Aggregator

CVE-2026-0231 | Palo Alto Cortex XDR Broker VM up to 30.0.48 Cortex UI exposure of sensitive system information to an unauthorized control sphere (EUVD-2026-11251)

VulDB Recent Entries
1 week 3 days ago
A vulnerability described as problematic has been identified in Palo Alto Cortex XDR Broker VM up to 30.0.48. The affected element is an unknown function of the component Cortex UI. Executing a manipulation can lead to exposure of sensitive system information to an unauthorized control sphere. This vulnerability appears as CVE-2026-0231. The attack requires local access. There is no available exploit. Upgrading the affected component is recommended.
vuldb.com

CVE-2026-31866 | open-feature flagd up to 0.14.1 Endpoint /ofrep/v1/evaluate/ allocation of resources (GHSA-rmrf-g9r3-73pm)

VulDB Recent Entries
1 week 3 days ago
A vulnerability marked as problematic has been reported in open-feature flagd up to 0.14.1. Impacted is an unknown function of the file /ofrep/v1/evaluate/ of the component Endpoint. Performing a manipulation results in allocation of resources. This vulnerability is reported as CVE-2026-31866. The attack is possible to be carried out remotely. No exploit exists. It is suggested to upgrade the affected component.
vuldb.com

CVE-2026-31840 | parse-community parse-server up to 8.6.27/9.0.0 9.6.0-alpha.1 Query Parameter sql injection (GHSA-qpr4-jrj4-6f27)

VulDB Recent Entries
1 week 3 days ago
A vulnerability labeled as critical has been found in parse-community parse-server up to 8.6.27/9.0.0 9.6.0-alpha.1. This issue affects some unknown processing of the component Query Parameter Handler. Such manipulation leads to sql injection. This vulnerability is documented as CVE-2026-31840. The attack can be executed remotely. There is not any exploit available. The affected component should be upgraded.
vuldb.com

CVE-2026-31871 | parse-community parse-server up to 8.6.30/9.0.0 9.6.0-alpha.4 Parse Server REST API sql injection (GHSA-gqpp-xgvh-9h7h)

VulDB Recent Entries
1 week 3 days ago
A vulnerability identified as critical has been detected in parse-community parse-server up to 8.6.30/9.0.0 9.6.0-alpha.4. This vulnerability affects unknown code of the component Parse Server REST API. This manipulation causes sql injection. This vulnerability is registered as CVE-2026-31871. Remote exploitation of the attack is possible. No exploit is available. You should upgrade the affected component.
vuldb.com

CVE-2026-31856 | parse-community parse-server up to 8.6.28/9.0.0 9.6.0-alpha.2 REST API sql injection (GHSA-q3vj-96h2-gwvg)

VulDB Recent Entries
1 week 3 days ago
A vulnerability categorized as critical has been discovered in parse-community parse-server up to 8.6.28/9.0.0 9.6.0-alpha.2. This affects an unknown part of the component REST API. The manipulation results in sql injection. This vulnerability is cataloged as CVE-2026-31856. The attack may be launched remotely. There is no exploit available. It is advisable to upgrade the affected component.
vuldb.com

CVE-2026-31852 | Jellyfin GitHub Action code-quality.yml privileges management (GHSA-7qhm-2m45-7fmh / EUVD-2026-11242)

VulDB Recent Entries
1 week 3 days ago
A vulnerability was found in Jellyfin. It has been rated as critical. Affected by this issue is some unknown functionality of the file code-quality.yml of the component GitHub Action Handler. The manipulation leads to improper privilege management. This vulnerability is listed as CVE-2026-31852. The attack may be initiated remotely. There is no available exploit. To fix this issue, it is recommended to deploy a patch.
vuldb.com

CVE-2026-31872 | parse-community parse-server up to 8.6.31/9.0.0 9.6.0-alpha.5 protectedFields sort access control (GHSA-r2m8-pxm9-9c4g)

VulDB Recent Entries
1 week 3 days ago
A vulnerability was found in parse-community parse-server up to 8.6.31/9.0.0 9.6.0-alpha.5. It has been declared as critical. Affected by this vulnerability is the function protectedFields. Executing a manipulation of the argument sort can lead to improper access controls. This vulnerability is tracked as CVE-2026-31872. The attack can be launched remotely. No exploit exists. It is recommended to upgrade the affected component.
vuldb.com

ShinyHunters claims new campaign targeting Salesforce Experience Cloud sites

Help Net Security
1 week 3 days ago

Salesforce customers have, once again, been targeted by the ShinyHunters group – or, at least, it’s what the group claims. Attackers modified and abused benign tool On Saturday, Saleforce confirmed that its security team has identified an attack campaign by unnamed malicious actors looking to access customers’ data. The attackers are not leveraging a vulnerability in the Salesforce platform, the company said, but are using a modified version of the open-source tool Aura Inspector – … More →

The post ShinyHunters claims new campaign targeting Salesforce Experience Cloud sites appeared first on Help Net Security.

Zeljka Zorz

Stretching Cyber Resources in Rural Healthcare

DataBreachToday.com
1 week 3 days ago
Rural hospitals and clinics continue to struggle with a lack of cyber resources but a federal grant program set to provide $50 billion worth of funding across all 50 states could hopefully help lessen some of the pain, said Jim Roeder, VP of IT at Lakewood Health System in Minnesota.

Medical Device Concerns for a Post-Quantum World

DataBreachToday.com
1 week 3 days ago
Long-life medical devices - products typically used for a decade or longer - are among the most post-quantum, cryptographically vulnerable technologies in healthcare, said Joern Lubadel, global head of product security at German-based medical device and healthcare products maker B. Braun.

How US Ransomware Policy Aims to Break Global Crime Networks

DataBreachToday.com
1 week 3 days ago
Ex-FBI Leader Cynthia Kaiser on Sanctions, Ecosystem Disruption, Stronger Policies
U.S. cyber policy now treats ransomware gangs and fraud networks as transnational criminal organizations. Former FBI cyber leader Cynthia Kaiser explains how sanctions, infrastructure takedowns, and international cooperation could weaken cybercrime ecosystems and reduce attacks.

BlackSanta Malware Shuts Down Protections, Targets HR and Recruiting Operations

Security Boulevard
1 week 3 days ago

Russian threat actors for more than a year have targeted HR and recruiting operations in a sophisticated phishing and infostealing campaign that includes a component, dubbed BlackSanta, that can shut down antivirus tools and EDR protections before deploying the malware that exfiltrates data, Aryaka researchers say.

The post BlackSanta Malware Shuts Down Protections, Targets HR and Recruiting Operations appeared first on Security Boulevard.

Jeffrey Burt

Managed ad