Skip to main content
CVE-2026-24858 CRITICAL KEV THREAT CISA Emergency

Fortinet FortiAnalyzer and FortiManager contain a critical authentication bypass vulnerability (CVE-2026-24858, CVSS 9.8) that allows unauthenticated remote attackers to gain administrative access through an alternate authentication path. With EPSS 2.8% but KEV listing confirming active exploitation, this vulnerability threatens the security management infrastructure that organizations rely on to protect their networks.

Fortinet Authentication Bypass
NVD VulDB
CVSS 3.1
9.8
EPSS
2.8%
Threat
5.5
CVE-2026-24479 CRITICAL POC PATCH Act Now

HUSTOJ online judge has a path traversal vulnerability enabling arbitrary file access on the competition server.

Linux PHP MySQL RCE Path Traversal +1
NVD GitHub Exploit-DB VulDB
CVSS 3.1
9.8
EPSS
0.6%
CVE-2026-1470 CRITICAL POC PATCH Act Now

n8n has a fifth critical RCE vulnerability (CVSS 9.9) in the Expression evaluator, enabling code execution through crafted workflow expressions.

RCE AI / ML N8n
NVD GitHub
CVSS 3.1
9.9
EPSS
0.5%
CVE-2026-24770 CRITICAL POC PATCH Act Now

Path traversal vulnerability in RAGFlow RAG engine version 0.23.1 allows unauthenticated attackers to read arbitrary files from the server filesystem. PoC available, patch available.

RCE AI / ML Ragflow
NVD GitHub
CVSS 3.1
9.8
EPSS
0.9%
CVE-2026-22039 CRITICAL POC PATCH Act Now

Kyverno Kubernetes policy engine prior to 1.x has a privilege escalation vulnerability (CVSS 9.9) allowing policy bypass and unauthorized cluster operations.

Kubernetes Kyverno Suse
NVD GitHub VulDB
CVSS 3.1
9.9
EPSS
0.1%
CVE-2026-24740 CRITICAL POC PATCH Act Now

Critical access control flaw in Dozzle Docker log viewer allows users restricted by label filters to escape their scope and obtain an interactive root shell on out-of-scope containers. PoC available, patch in v9.0.3.

Docker Dozzle Suse
NVD GitHub
CVSS 3.1
9.9
EPSS
0.0%
CVE-2020-36948 CRITICAL POC Act Now

VestaCP 0.9.8-26 has a session management vulnerability allowing remote attackers to hijack admin sessions through the LoginAs module.

Authentication Bypass
NVD Exploit-DB
CVSS 3.1
9.8
EPSS
0.3%
CVE-2021-47900 CRITICAL POC Act Now

Gila CMS before 2.0.0 has an RFI vulnerability enabling unauthenticated RCE.

PHP RCE
NVD GitHub Exploit-DB
CVSS 3.1
9.8
EPSS
0.3%
CVE-2026-24881 CRITICAL POC PATCH Act Now

Remote code execution and denial of service in GnuPG before 2.5.17 stem from a stack-based buffer overflow in gpg-agent when it processes a crafted CMS (S/MIME) EnvelopedData message containing an oversized wrapped session key during PKDECRYPT --kem=CMS handling. Any user or service decrypting attacker-supplied S/MIME mail with a vulnerable build can be crashed, and the memory corruption may be escalated to arbitrary code execution in the gpg-agent process that custodies private keys. Publicly available exploit code exists, but the issue is not in CISA KEV and EPSS is low (0.20%, 41st percentile), indicating no confirmed widespread exploitation yet.

RCE Buffer Overflow Stack Overflow Denial Of Service Gnupg +1
NVD VulDB
CVSS 3.1
9.8
EPSS
0.2%
CVE-2025-69559 CRITICAL POC Act Now

Computer Book Store v1.0 has file upload in admin_add.php.

PHP Computer Book Store
NVD GitHub
CVSS 3.1
9.8
EPSS
0.1%
CVE-2025-69565 CRITICAL POC Act Now

Mobile Shop Management System has file upload enabling web shell deployment.

PHP Mobile Shop Management System
NVD GitHub
CVSS 3.1
9.8
EPSS
0.1%
CVE-2021-47901 CRITICAL POC Act Now

Dirsearch 0.4.1 has CSV injection in scan reports.

