Skip to main content
CVE-2026-2577 CRITICAL Act Now

Nanobot WhatsApp bridge binds its WebSocket server to all interfaces (0.0.0.0) without authentication (CVSS 10.0), exposing the WhatsApp bridge to remote access.

NVD GitHub
CVSS 3.1
10.0
EPSS
0.1%
CVE-2026-2439 CRITICAL PATCH Act Now

Perl Concierge::Sessions 0.8.1-0.8.4 generates insecure session IDs using weak randomness, enabling session prediction.

Information Disclosure Concierge
NVD GitHub
CVSS 3.1
9.8
EPSS
0.1%
CVE-2026-2550 CRITICAL Act Now

ipTIME A6004MX router has an access control vulnerability in VPN client configuration enabling unauthorized network access.

File Upload Authentication Bypass
NVD GitHub VulDB
CVSS 3.1
9.8
EPSS
0.1%
CVE-2025-15578 CRITICAL Act Now

Perl Maypole 2.10-2.13 generates session IDs insecurely using a weak PRNG, enabling session prediction and hijacking.

Information Disclosure Maypole
NVD
CVSS 3.1
9.8
EPSS
0.1%

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy