CVE Alert: CVE-2026-27309 - Adobe - Substance3D - Stager - https://www.redpacketsecurity.com/cve-alert-cve-2026-27309-adobe-substance3d-stager/

#OSINT #ThreatIntel #CyberSecurity #cve-2026-27309 #adobe #substance3d-stager

CVE Alert: CVE-2026-4248 - ultimatemember - Ultimate Member – User Profile, Registration, Login, Member Directory, Content Restriction & Membership Plugin - https://www.redpacketsecurity.com/cve-alert-cve-2026-4248-ultimatemember-ultimate-member-user-profile-registration-login-member-directory-content-restriction-membership-plugin/

#OSINT #ThreatIntel #CyberSecurity #cve-2026-4248 #ultimatemember #ultimate-member-user-profile-registration-login-member-directory-content-restriction-and-membership-plugin

CVE Alert: CVE-2026-4975 - Tenda - AC15 - https://www.redpacketsecurity.com/cve-alert-cve-2026-4975-tenda-ac15/

#OSINT #ThreatIntel #CyberSecurity #cve-2026-4975 #tenda #ac15

CVE Alert: CVE-2026-4974 - Tenda - AC7 - https://www.redpacketsecurity.com/cve-alert-cve-2026-4974-tenda-ac7/

#OSINT #ThreatIntel #CyberSecurity #cve-2026-4974 #tenda #ac7

CVE Alert: CVE-2019-25652 - Ubiquiti - UniFi Network Controller - https://www.redpacketsecurity.com/cve-alert-cve-2019-25652-ubiquiti-unifi-network-controller/

#OSINT #ThreatIntel #CyberSecurity #cve-2019-25652 #ubiquiti #unifi-network-controller

CVE Alert: CVE-2019-25651 - Ubiquiti - UniFi Network Controller - https://www.redpacketsecurity.com/cve-alert-cve-2019-25651-ubiquiti-unifi-network-controller/

#OSINT #ThreatIntel #CyberSecurity #cve-2019-25651 #ubiquiti #unifi-network-controller

🚨 EUVD-2026-16901

📊 Score: 8.0/10 (CVSS v3.1)
📦 Product: Ultimate Member – User Profile, Registration, Login, Member Directory, Content Restriction & Membership Plugin
🏢 Vendor: ultimatemember
📅 Updated: 2026-03-27

📝 The Ultimate Member plugin for WordPress is vulnerable to Sensitive Information Exposure in all versions up to, and including, 2.11.2. This is due t...

🔗 https://euvd.enisa.europa.eu/vulnerability/EUVD-2026-16901

#cybersecurity #infosec #euvd #cve #vulnerability

🚨 EUVD-2026-16899

📊 Score: 5.8/10 (CVSS v3.1)
📦 Product: libjwt
🏢 Vendor: benmcollins
📅 Updated: 2026-03-27

📝 LibJWT is a C JSON Web Token Library. Starting in version 3.0.0 and prior to version 3.3.0, the JWK parsing for RSA-PSS did not protect against a NULL value when expecting to parse JSON string values. A specially crafted JWK file could exploit this behavi...

🔗 https://euvd.enisa.europa.eu/vulnerability/EUVD-2026-16899

#cybersecurity #infosec #euvd #cve #vulnerability

🟠 CVE-2026-33991 - High (8.8)

WeGIA is a web manager for charitable institutions. Prior to version 3.6.7, the file `html/socio/sistema/deletar_tag.php` uses `extract($_REQUEST)` on line 14 and directly concatenates the `$id_tag` variable into SQL queries on lines 16-17 without...

🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-33991/

#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack

🟠 CVE-2026-4248 - High (8)

The Ultimate Member plugin for WordPress is vulnerable to Sensitive Information Exposure in all versions up to, and including, 2.11.2. This is due to the '{usermeta:password_reset_link}' template tag being processed within post content via the '[u...

🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-4248/

#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack