← Dashboard

Search Threat Intelligence

Filter and explore the collected OSINT data

JSON | Markdown

Showing 751–800 of 1672 total

Severity Title Category Source Indicators Tags Published
high Malicious Artifacts Found in Official KICS Docker Repository and Code Extensions threat-intel otx 94.154.172.43 | ff7b0f114f87c674…, e1023db24a29ab02… docker hub poisoning, github actions, mcpaddon.js, credential theft, npm propagation, ci/cd compromise, canister worm, checkmarx kics, vs code extension, supply chain compromise, supply-chain 2026-04-22
medium Untangling a Linux Incident With an OpenAI Twist (Part 2) threat-intel otx CVE-2025-30406, CVE-2025-55182, CVE-2025-31151, CVE-2022-1388, CVE-2025-47812 | 62.60.246.210, 147.45.41.25 | 781c19b56fbdb172…, 3a5cb5689b6d4a97… cryptominer, repocket, botnet, linux compromise, multiple threat actors, credential harvesting, systemd-logind, dnser, ai-assisted remediation, earnfm, fkkkf, cve-2025-55182, xmrig, fh8a7d7m, data exfiltration, react2shell, information stealer, anti-analysis techniques, agent tesla, powershell, chm files, compiled html help, ftp exfiltration, javascript obfuscation, codex ai, multi-actor, living-off-the-land, edr evasion, credential theft, monero mining, phishing 2026-04-22
high CVE-2026-41455 — WeKan before 8.35 contains a server-side request forgery vulnerability in webhook integration URL ha… vulnerability nvd CVE-2026-41455 2026-04-22
high CVE-2026-41454 — WeKan before 8.35 contains a missing authorization vulnerability in the Integration REST API endpoin… vulnerability nvd CVE-2026-41454 2026-04-22
high CVE-2026-41175 — Statamic is a Laravel and Git powered content management system (CMS). Prior to versions 5.73.20 and… vulnerability nvd CVE-2026-41175 2026-04-22
unknown CVE-2026-41171 — Squidex is an open source headless content management system and content management hub. Versions pr… vulnerability nvd CVE-2026-41171 2026-04-22
medium CVE-2026-41170 — Squidex is an open source headless content management system and content management hub. Prior to ve… vulnerability nvd CVE-2026-41170, CVE-2026-41172, CVE-2026-41177 2026-04-22
high CVE-2026-40517 — radare2 prior to 6.1.4 contains a command injection vulnerability in the PDB parser's print_gvars()… vulnerability nvd CVE-2026-40517 2026-04-22
medium CVE-2026-41168 — pypdf is a free and open-source pure-python PDF library. An attacker who uses a vulnerability presen… vulnerability nvd CVE-2026-41168, CVE-2026-41312, CVE-2026-41313, CVE-2026-41314 2026-04-22
critical CVE-2026-41167 — Jellystat is a free and open source Statistics App for Jellyfin. Prior to version 1.1.10, multiple A… vulnerability nvd CVE-2026-41167 rce 2026-04-22
high CVE-2026-41166 — OpenRemote is an open-source internet-of-things platform. Prior to version 1.22.1, a user who has `w… vulnerability nvd CVE-2026-41166 2026-04-22
unknown CVE-2026-41134 — Kiota is an OpenAPI based HTTP Client code generator. Versions prior to 1.31.1 are affected by a cod… vulnerability nvd CVE-2026-41134 2026-04-22
high CVE-2026-40937 — RustFS is a distributed object storage system built in Rust. Prior to 1.0.0-alpha.94, all four notif… vulnerability nvd CVE-2026-40937 2026-04-22
high CVE-2026-40882 — OpenRemote is an open-source internet-of-things platform. Prior to version 1.22.0, the Velbus asset… vulnerability nvd CVE-2026-40882 2026-04-22
unknown CVE-2026-3837 — An authenticated attacker can persist crafted values in multiple field types and trigger client-side… vulnerability nvd CVE-2026-3837 2026-04-22
medium CVE-2026-34067 — nimiq-transaction provides the transaction primitive to be used in Nimiq's Rust implementation. Prio… vulnerability nvd CVE-2026-34067, CVE-2026-34068 2026-04-22
high CVE-2026-33733 — EspoCRM is an open source customer relationship management application. Prior to version 9.3.4, the… vulnerability nvd CVE-2026-33733 2026-04-22
critical CVE-2026-33656 — EspoCRM is an open source customer relationship management application. Prior to version 9.3.4, Espo… vulnerability nvd CVE-2026-33656 2026-04-22
critical 'The Gentlemen' Rapidly Rises to Ransomware Prominence news general-news ransomware 2026-04-22
unknown CVE-2026-6019 — http.cookies.Morsel.js_output() returns an inline <script> snippet and only escapes " for JavaScript… vulnerability nvd CVE-2026-6019 2026-04-22
unknown CVE-2026-3673 — An authenticated attacker can store a crafted tag value in _user_tags and trigger JavaScript executi… vulnerability nvd CVE-2026-3673 2026-04-22
medium CVE-2026-34066 — nimiq-blockchain provides persistent block storage for Nimiq's Rust implementation. Prior to version… vulnerability nvd CVE-2026-34066 2026-04-22