Code Injection
NVD GitHub Exploit-DB
CVSS 3.1
9.8
EPSS
0.1%
CVE-2020-36941 CRITICAL POC Act Now

Knockpy 4.1.1 has CSV injection in subdomain scan exports.

Code Injection Knockpy
NVD GitHub Exploit-DB VulDB
CVSS 3.1
9.8
EPSS
0.1%
CVE-2025-69563 CRITICAL POC Act Now

Mobile Shop Management System has SQL injection in ExLogin.php.

PHP SQLi Mobile Shop Management System
NVD GitHub
CVSS 3.1
9.8
EPSS
0.0%
CVE-2025-69562 CRITICAL POC Act Now

Mobile Shop Management System has SQL injection in insertmessage.php.

PHP SQLi Mobile Shop Management System
NVD GitHub
CVSS 3.1
9.8
EPSS
0.0%
CVE-2025-69564 CRITICAL POC Act Now

Mobile Shop Management System has code injection in ExAddNewUser.php.

PHP SQLi Mobile Shop Management System
NVD GitHub
CVSS 3.1
9.8
EPSS
0.0%
CVE-2020-36940 CRITICAL POC Act Now

Easy CD & DVD Cover Creator 4.13 has a buffer overflow in serial number input.

Buffer Overflow Denial Of Service
NVD Exploit-DB
CVSS 3.1
9.8
EPSS
0.0%
CVE-2026-24736 CRITICAL POC Act Now

Server-Side Request Forgery (SSRF) vulnerability in Squidex CMS webhook configuration allows authenticated administrators to make requests to internal services by specifying localhost or internal IP addresses as webhook destinations. PoC available.

SSRF Squidex
NVD GitHub
CVSS 3.1
9.1
EPSS
0.1%
CVE-2026-24811 CRITICAL PATCH Act Now

ROOT data analysis framework has an input validation vulnerability in zlib modules enabling code execution through crafted data files.

Code Injection Root
NVD GitHub
CVSS 3.1
9.8
EPSS
0.1%
CVE-2026-24872 CRITICAL Act Now

SkyFire game server has improper pointer arithmetic enabling memory corruption.

Information Disclosure
NVD GitHub
CVSS 3.1
9.8
EPSS
0.1%
CVE-2026-24830 CRITICAL Act Now

IronOS soldering iron firmware has an integer overflow vulnerability that could cause unexpected behavior in temperature control.

Integer Overflow
NVD GitHub
CVSS 3.1
9.8
EPSS
0.1%
CVE-2026-24832 CRITICAL Act Now

ixray-1.6-stcop game engine has an OOB write vulnerability.

Buffer Overflow Ix Ray Engine 1.6
NVD GitHub
CVSS 3.1
9.8
EPSS
0.1%
CVE-2026-24793 CRITICAL PATCH Act Now

A product has an out-of-bounds write from classic buffer overflow enabling remote code execution.

Buffer Overflow Azerothcore
NVD GitHub
CVSS 3.1
9.8
EPSS
0.1%
CVE-2025-21589 CRITICAL Act Now

Authentication bypass in Juniper Networks Session Smart Router and Conductor allows network-based attackers to gain administrative control without credentials. The vulnerability affects multiple versions of the routing platform used in enterprise SD-WAN deployments.

Juniper Authentication Bypass
NVD
CVSS 4.0
9.3
EPSS
0.0%
CVE-2025-68670 CRITICAL PATCH Act Now

xrdp open-source RDP server before v0.10.5 has an unauthenticated stack buffer overflow enabling remote code execution.

Buffer Overflow Stack Overflow Debian Linux Xrdp Suse
NVD GitHub
CVSS 3.1
9.1
EPSS
0.1%
CVE-2026-24874 CRITICAL Act Now

xray-monolith game mod has a type confusion vulnerability.

Buffer Overflow
NVD GitHub
CVSS 3.1
9.1
EPSS
0.0%
CVE-2026-24346 CRITICAL Act Now

EZCast Pro II v1.17478.146 uses well-known default credentials in the Admin UI enabling immediate administrative access to the wireless presentation system.

Authentication Bypass Ezcast Pro Dongle Ii Firmware
NVD
CVSS 3.1
9.1
EPSS
0.0%

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy