Aggregator

A vulnerability labeled as problematic has been found in Rack up to 3.1.20/3.2.5. This issue affects the function Rack::Multipart. Executing a manipulation can lead to inefficient algorithmic complexity. This vulnerability is tracked as CVE-2026-34827. The attack can be launched remotely. No exploit exists. The affected component should be upgraded.

Currently trending CVE - Hype Score: 1 - LangChain is a framework for building agents and LLM-powered applications. Prior to versions 0.3.81 and 1.2.5, a serialization injection vulnerability exists in LangChain's dumps() and dumpd() functions. The functions do not escape dictionaries with 'lc' keys when serializing ...

A high-severity security bypass vulnerability in Anthropic’s Claude Code AI coding agent allows malicious actors to silently evade user-configured deny rules through a simple command-padding technique, exposing hundreds of thousands of developers to credential theft and supply chain compromise. According to Adversa, the flaw was traced to bashPermissions.ts (lines 2162–2178), stems from a performance optimization […]

The post Critical Claude Code Flaw Silently Bypasses Developer-Configured Security Rules appeared first on Cyber Security News.

Cybercriminals are launching a sophisticated new wave of attacks using fake Microsoft Teams domains. According to recent threat intelligence shared by SEAL Org, hackers are actively tricking corporate users into downloading malicious payloads by mimicking the widely used communication platform. As Microsoft Teams remains an essential tool for remote and hybrid work environments, threat actors are […]

The post Hackers Using Fake “Microsoft Teams” Domains to Attack Users Via Malicious Payload appeared first on Cyber Security News.

A vulnerability was found in itsourcecode Construction Management System 1.0. It has been classified as critical. Affected is an unknown function of the file /borrowed_equip_report.php of the component Parameter Handler. The manipulation of the argument Home leads to sql injection. This vulnerability is traded as CVE-2026-5620. It is possible to initiate the attack remotely. Furthermore, there is an exploit available.

A vulnerability was found in ChrisChinchilla Vale-MCP up to 0.1.0. It has been declared as critical. Affected by this vulnerability is an unknown functionality of the file src/index.ts of the component HTTP Interface. The manipulation of the argument config_path results in os command injection. This vulnerability is known as CVE-2026-5621. Attacking locally is a requirement. Furthermore, an exploit is available. The vendor was contacted early about this disclosure but did not respond in any way.

A vulnerability was found in hcengineering Huly Platform 0.7.382. It has been rated as problematic. Affected by this issue is some unknown functionality of the file foundations/core/packages/token/src/token.ts of the component JWT Token Handler. This manipulation of the argument SERVER_SECRET with the input secret causes use of hard-coded cryptographic key . This vulnerability is handled as CVE-2026-5622. The attack can be initiated remotely. Additionally, an exploit exists. The vendor was contacted early about this disclosure but did not respond in any way.

A vulnerability categorized as critical has been discovered in hcengineering Huly Platform 0.7.382. This affects an unknown part of the file server/front/src/index.ts of the component Import Endpoint. Such manipulation leads to server-side request forgery. This vulnerability is uniquely identified as CVE-2026-5623. The attack can be launched remotely. Moreover, an exploit is present. The vendor was contacted early about this disclosure but did not respond in any way.

A vulnerability identified as problematic has been detected in ProjectSend r2002. This vulnerability affects unknown code of the file upload.php. Performing a manipulation results in cross-site request forgery. This vulnerability was named CVE-2026-5624. The attack may be initiated remotely. In addition, an exploit is available. You should upgrade the affected component.

A vulnerability labeled as problematic has been found in assafelovic gpt-researcher up to 3.4.3. This issue affects some unknown processing of the file gpt_researcher/skills/researcher.py of the component WebSocket Interface. Executing a manipulation of the argument task can lead to cross site scripting. The identification of this vulnerability is CVE-2026-5625. The attack may be launched remotely. Furthermore, there is an exploit available. The project was informed of the problem early through an issue report but has not responded yet.

A vulnerability marked as critical has been reported in Belkin F9K1015 1.00.10. Impacted is the function formSetSystemSettings of the file /goform/formSetSystemSettings of the component Setting Handler. The manipulation of the argument webpage leads to stack-based buffer overflow. This vulnerability is referenced as CVE-2026-5628. Remote exploitation of the attack is possible. Furthermore, an exploit is available. The vendor was contacted early about this disclosure but did not respond in any way.