high CVE-2026-34065 — nimiq-primitives contains primitives (e.g., block, account, transaction) to be used in Nimiq's Rust… vulnerability nvd CVE-2026-34065 2026-04-22
medium CVE-2026-34064 — nimiq-account contains account primitives to be used in Nimiq's Rust implementation. Prior to versio… vulnerability nvd CVE-2026-34064 2026-04-22
high CVE-2026-34063 — Nimiq's network-libp2p is a Nimiq network implementation based on libp2p. Prior to version 1.3.0, `n… vulnerability nvd CVE-2026-34063 2026-04-22
medium CVE-2026-34062 — nimiq-libp2p is a Nimiq network implementation based on libp2p. Prior to version 1.3.0, `MessageCode… vulnerability nvd CVE-2026-34062 2026-04-22
critical CVE-2026-33471 — nimiq-block contains block primitives to be used in Nimiq's Rust implementation. `SkipBlockProof::ve… vulnerability nvd CVE-2026-33471 2026-04-22
medium CVE-2026-41469 — Beghelli Sicuro24 SicuroWeb does not enforce a Content Security Policy, allowing unrestricted loadin… vulnerability nvd CVE-2026-41469 2026-04-22
high CVE-2026-41468 — Beghelli Sicuro24 SicuroWeb embeds AngularJS 1.5.2, an end-of-life component containing known sandbo… vulnerability nvd CVE-2026-41468 2026-04-22
medium CVE-2026-41459 — Xerte Online Toolkits versions 3.15 and earlier contain an information disclosure vulnerability that… vulnerability nvd CVE-2026-41459 2026-04-22
critical CVE-2026-34415 — Xerte Online Toolkits versions 3.15 and earlier contain an incomplete input validation vulnerability… vulnerability nvd CVE-2026-34415 2026-04-22
high CVE-2026-34414 — Xerte Online Toolkits versions 3.15 and earlier contain a relative path traversal vulnerability in t… vulnerability nvd CVE-2026-34414 rce 2026-04-22
high CVE-2026-34413 — Xerte Online Toolkits versions 3.15 and earlier contain a missing authentication vulnerability in th… vulnerability nvd CVE-2026-34413 rce 2026-04-22
medium CVE-2026-28950 — A logging issue was addressed with improved data redaction. This issue is fixed in iOS 18.7.8 and iP… vulnerability nvd CVE-2026-28950 2026-04-22
high CVE-2026-26354 — Dell PowerProtect Data Domain with Domain Operating System (DD OS) of Feature Release versions 7.7.1… vulnerability nvd CVE-2026-26354 2026-04-22
high Malicious KICS Docker Images and VS Code Extensions Hit Checkmarx Supply Chain news general-news supply-chain 2026-04-22
high Self-Propagating Supply Chain Worm Hijacks npm Packages to Steal Developer Tokens news general-news supply-chain 2026-04-22
medium CVE-2026-6515 — GitLab has remediated an issue in GitLab CE/EE affecting all versions from 18.2 before 18.9.6, 18.10… vulnerability nvd CVE-2026-6515 2026-04-22
high CVE-2026-5816 — GitLab has remediated an issue in GitLab CE/EE affecting all versions from 18.10 before 18.10.4 and… vulnerability nvd CVE-2026-5816 2026-04-22
high CVE-2026-5262 — GitLab has remediated an issue in GitLab CE/EE affecting all versions from 16.1.0 before 18.9.6, 18.… vulnerability nvd CVE-2026-5262 2026-04-22
high CVE-2026-4922 — GitLab has remediated an issue in GitLab CE/EE affecting all versions from 17.0 before 18.9.6, 18.10… vulnerability nvd CVE-2026-4922 2026-04-22
medium CVE-2026-3254 — GitLab has remediated an issue in GitLab CE/EE affecting all versions from 18.11 before 18.11.1 that… vulnerability nvd CVE-2026-3254, CVE-2026-5377 2026-04-22
unknown CVE-2026-35382 — Rejected reason: Voluntarily withdrawn vulnerability nvd CVE-2026-35382 2026-04-22
low CVE-2026-35381 — A logic error in the cut utility of uutils coreutils causes the utility to ignore the -s (only-delim… vulnerability nvd CVE-2026-35381 2026-04-22
medium CVE-2026-35380 — A logic error in the cut utility of uutils coreutils causes the program to incorrectly interpret the… vulnerability nvd CVE-2026-35380 2026-04-22
low CVE-2026-35379 — A logic error in the tr utility of uutils coreutils causes the program to incorrectly define the [:g… vulnerability nvd CVE-2026-35379 2026-04-22
low CVE-2026-35378 — A logic error in the expr utility of uutils coreutils causes the program to evaluate parenthesized s… vulnerability nvd CVE-2026-35378 2026-04-22
low CVE-2026-35377 — A logic error in the env utility of uutils coreutils causes a failure to correctly parse command-lin… vulnerability nvd CVE-2026-35377 2026-04-22
medium CVE-2026-35376 — A Time-of-Check to Time-of-Use (TOCTOU) vulnerability exists in the chcon utility of uutils coreutil… vulnerability nvd CVE-2026-35376 2026-04-22
low CVE-2026-35375 — A logic error in the split utility of uutils coreutils causes the corruption of output filenames whe… vulnerability nvd CVE-2026-35375 2026-04-22