Aggregator

CVE-2026-30695 | Zucchetti Axess Web-based Configuration Interface file_manager dirBrowse cross site scripting

VulDB Recent Entries
3 weeks ago
A vulnerability has been found in Zucchetti Axess and classified as problematic. The affected element is the function file_manager of the component Web-based Configuration Interface. The manipulation of the argument dirBrowse leads to cross site scripting. This vulnerability is traded as CVE-2026-30695. It is possible to initiate the attack remotely. There is no exploit available.
vuldb.com

CVE-2026-32611 | nicolargo glances up to 4.5.1 TimescaleDB Export __init__.py sql injection (GHSA-49g7-2ww7-3vf5)

VulDB Recent Entries
3 weeks ago
A vulnerability, which was classified as critical, was found in nicolargo glances up to 4.5.1. Impacted is an unknown function of the file glances/exports/glances_duckdb/__init__.py of the component TimescaleDB Export Module. Executing a manipulation can lead to sql injection. This vulnerability appears as CVE-2026-32611. The attack may be performed from remote. There is no available exploit. You should upgrade the affected component.
vuldb.com

What Golden Dome Requires from Federal DevSecOps Teams

Security Boulevard
3 weeks ago

The threat environment facing the United States is growing more complex and interconnected. Executive Order 14186 identifies the threat of attack by ballistic, hypersonic, and cruise missiles, along with other advanced aerial attacks, as "the most catastrophic threat facing the United States." In response, the U.S. is pursuing Golden Dome for America, a next-generation missile defense architecture intended to defend the homeland and critical infrastructure against foreign aerial attacks.

The post What Golden Dome Requires from Federal DevSecOps Teams appeared first on Security Boulevard.

Tom Tapley

Managed ad