Aggregator

CVE-2026-25141 | orval-labs orval up to 7.20.x/8.1.x Incomplete Fix CVE-2026-23947 jsStringEscape code injection (GHSA-gch2-phqh-fg9q / EUVD-2026-5007)

Vuldb Updates
2 months ago
A vulnerability was found in orval-labs orval up to 7.20.x/8.1.x. It has been rated as critical. Affected by this issue is the function jsStringEscape of the component Incomplete Fix CVE-2026-23947. The manipulation leads to code injection. This vulnerability is listed as CVE-2026-25141. The attack may be initiated remotely. There is no available exploit. Upgrading the affected component is advised.
vuldb.com

CVE-2026-2226 | DouPHP up to 1.9 ZIP File /admin/file.php sql_filename unrestricted upload

Vuldb Updates
2 months ago
A vulnerability labeled as critical has been found in DouPHP up to 1.9. This issue affects some unknown processing of the file /admin/file.php of the component ZIP File Handler. Such manipulation of the argument sql_filename leads to unrestricted upload. This vulnerability is uniquely identified as CVE-2026-2226. The attack can be launched remotely. Moreover, an exploit is present.
vuldb.com

CVE-2025-15570 | ckolivas lrzip up to 0.651 stream.c lzma_decompress_buf use after free (Issue 262)

Vuldb Updates
2 months ago
A vulnerability was found in ckolivas lrzip up to 0.651. It has been rated as critical. This impacts the function lzma_decompress_buf of the file stream.c. Performing a manipulation results in use after free. This vulnerability is known as CVE-2025-15570. Attacking locally is a requirement. Furthermore, an exploit is available. The project was informed of the problem early through an issue report but has not responded yet.
vuldb.com

Vshell Gains Traction Among Threat Actors as an Alternative to Cobalt Strike

Cyber Security News
2 months ago

A Go-based command-and-control (C2) framework originally marketed within Chinese-speaking offensive security communities has been quietly expanding its reach, drawing growing attention from threat actors seeking flexible and cost-effective alternatives to expensive commercial tools. Known as Vshell, the tool has evolved well beyond its early roots as a basic remote access tool (RAT) and now poses […]

The post Vshell Gains Traction Among Threat Actors as an Alternative to Cobalt Strike appeared first on Cyber Security News.

Tushar Subhra Dutta

New Dohdoor Malware Attacking Schools and Health Care Sectors in U.S. via Multi-Stage Attack Chain

Cyber Security News
2 months ago

A newly discovered malware campaign has been quietly targeting educational institutions and healthcare organizations across the United States since at least December 2025. The threat, tracked under the actor designation “UAT-10027,” deploys a previously unknown backdoor called “Dohdoor,” which uses an advanced combination of stealth techniques and multi-stage delivery to gain persistent access into victim […]

The post New Dohdoor Malware Attacking Schools and Health Care Sectors in U.S. via Multi-Stage Attack Chain appeared first on Cyber Security News.

Tushar Subhra Dutta

DoJ Seizes $61 Million in Tether Linked to Pig Butchering Crypto Scams

The Hackers News
2 months ago
The U.S. Department of Justice (DoJ) this week announced the seizure of $61 million worth of Tether that were allegedly associated with bogus cryptocurrency schemes known as pig butchering. The confiscated funds were traced to cryptocurrency addresses used for the laundering of criminally derived proceeds stolen from victims of cryptocurrency investment scams, the department added. "Criminal
The Hacker News

CVE-2026-26938 | Elastic Kibana up to 9.3.0 Workflows special elements used in a template engine (WID-SEC-2026-0545)

Vuldb Updates
2 months ago
A vulnerability, which was classified as problematic, has been found in Elastic Kibana up to 9.3.0. This impacts an unknown function of the component Workflows. Performing a manipulation results in improper neutralization of special elements used in a template engine. This vulnerability is reported as CVE-2026-26938. The attack is possible to be carried out remotely. No exploit exists.
vuldb.com

Managed ad