A vulnerability described as critical has been identified in Belkin F9K1015 1.00.10. The affected element is the function formSetFirewall of the file /goform/formSetFirewall. The manipulation of the argument webpage results in stack-based buffer overflow. This vulnerability is identified as CVE-2026-5629. The attack can be executed remotely. Additionally, an exploit exists. The vendor was contacted early about this disclosure but did not respond in any way.

A vulnerability, which was classified as critical, has been found in assafelovic gpt-researcher up to 3.4.3. This impacts an unknown function of the component HTTP REST API Endpoint. Performing a manipulation results in missing authentication. This vulnerability is cataloged as CVE-2026-5632. It is possible to initiate the attack remotely. Furthermore, there is an exploit available. The project was informed of the problem early through an issue report but has not responded yet.

A vulnerability identified as critical has been detected in Linux Kernel. This affects an unknown function of the component xattr. The manipulation leads to uncontrolled memory allocation. This vulnerability is documented as CVE-2024-14027. The attack needs to be performed locally. There is not any exploit available. It is suggested to install a patch to address this issue.

A vulnerability, which was classified as critical, was found in assafelovic gpt-researcher up to 3.4.3. Affected is an unknown function of the component ws Endpoint. Executing a manipulation of the argument source_urls can lead to server-side request forgery. This vulnerability is registered as CVE-2026-5633. It is possible to launch the attack remotely. Furthermore, an exploit is available. The project was informed of the problem early through an issue report but has not responded yet.

Сбой 3 апреля затронул СБП и крупнейшие банки РФ на фоне заявлений о борьбе с VPN.

好的，我现在需要帮用户总结一篇文章，控制在100字以内，而且不需要用“文章内容总结”这样的开头。首先，我得仔细阅读文章，理解其主要内容。 文章主要讨论开放重定向（open redirect）被威胁行为者滥用的情况。虽然这种漏洞本身不算高风险，但作者指出它常被用于钓鱼攻击。链接指向合法域名，容易骗过受害者和简单的检测机制。作者还提到尽管OWASP不再列出它为顶级漏洞，但攻击者从未停止利用它。 接下来，作者分析了2026年第一季度的钓鱼邮件数据，发现有超过21%的邮件使用了重定向。这些重定向机制多种多样，包括半开放、完全开放以及广告或跟踪系统中的重定向。特别是像Google这样的半开放重定向机制，虽然需要特定令牌，但这些令牌通常可重复使用且有效期长，容易被滥用。 最后，作者建议开发者确保自己的应用不暴露易被滥用的重定向端点，并在必要时监控和限制使用。 现在我需要将这些要点浓缩到100字以内。重点包括：开放重定向被滥用、用于钓鱼、合法域名欺骗、检测困难、攻击者持续利用、数据统计结果、机制多样性以及防范建议。 可能的结构：开放重定向被威胁行为者滥用用于钓鱼攻击；链接指向合法域名欺骗受害者；攻击者持续利用；统计数据显示其常见性；机制多样；建议开发者防范。 现在试着组织语言： “文章探讨了开放重定向被威胁行为者滥用的情况。虽然这种漏洞本身不算高风险，但常用于钓鱼攻击。链接指向合法域名欺骗受害者和检测机制。尽管OWASP不再列为顶级漏洞，攻击者仍持续利用。数据显示2026年第一季度有超过21%的钓鱼邮件使用了此类机制。建议开发者确保应用不暴露易被滥用的端点。” 检查字数：大约100字左右。 文章探讨了开放重定向被威胁行为者滥用的情况。虽然这种漏洞本身不算高风险，但常用于钓鱼攻击。链接指向合法域名欺骗受害者和检测机制。尽管OWASP不再列为顶级漏洞，攻击者仍持续利用。数据显示2026年第一季度有超过21%的钓鱼邮件使用了此类机制。建议开发者确保应用不暴露易被滥用的端点。

A vulnerability identified as problematic has been detected in vim. Impacted is an unknown function. Performing a manipulation results in use of out-of-range pointer offset. This vulnerability is identified as CVE-2022-1420. The attack is only possible with local access. There is not any exploit available. You should upgrade the affected component.

A vulnerability labeled as critical has been found in vim up to 8.1. This issue affects the function skip_range. Such manipulation leads to heap-based buffer overflow. This vulnerability is traded as CVE-2022-1381. The attack may be launched remotely. There is no exploit available. The affected component should be upgraded.

A vulnerability has been found in Libtiffs and classified as critical. Affected by this issue is the function main of the file tiffcp.c of the component TIFF File Handler. This manipulation causes stack-based buffer overflow. This vulnerability is tracked as CVE-2022-1355. The attack is possible to be carried out remotely. No exploit exists. Applying a patch is the recommended action to fix this issue.