Articles & Writeups

Submit Article

Community-curated external articles, writeups, and technical analysis about CVE vulnerabilities.

vulnerability.circl.lu Feb 19, 2026

MajorDoMo Multiple Critical RCE Vulnerabilities (CVE-2026-27174 to CVE-2026-27181)

Security researcher discovered eight critical vulnerabilities in MajorDoMo that were missed for over two years, including unauthenticated PHP console eval (CVE-2026-27174) via missing exit statement…

CVE-2026-27174 CVE-2026-27175 CVE-2026-27176 CVE-2026-27177 CVE-2026-27179 +2 more
POC github.com/mbanyamer Feb 21, 2026

CVE-2026-27574: OneUptime RCE via JavaScript Code Injection in Probes

CVE-2026-27574 is a critical code injection vulnerability (CVSS 9.9) in OneUptime versions before 10.0.0 that allows low-privilege authenticated users to achieve remote code execution by escaping the…

CVE-2026-27574
POC github.com/0xBlackash Mar 05, 2026

CVE-2026-28289 Mail2Shell: Zero-Click RCE in FreeScout via Email Attachment Bypass

CVE-2026-28289 is a critical zero-click remote code execution vulnerability (CVSS 10.0) in FreeScout ≤1.8.206 that allows unauthenticated attackers to achieve full server compromise by sending a…

CVE-2026-28289
POC github.com/Skynoxk Mar 14, 2026

CVE-2026-27944: Nginx UI Unauthenticated Backup Download & Admin Account Creation

CVE-2026-27944 is a critical vulnerability in Nginx UI that exposes encrypted system backups via the /api/backup endpoint with the AES-256 decryption key leaked in HTTP response headers.

CVE-2026-27944
POC github.com/0xBlackash Mar 28, 2026

CVE-2026-20079: Critical Authentication Bypass & Root RCE in Cisco Secure FMC

CVE-2026-20079 is a CVSS 10.0 critical vulnerability in Cisco Secure Firewall Management Center (on-premises) that allows unauthenticated remote attackers to bypass authentication and execute…

CVE-2026-20079
POC github.com/unionnx Mar 22, 2026

CVE-2026-21385: Qualcomm Display Integer Overflow Scanner POC

CVE-2026-21385 is a high-severity integer overflow vulnerability (CVSS 7.8) in Qualcomm Display components affecting Android devices, currently under active targeted exploitation.

CVE-2026-21385
POC github.com/andreassudo Feb 11, 2026

CVE-2026-21510: Windows Shell SmartScreen Bypass Enabling Silent Code Execution

CVE-2026-21510 is a CVSS 8.8 Windows Shell security feature bypass that allows attackers to suppress SmartScreen and shell warning prompts, enabling silent code execution when users click malicious…

CVE-2026-21510
POC github.com/fevar54 Mar 09, 2026

CVE-2026-21533: Windows RDP Privilege Escalation Detection Tool

CVE-2026-21533 is a Windows Remote Desktop Services privilege escalation vulnerability (CVSS 7.8) affecting Windows 10, 11, and Server editions that allows local attackers with valid credentials to…

CVE-2026-21533
POC github.com/sfewer-r7 Mar 09, 2026

CVE-2026-20127: Cisco Catalyst SD-WAN Controller Authentication Bypass PoC

A proof-of-concept exploit demonstrates a critical authentication bypass in Cisco Catalyst SD-WAN Controller (vSmart) versions up to 20.15.3, exploitable via a forged CHALLENGE_ACK_ACK message that…

CVE-2026-20127
POC github.com/omer-efe-curkus Mar 21, 2026

CVE-2026-33017: Langflow 1.8.1 Unauthenticated Remote Code Execution PoC

Langflow versions 1.8.1 and earlier contain an unauthenticated remote code execution vulnerability in the /api/v1/build_public_tmp endpoint that allows attackers to override flow definitions with…

CVE-2026-33017
POC github.com/l0lsec Apr 01, 2026

CVE-2026-3055 NetScaler SAML IdP Memory Overread Detection Tool

CVE-2026-3055 is a memory overread vulnerability in Citrix NetScaler appliances when configured as a SAML Identity Provider, exploitable via crafted POST requests to the /saml/login endpoint.

