Recent Advisories

Severity ID Title Vendor Product Date Type
CRITICAL 9.6 CVE-2026-48582

Microsoft Exchange Online Elevation of Privilege Vulnerability_CVE-2026-48582

{“lastseen”:””,”description”:””,”published”:”2026-06-19T20:29:41.615Z”,&#82...

Microsoft Microsoft Exchange Online - CVE
HIGH 8.8 CVE-2026-47645

Microsoft 365 Copilot’s Business Chat Elevation of Privilege Vulnerability_CVE-2026-47645

{“lastseen”:””,”description”:””,”published”:”2026-06-19T20:29:42.232Z”,&#82...

Microsoft Microsoft 365 Copilot - CVE
CRITICAL 10 CVE-2026-45480

Azure Active Directory Elevation of Privilege Vulnerability_CVE-2026-45480

{“lastseen”:””,”description”:””,”published”:”2026-06-19T20:27:46.192Z”,&#82...

Microsoft Azure Active Directory - CVE
MEDIUM 6.5 CVE-2026-42895

Microsoft Copilot Tampering Vulnerability_CVE-2026-42895

{“lastseen”:””,”description”:””,”published”:”2026-06-19T20:27:46.785Z”,&#82...

Microsoft Microsoft 365 Copilot - CVE
HIGH 8.8 CVE-2026-32208

Microsoft Edge (Chromium-based) Spoofing Vulnerability_CVE-2026-32208

{“lastseen”:””,”description”:””,”published”:”2026-06-19T20:27:45.083Z”,&#82...

Microsoft Microsoft Edge (Chromium-based) - CVE
CRITICAL 9.9 44B81EDD-C298-

Exploit for Execution with Unnecessary Privileges in Percona Monitoring_And_Management_44B81EDD-C298-593E-9EA3-5225EF88AC36

CVE-2026-25212 POC for CVE-2026-25212...

N/A N/A GITHUBEXPLOIT
NONE 06A48C34-3736-

ARES_06A48C34-3736-5F41-A155-BAA9C3EE3639

Ares — AI Penetration Testing Engine Autonomous AI pentesting: recon → exploitation → structured report. Zero external dependencies. Zero cloud LLM...

N/A N/A GITHUBEXPLOIT
NONE MSF:EXPLOIT-MULTI-

Joplin Plugin Persistence_MSF:EXPLOIT-MULTI-PERSISTENCE-JOPLIN_PLUGIN-

This module installs a malicious Joplin plugin .jpl into the target's Joplin plugin directory. The plugin executes the payload each time Joplin is ...

N/A N/A METASPLOIT
NONE MSF:AUXILIARY-SERVER-

Quectel Cellular Modem Pivot (Serial AT)_MSF:AUXILIARY-SERVER-QUECTEL_MODEM-

Opens a serial connection to a Quectel cellular modem and registers it as a 'modem' session capable of network pivoting. The Quectel modems have a ...

N/A N/A METASPLOIT
CRITICAL 10 FF7344F1-411D-

Exploit for Deserialization of Untrusted Data in Facebook React_FF7344F1-411D-55F1-B276-7221215B98DB

CVE-2025-55182 — React2Shell Unauthenticated RCE in React Server Components Author: TYehan --- TL;DR A single unauthenticated HTTP request can exec...

N/A N/A GITHUBEXPLOIT