CIRCLE WITH A DOT

Your browser does not seem to support JavaScript. As a result, your viewing experience will be diminished, and you have been placed in read-only mode.

Please download a browser that supports JavaScript, or enable it if it's disabled (i.e. NoScript).

O

🔥 CRITICAL: CVE-2026-6644 in ASUSTOR ADM PPTP VPN Clients (4.1.0 – 5.1.2.REO1) enables admin OS command injection (CVSS 9.4).
Watching Ignoring Scheduled Pinned Locked Moved Uncategorized offseq asustor vuln rce
1

1

0 Votes

1 Posts

0 Views

O

CRITICAL: CVE-2026-6644 in ASUSTOR ADM PPTP VPN Clients (4.1.0 – 5.1.2.REO1) enables admin OS command injection (CVSS 9.4). Restrict admin access & monitor for patches. Full compromise risk. Details: https://radar.offseq.com/threat/cve-2026-6644-cwe-78-improper-neutralization-of-sp-fee0276d #OffSeq #ASUSTOR #Vuln #RCE
O

🚩 H3C Magic B1 devices ≤100R004 hit by HIGH severity buffer overflow (CVE-2026-6581).
Watching Ignoring Scheduled Pinned Locked Moved Uncategorized offseq vuln infosec
1

1

0 Votes

1 Posts

0 Views

O

H3C Magic B1 devices ≤100R004 hit by HIGH severity buffer overflow (CVE-2026-6581). Public exploit code out, no vendor patch yet. Restrict management interface access & monitor /goform/aspForm activity. Details: https://radar.offseq.com/threat/cve-2026-6581-buffer-overflow-in-h3c-magic-b1-6a61fe35 #OffSeq #Vuln #InfoSec
O

🚩 SSRF alert: CVE-2026-6573 in PHPEMS 11.0 (MEDIUM, CVSS 5.3) affects /app/exam/controller/exams.master.php via uploadfile argument.
Watching Ignoring Scheduled Pinned Locked Moved Uncategorized offseq phpems ssrf vuln
1

1

0 Votes

1 Posts

0 Views

O

SSRF alert: CVE-2026-6573 in PHPEMS 11.0 (MEDIUM, CVSS 5.3) affects /app/exam/controller/exams.master.php via uploadfile argument. Exploit is public — review exposure! https://radar.offseq.com/threat/cve-2026-6573-server-side-request-forgery-in-phpem-e98897b9 #OffSeq #PHPEMS #SSRF #Vuln
O

🔥 HIGH severity: CVE-2026-6518 affects niteo CMP – Coming Soon & Maintenance Plugin (≤4.1.16).
Watching Ignoring Scheduled Pinned Locked Moved Uncategorized offseq wordpress rce vuln
1

1

0 Votes

1 Posts

0 Views

O

HIGH severity: CVE-2026-6518 affects niteo CMP – Coming Soon & Maintenance Plugin (≤4.1.16). Authenticated Admins can trigger RCE via malicious ZIP uploads. No patch yet — restrict admin access & monitor logs. More: https://radar.offseq.com/threat/cve-2026-6518-cwe-434-unrestricted-upload-of-file--f3d41796 #OffSeq #WordPress #RCE #Vuln
O

🚨 CRITICAL SQL injection (CVE-2026-37749) in CodeAstro Simple Attendance Management System v1.0: Remote unauthenticated attackers can bypass authentication via index.php.
Watching Ignoring Scheduled Pinned Locked Moved Uncategorized offseq sqli infosec
1

1

0 Votes

1 Posts

0 Views

O

CRITICAL SQL injection (CVE-2026-37749) in CodeAstro Simple Attendance Management System v1.0: Remote unauthenticated attackers can bypass authentication via index.php. Restrict access & deploy WAFs until a patch arrives. https://radar.offseq.com/threat/cve-2026-37749-na-c4c6e5dc #OffSeq #SQLi #Infosec
O

🚨 CRITICAL: Cisco patches Webex & ISE vulnerabilities allowing remote user impersonation & OS command execution.
Watching Ignoring Scheduled Pinned Locked Moved Uncategorized offseq cisco webex ise infosec
1

1

0 Votes

1 Posts

1 Views

O

CRITICAL: Cisco patches Webex & ISE vulnerabilities allowing remote user impersonation & OS command execution. No exploits in the wild yet. Admins: check Cisco advisories & update now! https://radar.offseq.com/threat/cisco-patches-critical-vulnerabilities-in-webex-is-37a04699 #OffSeq #Cisco #Webex #ISE #Infosec #Vuln
O

⚠️ CRITICAL: NuGetGallery improper input validation (CVE-2026-39399, CVSS 9.6) allows crafted
Watching Ignoring Scheduled Pinned Locked Moved Uncategorized offseq nuget vuln infosec
1

1

0 Votes

1 Posts

3 Views

O

️ CRITICAL: NuGetGallery improper input validation (CVE-2026-39399, CVSS 9.6) allows crafted .nuspec files to trigger RCE & arbitrary blob writes. Update to commit 0e80f87628349207cdcaf55358491f8a6f1ca276. Details: https://radar.offseq.com/threat/cve-2026-39399-cwe-20-improper-input-validation-in-f5d85126 #OffSeq #NuGet #Vuln #infosec

CIRCLE WITH A DOT

🔥 CRITICAL: CVE-2026-6644 in ASUSTOR ADM PPTP VPN Clients (4.1.0 – 5.1.2.REO1) enables admin OS command injection (CVSS 9.4).

🚩 H3C Magic B1 devices ≤100R004 hit by HIGH severity buffer overflow (CVE-2026-6581).

🚩 SSRF alert: CVE-2026-6573 in PHPEMS 11.0 (MEDIUM, CVSS 5.3) affects /app/exam/controller/exams.master.php via uploadfile argument.

🔥 HIGH severity: CVE-2026-6518 affects niteo CMP – Coming Soon &amp; Maintenance Plugin (≤4.1.16).

🚨 CRITICAL SQL injection (CVE-2026-37749) in CodeAstro Simple Attendance Management System v1.0: Remote unauthenticated attackers can bypass authentication via index.php.

🚨 CRITICAL: Cisco patches Webex &amp; ISE vulnerabilities allowing remote user impersonation &amp; OS command execution.

⚠️ CRITICAL: NuGetGallery improper input validation (CVE-2026-39399, CVSS 9.6) allows crafted

🔥 HIGH severity: CVE-2026-6518 affects niteo CMP – Coming Soon & Maintenance Plugin (≤4.1.16).

🚨 CRITICAL: Cisco patches Webex & ISE vulnerabilities allowing remote user impersonation & OS command execution.