Recent Advisories

Severity ID Title Vendor Product Date Type
NONE MALWAREBYTES:1F...

AI: Threat, tool, or both?_MALWAREBYTES:1F21720CD2F6CA27FE6A263AF1F63974

Public attitudes toward Artificial Intelligence (AI) are changing, and we wanted to understand why. A recent Pew Research survey found that about ...

N/A N/A MALWAREBYTES
CRITICAL 9.8 THN:B290527C461...

Hackers Exploit Critical Everest Forms Pro WordPress Plugin Flaw to Take Over Sites_THN:B290527C461D0B41AF1634957218991E

![](https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEjgKOwHRwFSrcOI7vBYVGbebtc3DwR3w7SYc9l7FUXp1yXc_N2MbNNlEXtfRjVneU4wz2YB8PqC_k54o_6ZpB...

N/A N/A THN
NONE THN:BA671EB286B...

FIFA World Cup 2026 Scams Are Already Live: Fake Sites, Banking Malware, and Stolen Logins_THN:BA671EB286BFAB25B4ED3DAF0142200F

![](https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEjMkj_adwzUUFP7yWyIFVKIKKQGDjqfvPuxKoR4mrrJ_SX3EACoJ3toLV3ZkYmePeA-nKWWfVC-90aOa5yjep...

N/A N/A THN
NONE THN:51F8DAC1E19...

PCPJack Hijacks 230 AWS, Google Cloud, and Azure Servers for Covert SMTP Relay Network_THN:51F8DAC1E193E414EB3FF79AC2684016

![](https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEibu0mX9Tusu3siXFJzPskfA1ZYZ2OdRJTegsJFkffBc9cBBPGWguTUAI3PPAaFy-WIjziA9PIrMrZNVuFVNm...

N/A N/A THN
MEDIUM 6.5 MS:CVE-2026-47655

Microsoft Graph Information Disclosure Vulnerability_MS:CVE-2026-47655

Exposure of sensitive information to an unauthorized actor in Microsoft Graph allows an authorized attacker to disclose information over a network.

N/A N/A MSCVE
MEDIUM 6.5 MS:CVE-2026-42824

M365 Copilot Information Disclosure Vulnerability_MS:CVE-2026-42824

Improper neutralization of special elements used in a command ('command injection') in M365 Copilot allows an unauthorized attacker to disclose inf...

N/A N/A MSCVE
MEDIUM 6.5 MS:CVE-2026-47644

Copilot Chat (Microsoft Edge) Information Disclosure Vulnerability_MS:CVE-2026-47644

Improper neutralization of special elements in output used by a downstream component ('injection') in Copilot Chat (Microsoft Edge) allows an unaut...

N/A N/A MSCVE
CRITICAL 10 MS:CVE-2026-48567

Azure HorizonDB Elevation of Privilege Vulnerability_MS:CVE-2026-48567

Authentication bypass by spoofing in Azure HorizonDB allows an unauthorized attacker to elevate privileges over a network.

N/A N/A MSCVE
HIGH 7.7 MS:CVE-2026-45497

Microsoft M365 Copilot Remote Code Execution Vulnerability_MS:CVE-2026-45497

Improper neutralization of special elements used in a command ('command injection') in Microsoft Copilot allows an authorized attacker to execute c...

N/A N/A MSCVE
CRITICAL 9.1 MS:CVE-2026-48579

Microsoft Exchange Online Information Disclosure Vulnerability_MS:CVE-2026-48579

Improper authorization in Microsoft Exchange Online allows an unauthorized attacker to disclose information over a network.

N/A N/A MSCVE