote access.
A Server-side request forgery (SSRF) vulnerability in the SonicWall SMA1000 Work Place interface allows remote unauthenticated attackers to force the appliance to make unauthorized network requests.
SonicWall SMA1000 appliances are vulnerable to code injection, which can be exploited by an authenticated administrator to execute arbitrary code.
An unauthenticated, easily exploitable vulnerability in the Oracle Payments product of E-Business Suite allows remote attackers to compromise the service via HTTP.
A deserialization of untrusted data vulnerability in Microsoft SharePoint allows an unauthenticated, remote attacker to execute arbitrary code.
An OS command injection vulnerability in FortiSandbox allows unauthenticated attackers to execute unauthorized commands via specifically crafted HTTP requests.
Fortinet FortiSandbox is vulnerable to OS command injection, allowing unauthenticated attackers to execute unauthorized code on the appliance.
Microsoft Active Directory Federation Services is affected by a vulnerability involving insufficient granularity of access control.
The KNX Protocol Connection Authorization Option 1 contains an overly restrictive account lockout mechanism vulnerability that is currently being exploited in the wild.
The Microsoft 365 Integration plugin for Moodle fails to verify JWT signatures in the Teams SSO endpoint, allowing unauthenticated attackers to forge session tokens.
The Aimogen Pro WordPress plugin is vulnerable to unauthenticated privilege escalation, allowing attackers to execute arbitrary PHP functions and create administrator accounts via missing capability checks.
Kopia's HTTP server, when started without a password, is vulnerable to unauthenticated OS command injection via maliciously crafted SFTP storage configuration parameters.
Jupyter Enterprise Gateway is vulnerable to Server Side Template Injection (SSTI), allowing unauthenticated attackers to execute arbitrary code and gain control over the Kubernetes cluster.
A code injection vulnerability in the Yamcs mission control framework allows unauthenticated attackers to execute arbitrary OS commands via the Nashorn ScriptEngine.
Zoom Workplace for Windows is vulnerable to an improper input validation flaw that may enable account takeover by an unauthenticated attacker.
The Happy Coders OTP Login for WooCommerce plugin fails to validate one-time passwords during the authentication process, allowing unauthorized account access.
An input validation flaw in the Frogman PBX control software allows authenticated users with writing privileges to inject arbitrary Asterisk directives.
The Kiota code generator fails to validate paths in plugin manifest templates, enabling path traversal or arbitrary file inclusion when generated plugins are deployed.
Kiota incorrectly processes dependency installation commands from OpenAPI descriptions, leading to potential command injection when these commands are executed by users.
Kiota versions prior to 1.32.5 are vulnerable to path traversal and code injection due to improper sanitization of generated client class names, namespaces, and output paths.
A YAML injection vulnerability in Jupyter Enterprise Gateway allows attackers to inject malicious fields into Kubernetes manifests, potentially leading to unauthorized privilege escalation.
The Bricksforge WordPress plugin contains a privilege escalation vulnerability in the Pro Forms component, allowing unauthenticated attackers to register new administrator accounts.
Jupyter Enterprise Gateway is vulnerable to an input validation bypass that allows kernels to run as root, potentially leading to container escapes and full cluster compromise.
The zrok Python SDK proxy route is vulnerable to a server-side request forgery flaw, allowing attackers to force the proxy to return responses from arbitrary URLs.
The Snowflake Connector for Python fails to properly verify TLS hostnames, allowing a network-positioned attacker to intercept traffic or execute arbitrary SQL queries via certificate spoofing.
The X-Rite MA-T6 device is vulnerable to remote code execution due to improper input sanitization in the SetParameter command.
A heap-based buffer overflow in the illumos SCTP inbound path allows an unauthenticated attacker to trigger remote code execution via a crafted INIT ACK packet.
A missing authorization vulnerability in mwtcmi frogman allows authenticated users with low-level permissions to access sensitive system secrets and execute unauthorized administrative commands.
An unauthenticated access vulnerability in Grafana OnCall allows remote attackers to hijack plugin tokens, authenticate as administrators, and redirect API traffic to malicious hosts.
An origin validation error in the X-Rite MA-T6 device allows unauthenticated remote attackers to execute arbitrary commands on the affected hardware.
