Indicators of Compromise
679 articles containing extracted IOCs (CVEs, IPs, hashes, domains, URLs, emails)
High-severity Starlette vulnerability 'BadHost' could expose sensitive data
CVEs:
CVE-2026-48710
FastAPI-based AI tools exposed to authentication bypass by flaw in Starlette framework
CVEs:
CVE-2026-48710
BadHost Vulnerability Exposes Sensitive AI Agent Server Endpoints to Attackers
CVEs:
CVE-2026-48710
CISA Adds Three Known Exploited Vulnerabilities to Catalog
CVEs:
CVE-2026-8398
CVE-2026-45321
CVE-2026-48027
CISA Warns LiteSpeed cPanel Plugin Vulnerability Is Being Exploited in Attacks
CVEs:
CVE-2026-48172
Windows Kernel Vulnerability Lets Attackers Modify Kernel Memory Counters
CVEs:
CVE-2026-40369
Gitea Vulnerability Exposes Private Container Images without Authentication
CVEs:
CVE-2026-27771
Microsoft SharePoint Has a New RCE Flaw. If You Havenβt Patched Yet, Go Do That.
CVEs:
CVE-2026-45659
Microsoft SharePoint Server Flaw Enables Remote Code Execution Attacks
CVEs:
CVE-2026-45659
ISC Stormcast For Wednesday, May 27th, 2026 https://isc.sans.edu/podcastdetail/9946, (Wed, May 27th)
[webapps] OpenCATS 0.9.7.4 - SQL Injection
IPs:
0.9.7.4
Drupal bug added to CISA list of known exploited vulnerabilities
CVEs:
CVE-2026-9082
Well-architected best practices for software supply chain security
Domains:
tea.xyz
Critical vulnerability in Universal Robots' PolyScope OS allows remote command execution
CVEs:
CVE-2026-8153
Zero-day vulnerability in Japanese LMS exploited to deploy Cobalt Strike
CVEs:
CVE-2026-5426
Domains:
asp.net
Zero-click attack hijacks WhatsApp accounts on iOS 16
CVEs:
CVE-2025-43300
CVE-2025-55177
Ghost CMS vulnerability exploited in large-scale campaign
CVEs:
CVE-2026-26980
Actively exploited Trend Micro Apex One flaw gets CISA warning (CVE-2026-34926)
CVEs:
CVE-2026-34926
ABB LVS MConfig
IPs:
1.4.9.21