Aggregator
2026-05-31: Seven days of scans and probes and web traffic hitting my web server
3 weeks 3 days hence
Weekly Threat Bulletin – July 1st, 2026
14 hours 19 minutes hence
These are the top threats you should know about this week.
CVE-2026-0797 | GIMP ICO File Parser heap-based overflow (Nessus ID 298749 / WID-SEC-2026-0279)
1 hour ago
A vulnerability classified as critical has been found in GIMP. This affects an unknown part of the component ICO File Parser. Performing a manipulation results in heap-based buffer overflow.
This vulnerability is reported as CVE-2026-0797. The attack is possible to be carried out remotely. No exploit exists.
vuldb.com
CVE-2026-2033 | MLflow Artifact path traversal
1 hour ago
A vulnerability was found in MLflow. It has been classified as critical. This affects an unknown function of the component Artifact Handler. Performing a manipulation results in path traversal.
This vulnerability was named CVE-2026-2033. The attack may be initiated remotely. There is no available exploit.
vuldb.com
CVE-2026-2048 | GIMP XWD File Parser out-of-bounds write (Nessus ID 299704 / WID-SEC-2026-0469)
1 hour ago
A vulnerability classified as critical was found in GIMP. Affected is an unknown function of the component XWD File Parser. Executing a manipulation can lead to out-of-bounds write.
This vulnerability is handled as CVE-2026-2048. The attack can be executed remotely. There is not any exploit available.
A patch should be applied to remediate this issue.
vuldb.com
CVE-2026-2047 | GIMP ICNS File Parser heap-based overflow (Nessus ID 299703 / WID-SEC-2026-0469)
1 hour ago
A vulnerability, which was classified as critical, has been found in GIMP. Affected by this vulnerability is an unknown functionality of the component ICNS File Parser. The manipulation leads to heap-based buffer overflow.
This vulnerability is uniquely identified as CVE-2026-2047. The attack is possible to be carried out remotely. No exploit exists.
To fix this issue, it is recommended to deploy a patch.
vuldb.com
CVE-2026-2045 | GIMP XWD File Parser out-of-bounds write (Nessus ID 299700 / WID-SEC-2026-0469)
1 hour ago
A vulnerability, which was classified as critical, was found in GIMP. Affected by this issue is some unknown functionality of the component XWD File Parser. The manipulation results in out-of-bounds write.
This vulnerability was named CVE-2026-2045. The attack may be performed from remote. There is no available exploit.
It is advisable to implement a patch to correct this issue.
vuldb.com
CVE-2026-2044 | GIMP PGM File Parser uninitialized pointer (Nessus ID 299701 / WID-SEC-2026-0469)
1 hour ago
A vulnerability has been found in GIMP and classified as critical. This affects an unknown part of the component PGM File Parser. This manipulation causes uninitialized pointer.
The identification of this vulnerability is CVE-2026-2044. It is possible to initiate the attack remotely. There is no exploit available.
Applying a patch is the recommended action to fix this issue.
vuldb.com
CVE-2026-2635 | mlflow default password (Nessus ID 299880)
1 hour ago
A vulnerability was found in mlflow. It has been declared as critical. Impacted is an unknown function. Executing a manipulation can lead to use of default password.
This vulnerability is tracked as CVE-2026-2635. The attack can be launched remotely. No exploit exists.
Applying a patch is advised to resolve this issue.
vuldb.com
CVE-2026-2492 | Google TensorFlow HDF5 Library uncontrolled search path (Nessus ID 299723)
1 hour ago
A vulnerability was found in Google TensorFlow. It has been rated as problematic. The affected element is an unknown function of the component HDF5 Library. The manipulation leads to uncontrolled search path.
This vulnerability is listed as CVE-2026-2492. The attack must be carried out locally. There is no available exploit.
vuldb.com
CVE-2026-21863 | valkey-io valkey up to 7.2.11/8.0.6/8.1.5/9.0.1 out-of-bounds (GHSA-c677-q3wr-gggq / Nessus ID 299879)
1 hour ago
A vulnerability classified as problematic was found in valkey-io valkey up to 7.2.11/8.0.6/8.1.5/9.0.1. The affected element is an unknown function. Executing a manipulation can lead to out-of-bounds read.