WireGuard Easy contains a cryptographically weak one-time link token generation vulnerability, allowing unauthenticated attackers to brute-force credentials and impersonate VPN peers.
The clawvet self-hosted API server uses a hard-coded JWT secret, allowing unauthenticated attackers to forge session cookies and access sensitive user information.
Spring Authorization Server contains an authentication bypass vulnerability affecting multiple versions, potentially allowing authenticated users to escalate privileges.
A SQL injection vulnerability in the /user/getUserLogin endpoint of Shenzhou Shihan Video Conference System v.1.0 allows unauthenticated remote attackers to execute arbitrary code.
Perl versions through 5.43.9 contain an integer overflow in the regex trie optimizer, causing silently incorrect regular expression matches when processing large alternations.
HireFlow versions 1.3 and earlier contain a hard-coded secret key in app.py, allowing unauthenticated attackers to forge session cookies and bypass authentication mechanisms.
A memory corruption vulnerability due to an integer underflow in the OpENer EtherNet/IP stack allows remote attackers to cause a denial of service or potentially execute arbitrary code.
A stack-based buffer overflow in OpENer 2.3.0 occurs during CIP packet parsing, caused by an integer overflow and truncation when handling length parameters.
An out-of-bounds read vulnerability in OpENer 2.3.0 allows unauthenticated attackers to cause a Denial of Service by sending malformed ForwardOpen or LargeForwardOpen CIP requests.
OpENer 2.3.0 contains an improper access control vulnerability where the server fails to verify if a session handle belongs to the specific TCP connection, allowing session hijacking.
An out-of-bounds read vulnerability in OpENer 2.3.0 during CIP message parsing allows attackers to crash the service via malformed ENIP SendRRData frames.
Kiota contains a code injection vulnerability that allows an attacker to execute arbitrary code via improper control of generated code.
Microsoft Kiota is susceptible to a code injection vulnerability caused by improper control of generated code, which could result in arbitrary code execution.
Directus is vulnerable to unauthorized information disclosure and authorization bypass due to improper handling of sensitive cached data and user-controlled keys.
The Lenovo XClarity Integrator for Microsoft Windows Admin Center is vulnerable to OS command injection, allowing authenticated users to execute arbitrary commands.
Microsoft Prompty is affected by a code injection vulnerability in the markdown file format processing logic, which may allow arbitrary code execution.
Docling Core is vulnerable to path traversal and server-side request forgery, potentially allowing unauthenticated attackers to access restricted files or perform unauthorized network requests.
Microsoft SimpleChat is affected by missing authentication and authorization controls, allowing unauthenticated attackers to potentially perform unauthorized actions within the application.
A prototype pollution vulnerability exists in the AdonisJS BodyParser component, allowing unauthenticated attackers to modify object prototype attributes.
A privilege misconfiguration in the Absolute Security Secure Access installer for Windows allows a local user to escalate privileges to a higher level.
TDengine is susceptible to stack-based buffer overflow and out-of-bounds write vulnerabilities, allowing authenticated attackers to impact system stability or gain unauthorized control.
A stored cross-site scripting (XSS) vulnerability in the OpenWrt luci-app-upnp package allows unauthenticated LAN attackers to execute malicious JavaScript via UPnP IGD AddPortMapping requests.
Docling Core is vulnerable to path traversal and resource exhaustion due to improper handling of external file names and uncontrolled resource consumption.
The Abandoned Cart Lite for WooCommerce WordPress plugin is vulnerable to improper authentication, allowing unauthenticated attackers to potentially bypass security controls.
The ProfilePress plugin for WordPress contains an arbitrary file upload vulnerability that permits authenticated users with low-level access to execute malicious code on the server.
The Redux Framework plugin for WordPress contains an improper privilege management vulnerability that allows authenticated users to gain unauthorized access to restricted functions.
The Uncanny Automator plugin for WordPress contains a deserialization vulnerability that allows for arbitrary file deletion due to insufficient path validation in the fr_token function.
Argo Workflows contains an improper access control vulnerability that allows authenticated users to perform unauthorized operations, potentially impacting workflow execution and orchestration.
Splunk Enterprise is susceptible to a Cross-Site Request Forgery (CSRF) vulnerability that allows attackers to perform unauthorized actions on behalf of authenticated users.
An injection vulnerability in the NGINX Ingress Controller configuration generator allows authenticated users to manipulate configurations via specific CRDs or Ingress annotations.
A vulnerability in the ngx_http_slice_module of NGINX Plus and NGINX Open Source allows for potential denial of service due to the use of uninitialized resources.
A Denial of Service vulnerability in libmodbus 3.1.12 on Windows arises from improper timeout management in the receive loop, allowing attackers to block communication.
The Grav CMS API is vulnerable to privilege escalation due to missing authorization checks in its API key creation mechanism.
A path traversal vulnerability in the whistle debugging proxy allows unauthenticated attackers to access restricted directories.
A path traversal vulnerability in zrok allows remote, unauthenticated attackers to manipulate file paths and potentially impact system integrity.
A prototype pollution vulnerability in the Gestor de Oferta web application allows unauthenticated attackers to modify object attributes.
HCL DFXServer is vulnerable to a broken authentication flaw, allowing unauthenticated attackers to bypass security controls via direct API access.
A flaw in the Red Hat Ansible Automation Platform Gateway Envoy proxy configuration allows for authentication bypass through spoofing.
The Grav API plugin is affected by an incorrect authorization vulnerability that allows authenticated users to bypass API key scope restrictions.
DD-WRT is vulnerable to a stack-based buffer overflow in the UPnP service, which could allow an unauthenticated attacker to achieve remote code execution.
A local privilege escalation vulnerability in the ESET Inspect Connector allows an authenticated local user to gain higher privileges on the host system.
HCL DFXServer is susceptible to an authentication bypass vulnerability, enabling remote attackers to manipulate server responses to gain unauthorized access.
OpenClaw 2026.6.1 through 2026.6.8 is susceptible to incorrect authorization, allowing authenticated users to perform unauthorized actions via cron jobs.
OpenClaw versions prior to 2026.6.6 are vulnerable to environment variable injection via rustup, potentially allowing authenticated users to compromise system integrity.
OpenClaw versions before 2026.6.5 contain an authentication bypass vulnerability in administrative tools, allowing authenticated users to perform unauthorized administrative actions.
A vulnerability in OpenClaw allows authenticated users to perform unauthorized actions via incorrect authorization checks in the execution approval function.
A missing authorization flaw in OpenClaw allows authenticated users to bypass security controls during the device pairing approval process.
An incorrect authorization vulnerability in OpenClaw allows authenticated users to bypass security checks during the device pairing process.
OpenClaw is affected by an incorrect authorization vulnerability that may allow authenticated users to perform unauthorized actions.
A path traversal vulnerability exists in OpenClaw, allowing authenticated attackers to access or manipulate restricted files through improper glob matching.
Kirby CMS is vulnerable to path traversal and remote file inclusion, allowing unauthenticated attackers to potentially read sensitive files or execute arbitrary code.
Axelor Open Platform versions 8.0.0 through 8.2.1 contain an incorrect authorization vulnerability that allows authenticated users to bypass security controls via nested relational record persistence.
A flaw in the PipeWire multimedia server on Red Hat Enterprise Linux allows a local user to leverage an uncontrolled search path element to escalate privileges or impact system integrity.
The Kirby content management system is vulnerable to unsafe reflection, allowing authenticated users to trigger unintended code execution or select arbitrary classes.
Centrifugo is vulnerable to data amplification via improper handling of highly compressed data, allowing for potential denial of service.
Stoatchat is vulnerable to an unrestricted message history fetch due to a comparison using wrong factors, potentially leading to unauthorized data access.
Stoatchat is susceptible to Server-Side Request Forgery (SSRF) via a bypass of the DNS-based IP blocklist, allowing for unauthorized internal network requests.
Hugging Face text-generation-inference is vulnerable to Server-Side Request Forgery (SSRF) via the fetch image functionality in multimodal chat completions.
StoatChat is vulnerable to unauthenticated Server-Side Request Forgery (SSRF) via its proxy and embed endpoints.
PraisonAI is vulnerable to an authentication bypass due to missing webhook signature verification, allowing unauthenticated attackers to trigger actions.
