CVE-2026-15377: Improper Authorization in Eleveo Call Recording Software
A vulnerability was determined in Eleveo Call Recording Software 9.7.0. Affected by this vulnerability is an unknown functionality of the file /callrec/sendlogfile. This manipulation causes improper…
Read the full articleYou might also wanna read
Cisco Unified CM Vulnerability (CVE-2026-20230, CVSS 8.6) Actively Exploited for Root Privilege Escalation
CVE-2026-20230 has a CVSS score of 8.6 and stems from improper input validation for specific HTTP requests. Successful exploitation can let

CVE-2026-11462: Improper Authorization Vulnerability in BeikeShop Stripe Plugin (Up to v1.6.0.22)
A vulnerability was found in Chengdu Everbrite Network Technology BeikeShop up to 1.6.0.22. This impacts the function callback of the file p
Critical Authentication Bypass Vulnerability Discovered in cPanel & WHM (CVE-2026-41940)
Hello! Yes, it's all a disaster again! Let's get this party started: 0:00 /0:12 1× No comments today, so imagine this: * We wrote something
watchTowr Labs·2mo agoCVE-2026-0257: PAN-OS GlobalProtect Authentication Bypass Under Active Exploitation
CVE-2026-0257 has a CVSS score of 7.8 and is a medium-severity authentication bypass affecting PAN-OS and Prisma Access. The flaw targets Gl
Technical Analysis of CVE-2025-10035: A CVSS 10.0 Vulnerability in Fortra GoAnywhere MFT
File transfer used to be simple fun - fire up your favourite FTP client, log in to a glFTPd site, and you were done. Fast forward to 2025, a
labs.watchtowr.com·9mo agoActive exploitation begins for critical Oracle E-Business Suite vulnerability CVE-2026-46817
CVE-2026-46817 has a CVSS score of 9.8 and affects the File Transmissions component within the Payments product of Oracle E-Business Suite.

Comments
Sign in to join the conversation.
No comments yet. Be the first.