Recent Advisories

Severity ID Title Vendor Product Date Type
HIGH 7.4 CVE-2026-46608

Glances: XML-RPC Multi-Origin CORS Configuration Silently Falls Back to Wildcard (Incomplete Fix for CVE-2026-33533)_CVE-2026-46608

Glances is an open-source system cross-platform monitoring tool. Prior to 4.5.5, the Glances XML-RPC server (glances -s) introduced a configurable ...

nicolargo glances < 4.5.5 CVE
HIGH 7.8 CVE-2026-46607

Glances: Insecure Pickle Deserialization in Version Cache Leads to Arbitrary Code Execution_CVE-2026-46607

Glances is an open-source system cross-platform monitoring tool. Prior to 4.5.5, glances/outdated.py uses pickle.load() to read a version-check cac...

nicolargo glances < 4.5.5 CVE
HIGH 7.8 CVE-2026-46606

Glances: Command Injection via KVM/QEMU VM Domain Names in glances/plugins/vms/engines/virsh.py_CVE-2026-46606

Glances is an open-source system cross-platform monitoring tool. Prior to 4.5.5, the Glances KVM/QEMU monitoring engine (glances/plugins/vms/engine...

nicolargo glances < 4.5.5 CVE
HIGH 8.4 CVE-2026-12921

Use after free in AzeoTech DAQFactory_CVE-2026-12921

In AzeoTech DAQFactory versions 21.1 and prior, a Use After Free vulnerability can be exploited by an attacker using specially crafted .ctl files w...

AzeoTech DAQFactory CVE
HIGH 8.4 CVE-2026-12897

Out-of-bounds read in Horner Automation Cscape_CVE-2026-12897

Horner Automation Cscape versions prior to 10.2 SP3 are vulnerable to an Out-of-Bounds Read vulnerability through parsing CSP files. Successful exp...

Horner Automation Cscape CVE
NONE A34DF1A1-2F25-

pentest-agent-vs-llm-benchmark-effectiveness_A34DF1A1-2F25-5439-9D41-0DCBBBB34A45

Backbone or Backbone-Architecture? A controlled study of LLM agents on web-penetration-testing CTFs. The scaffold around the model often decides mo...

N/A N/A GITHUBEXPLOIT
HIGH 8.5 BD307E81-25CC-

Exploit for OS Command Injection in Tp-Link Tl-Wr802N_Firmware_BD307E81-25CC-59FA-B6D0-3D9C36E25857

CVE-2026-3227: TP-Link Router OS Command Injection For more Information see https://vulners.com/cve/CVE-2026-3227 A persistent, authenticated OS Co...

N/A N/A GITHUBEXPLOIT
HIGH 8.8 A8E5D800-F075-

Exploit for Path Traversal in Gogs_A8E5D800-F075-509D-A604-E092148C4F7B

CVE-2025-8110 Gogs Repository Symlink Remote Code Execution Made by oguiii --- Table of Contents - Overview - Features - Requirements - Installatio...

N/A N/A GITHUBEXPLOIT
NONE 79677E22-A5F6-

HTB-Reactor_79677E22-A5F6-55B6-A58E-255AADBB6522

No description provided...

N/A N/A GITHUBEXPLOIT
NONE HACKREAD:E85A52...

Upwind Security Brings AI Visibility to the Endpoint, Unifying Cloud and Device Security_HACKREAD:E85A523C8D964703DD4FD7C9C476F559

Upwind’s AI Sensor links endpoint activity with cloud context, helping teams track MCP connections, AI actions, identities and developer risk in on...

N/A N/A HACKREAD