security

CVE-2026-Adresse geschuetzt-2026-Adresse geschuetzt(RCE) vulnerability affecting Webkul Krayin CRM / Krayin Laravel CRM v2.2.x. The issue is in the admin-side TinyMCE media upload feature and allows a logged-in user to upload a server-executable file, such as PHP, and then execute it via a normal […]

Mehr lesen →

soc

Unsecured Perforce Servers Expose Sensitive Data From Major Orgs

von SecurityWeek • 21.04.2026

Things are improving, but a researcher has still identified over 1,500 Perforce P4 instances allowing attackers to read files on the server. The post Unsecured Perforce Servers Expose Sensitive Data From Major Orgs appeared first on SecurityWeek.

Mehr lesen →

security

The abandoned war: Why no one is stopping the genocide in Sudan

von Hackernews • 21.04.2026

Comments

Mehr lesen →

security

CISA flags new SD-WAN flaw as actively exploited in attacks

von BleepingComputer • 21.04.2026

CISA has given U.S. government agencies four days to secure their systems against another Catalyst SD-WAN Manager vulnerability it flagged as actively exploited in attacks. […]

Mehr lesen →

soc

Progress Patches Multiple Vulnerabilities in MOVEit WAF, LoadMaster

von SecurityWeek • 21.04.2026

The security defects could be exploited for remote code execution, OS command injection, and WAF detection bypass. The post Progress Patches Multiple Vulnerabilities in MOVEit WAF, LoadMaster appeared first on SecurityWeek.

Mehr lesen →

📅 Kalender