CVE-2026-3055
POC github.com/fartlover37 Apr 09, 2026

CVE-2026-2441 PoC: Chrome Blink Use-After-Free in CSS Font Engine

CVE-2026-2441 is a high-risk use-after-free vulnerability in Chrome's Blink CSS rendering engine that affects the CSSFontFeatureValuesMap component, allowing attackers to execute arbitrary code…

CVE-2026-2441
POC github.com/AshleyT3 Mar 31, 2026

CVE-2026-33634: Docker Socket Privilege Escalation - Safer Trivy Scanning Without Root

CVE-2026-33634 demonstrates how mounting /var/run/docker.sock into containers grants full root-level host access through the Docker API, creating a critical privilege escalation vector.

CVE-2026-33634
POC github.com/mbanyamer Feb 19, 2026

CVE-2026-27180: MajorDoMo Unauthenticated RCE via Update URL Poisoning

CVE-2026-27180 is a critical unauthenticated remote code execution vulnerability in MajorDoMo smart home automation software that allows attackers to poison the update source URL and force…

CVE-2026-27180
POC github.com/MaxMnMl Feb 26, 2026

CVE-2026-27174: Unauthenticated RCE in MajorDomo Admin Panel PHP Console

CVE-2026-27174 is a critical unauthenticated remote code execution vulnerability in MajorDomo's admin panel (/admin.php) caused by a missing authentication check in panel.class.php that allows the…

CVE-2026-27174
POC github.com/p3Nt3st3r-sTAr Mar 18, 2026

CVE-2026-20131: Cisco SD-WAN Pre-Auth RCE Active Since 2023

CVE-2026-20131 is a critical pre-authentication remote code execution vulnerability in Cisco Catalyst SD-WAN Controller and Manager that has been actively exploited since 2023 by sophisticated threat…

CVE-2026-20131
webflow.sysdig.com Mar 17, 2026

CVE-2026-3288: NGINX Ingress Controller Configuration Injection via Path Field

CVE-2026-3288 (CVSS 8.8) is a configuration injection vulnerability in NGINX Ingress Controller that allows attackers with Ingress creation permissions to inject arbitrary nginx directives by…

CVE-2026-3288
webflow.sysdig.com Mar 19, 2026

CVE-2026-33017: Langflow RCE exploited in 20 hours, credentials stolen

CVE-2026-33017 is an unauthenticated remote code execution vulnerability in Langflow's public flow build endpoint that allows arbitrary Python code execution with a single HTTP request.

CVE-2026-33017
vulnerability.circl.lu Mar 19, 2026

BMC FootPrints Pre-Auth RCE Chain (CVE-2025-71257 to CVE-2025-71260)

Four chained vulnerabilities in BMC FootPrints ITSM (versions 20.20.02-20.24.01.001) enable unauthenticated remote code execution: an authentication bypass (CVE-2025-71257), two SSRF flaws…

CVE-2025-71257 CVE-2025-71258 CVE-2025-71259 CVE-2025-71260
vulnerability.circl.lu Mar 11, 2026

Lantronix EDS3000PS/EDS5000 Multiple Critical Vulnerabilities (CVE-2025-67034 to CVE-2025-70082)

Lantronix EDS3000PS and EDS5000 devices contain eight critical vulnerabilities allowing unauthenticated attackers to bypass authentication, execute arbitrary OS commands with root privileges, and…

CVE-2025-67034 CVE-2025-67035 CVE-2025-67036 CVE-2025-67037 CVE-2025-67038 +3 more
Page 1 of 3 Next

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy