Adobe ColdFusion CVE-2026-48282 moves from patch advisory to active exploitation Adobe ColdFusion administrators have a narrow patch window for CVE-2026-48282,...
Lucas Oliveira
Research
CitrixBleed-style NetScaler flaw CVE-2026-8451 is already being tested in the wild Citrix NetScaler administrators have another edge-appliance exposure to triag...
Lucas Oliveira
Research
SharePoint CVE-2026-45659 active exploitation puts on-prem servers on urgent patch path Microsoft SharePoint Server is back in the active-exploitation lane. CIS...
Lucas Oliveira
Research
Progress Kemp LoadMaster CVE-2026-8037 exploitation moves fast after public PoC Progress Kemp LoadMaster appliances are now in the familiar danger zone for edge...
Lucas Oliveira
Research
SimpleHelp CVE-2026-48558 exploitation turns RMM into a credential-theft path SimpleHelp has moved from patched vulnerability to active intrusion path. Attacker...
Lucas Oliveira
Research
Oracle E-Business Suite CVE-2026-46817 is now an active exploitation risk Oracle E-Business Suite has another critical exposure that defenders should move out o...
Lucas Oliveira
Research
Actively exploited UniFi OS flaws turn network controllers into root-level targets CISA has added three Ubiquiti UniFi OS vulnerabilities to its Known Exploited...
Lucas Oliveira
Research
CISA's June 28 KEV deadline puts PTC Windchill and Cisco Unified CM on emergency footing CISA's latest Known Exploited Vulnerabilities update has turned Sunday,...
Lucas Oliveira
Research
Lantronix EDS5000 exploitation shows why edge device patch windows are shrinking CISA has added CVE-2025-67038 to its Known Exploited Vulnerabilities catalog af...
Lucas Oliveira
Research
Gravity SMTP bug turns WordPress email settings into an attacker map Attackers are actively exploiting CVE-2026-4020, a Gravity SMTP [vulnerability](https://inv...
Lucas Oliveira
Research
Splunk Enterprise CVE-2026-20253 hits KEV as exploitation begins Splunk's June 18, 2026 advisory update changed CVE-2026-20253 from a patch-now issue into an ac...
Lucas Oliveira
Research
Joomla JCE exploitation forces defenders beyond simple patching On Friday, June 19, 2026, defenders running Joomla sites with the JCE editor are at a deadline,...
Lucas Oliveira
Research