A Server-Side Request Forgery vulnerability in OpenClaw allows authenticated attackers to perform unauthorized requests.
A Cross-site Scripting vulnerability in the Kirby CMS allows authenticated attackers with low privileges to execute malicious scripts.
Emlog is susceptible to a Cross-site Scripting vulnerability that can be triggered by unauthenticated attackers.
Wekan contains multiple authorization bypass and access control vulnerabilities that allow authenticated users to perform unauthorized actions.
DataEase contains a path traversal vulnerability that allows authenticated users to access or manipulate restricted files on the underlying system.
Nixpkgs contains an incorrect default permissions vulnerability that may expose sensitive files or system components to unauthorized access.
PraisonAI is vulnerable to Server-Side Request Forgery (SSRF) due to improper input validation, allowing authenticated attackers to interact with internal resources.
Kirby CMS is susceptible to a Cross-site Scripting (XSS) vulnerability that allows authenticated users to execute malicious scripts in the context of a victim session.
PraisonAI is vulnerable to Code Injection via plugin auto-discovery, which may allow an unauthenticated attacker to execute arbitrary code on the host system.
A race condition in the account lockout mechanism in Delphix Continuous Data allows attackers to bypass authentication thresholds via concurrent requests.
A path traversal vulnerability in the DataEase open source data visualization tool allows authenticated users to access restricted directories.
Memory safety vulnerabilities in the Zephyr ADIN2111/ADIN1110 Ethernet driver allow for potential memory corruption or unauthorized data access.
Better Auth for TypeScript contains vulnerabilities related to improper authentication and insufficient verification of data authenticity, potentially allowing for unauthorized access.
Immich is susceptible to an incorrect authorization vulnerability that allows authenticated users to perform unauthorized actions on shared albums.
Vaultwarden is affected by a Cross-Site Request Forgery vulnerability that could permit unauthorized actions if a user is tricked into performing a malicious request.
A vulnerability in Open WebUI involving insufficient session expiration allows for potential unauthorized access.
CrowdSec contains a vulnerability related to the improper handling of highly compressed data, which can lead to resource exhaustion.
Centrifugo contains a vulnerability involving the improper verification of cryptographic signatures in its real-time messaging server.
Dashy contains a vulnerability allowing for improper access control and authentication, which may lead to unauthorized system configuration changes.
GPUStack contains a missing authentication vulnerability in worker endpoints that allows unauthenticated attackers to disclose sensitive information.
PraisonAI contains an authentication bypass vulnerability via host header spoofing, allowing unauthenticated attackers to gain unauthorized access.
OpenClaw is susceptible to an incorrect authorization vulnerability, allowing authenticated users with low privileges to bypass authorization checks.
Grav contains a Server-Side Request Forgery vulnerability that allows authenticated attackers to perform unauthorized requests by exploiting unrestricted curl protocols.
The wger fitness manager application suffers from an improper privilege management vulnerability that allows low-privileged users to perform unauthorized administrative actions.
WWBN AVideo is affected by an OS command injection vulnerability, potentially allowing unauthenticated attackers to execute arbitrary commands on the underlying system.
BigBlueButton is affected by a vulnerability involving the use of insufficiently random values, which may allow an authenticated user to bypass security controls.
BigBlueButton is affected by an improper access control vulnerability, which may allow an authenticated user to perform unauthorized actions within the virtual classroom.
AVideo versions 29.0 and earlier are susceptible to an OS command injection vulnerability in the listffmpegprocesses function, which allows unauthenticated attackers to execute arbitrary commands.
AVideo versions 29.0 and earlier contain an OS command injection vulnerability in the ffmpeg-json.php file, enabling unauthenticated attackers to execute arbitrary commands.
Keycloak versions 26.5.0 up to 26.5.3 are affected by an improper access control vulnerability, which allows authenticated users to perform unauthorized actions.
Better-auth contains race condition vulnerabilities, specifically CWE-362 and CWE-367, which may allow authenticated users to compromise authentication and authorization integrity.
A pre-authentication integer overflow in the unflatten() function of the MikroTik RouterOS libumsg.so library allows remote attackers to cause a denial of service.