This vulnerability is tracked as CVE-2026-21863. The attack can be launched remotely. No exploit exists.
Upgrading the affected component is advised.
vuldb.com
CVE-2026-27623 | valkey-io valkey up to 9.0.2 assertion (GHSA-93p9-5vc7-8wgr / Nessus ID 299876)
1 hour ago
A vulnerability, which was classified as problematic, has been found in valkey-io valkey up to 9.0.2. The impacted element is an unknown function. The manipulation leads to reachable assertion.
This vulnerability is listed as CVE-2026-27623. The attack may be initiated remotely. There is no available exploit.
It is advisable to upgrade the affected component.
vuldb.com
CVE-2025-67733 | valkey-io valkey up to 7.2.11/8.0.6/8.1.5/9.0.1 injection (GHSA-p876-p7q5-hv2m / Nessus ID 299872)
1 hour ago
A vulnerability was found in valkey-io valkey up to 7.2.11/8.0.6/8.1.5/9.0.1. It has been declared as problematic. Affected is an unknown function. Executing a manipulation can lead to injection.
This vulnerability is registered as CVE-2025-67733. It is possible to launch the attack remotely. No exploit is available.
It is recommended to upgrade the affected component.
vuldb.com
CVE-2026-46770 | Oracle Application Development Framework 12.2.1.4.0/14.1.2.0.0 Security Framework improper authorization (Nessus ID 323928)
1 hour 9 minutes ago
A vulnerability was found in Oracle Application Development Framework 12.2.1.4.0/14.1.2.0.0. It has been classified as critical. Affected by this issue is some unknown functionality of the component Security Framework. Performing a manipulation results in improper authorization.
This vulnerability is identified as CVE-2026-46770. The attack can be initiated remotely. There is not any exploit available.
Upgrading the affected component is recommended.
vuldb.com
CVE-2026-46769 | Oracle Application Development Framework 12.2.1.4.0/14.1.2.0.0 ADF Shared Components privilege escalation (Nessus ID 323928)
1 hour 9 minutes ago
A vulnerability marked as critical has been reported in Oracle Application Development Framework 12.2.1.4.0/14.1.2.0.0. This impacts an unknown function of the component ADF Shared Components. Performing a manipulation results in privilege escalation.
This vulnerability is known as CVE-2026-46769. Remote exploitation of the attack is possible. No exploit is available.
It is suggested to upgrade the affected component.
vuldb.com
CVE-2026-13676 | fast-uri up to 3.1.2/4.0.0 normalize/equal interpretation conflict (GHSA-4c8g-83qw-93j6 / Nessus ID 323932)
1 hour 9 minutes ago
A vulnerability, which was classified as problematic, was found in fast-uri up to 3.1.2/4.0.0. This impacts the function normalize/equal. Executing a manipulation can lead to interpretation conflict.
The identification of this vulnerability is CVE-2026-13676. The attack may be launched remotely. There is no exploit available.
You should upgrade the affected component.
vuldb.com
深度分析|AI编码工具的隐式信任链——当CLAUDE.md成为新的攻击面
1 hour 11 minutes ago
AI编码工具中指令文件的隐式信任链攻击面分析
CVE-2026-22205 漏洞复现:SPIP PHP 类型混淆认证绕过
1 hour 11 minutes ago
SPIP 是一款开源的法语内容管理系统(CMS),广泛部署于法国及法语区国家的政府机构、高校、研究所以及新闻出版行业,拥有超过 30 年的发展历史[1]。2026 年 2 月,SPIP < 4.4.10 版本被披露存在一个 CVSS 8.7 的高危漏洞(CVE-2026-22205),其认证模块 `verifier_low_sec()` 使用 PHP 松散比较符 `==` 代替常量时间比较函数 `
AI自动化fscan二开
1 hour 11 minutes ago
本文以学习记录为主,参考网上文章,针对fscan二开流程:利用AI去除fscan敏感特征---->使用garble混淆编译----->利用加载器落地,进行了较为完整的AI闭环。
记录在利用AI实现过程中遇到的一些问题,以及解决思路。
创新点:利用对AI的执行闭环,让Ai自动化fscan二开、不止对fscan进行二开,对加载器也进行二开和规避特征,达到了一定的免杀效果
项目地址:https://gi