[ News | Newsletters | Blogs | Lists | Media | Jobs ] HoneyDB
  [ vulnerabilities | tools ]
CISA Advisories
US-CERT
FullDisclosure
ESP-RFID-Tool v2 PRO — Full Public Disclosure
Re: SEC Consult SA-20260427-0 :: Missing TLS Certificate Validation leading to RCE in DeskTime Time Tracking App
SEC Consult SA-20260427-0 :: Missing TLS Certificate Validation leading to RCE in DeskTime Time Tracking App
SEC Consult SA-20260423-0 :: DLL Hijacking in EfficientLab Controlio (cloud-based employee monitoring service)
SEC Consult SA-20260421-0 :: Broken Access Control in Config Endpoint in LiteLLM
SEC Consult SA-20260415-0 :: Exposed Private Key of X.509 Certificate in SAP HANA Cockpit & SAP HANA Database Explorer
APPLE-SA-04-22-2026-2 iOS 18.7.8 and iPadOS 18.7.8
APPLE-SA-04-22-2026-1 iOS 26.4.2 and iPadOS 26.4.2
Research: When Trusted Tools Become Attack Primitives
[KIS-2026-08] SocialEngine <= 7.8.0 (get-memberall) SQL Injection Vulnerability
US CERT Weekly
Open Source Security
CVE-2026-42440: Apache OpenNLP: OOM DoS via Unbounded Array Allocation in AbstractModelReader
CVE-2026-42027: Apache OpenNLP: Arbitrary Class Instantiation via Model Manifest in ExtensionLoader
CVE-2026-40682: Apache OpenNLP: XXE via Dictionary Parsing in DictionaryEntryPersistor
Re: CVE-2026-31431: CopyFail: linux local privilege scalation
Re: Re: CVE-2026-31431: CopyFail: linux local privilege scalation
Re: CVE-2026-31431: CopyFail: linux local privilege scalation
Re: [EXTERNAL] Re: [oss-security] CVE-2026-31431: CopyFail: linux local privilege scalation
Re: 10+ CVEs in GStreamer
Re: CVE-2026-42167: SQL injection in ProFTPd prior to 1.3.9a
Re: CVE-2026-31431: CopyFail: linux local privilege scalation
© 2026 RiskDiscovery | Sponsored by: Deception Logic