securityaffairs.com
Resources curated from this publisher and indexed across appsec.fyi topic pages. Last item added: 2026-04-17.
| Date Added | Resource | Excerpt |
|---|---|---|
| 2026-04-17 2026 | U.S. CISA adds a flaw in Apache ActiveMQ to its Known Exploited Vulnerabilities catalogRCE | U.S. CISA adds a flaw in Apache ActiveMQ to its Known Exploited Vulnerabilities catalog https://ift.tt/sTWqk05 |
| 2026-04-15 2026 | Microsoft Patch Tuesday for April 2026 fixed actively exploited SharePoint zero-dayRCE | Microsoft Patch Tuesday for April 2026 fixed actively exploited SharePoint zero-day https://ift.tt/748uoFH |
| 2026-04-11 2026 | CVE-2026-39987: Marimo RCE exploited in hours after disclosureRCE | CVE-2026-39987: Marimo RCE exploited in hours after disclosure https://ift.tt/RhDdNo9 |
| 2026-04-07 2026 | Attackers exploit critical Flowise flaw CVE-2025-59528 for remote code executionRCE | Attackers exploit critical Flowise flaw CVE-2025-59528 for remote code execution https://ift.tt/NkQgYPo |
| 2026-04-06 2026 | Attackers Exploit RCE Flaw as 14000 F5 BIG-IP APM Instances Remain ExposedRCE | Attackers Exploit RCE Flaw as 14,000 F5 BIG-IP APM Instances Remain Exposed https://ift.tt/9Z4q1fW |
| 2026-04-02 2026 | Critical Fortinet FortiClient EMS flaw exploited for Remote Code ExecutionRCE | Critical Fortinet FortiClient EMS flaw exploited for Remote Code Execution https://ift.tt/NpS734o |
| 2026-03-21 2026 | PolyShell flaw exposes Magento and Adobe Commerce to file upload attacksXSS | PolyShell flaw exposes Magento and Adobe Commerce to file upload attacks https://ift.tt/Vn64pI0 |
| 2026-03-19 2026 | Russian APT targets Ukraine via Zimbra XSS flaw CVE-2025-66376XSS | Russian APT targets Ukraine via Zimbra XSS flaw CVE-2025-66376 https://ift.tt/fiP24sx |
| 2025-03-18 2025 | ChatGPT SSRF bug quickly becomes a favorite attack vectorSSRF | The ChatGPT SSRF bug has become a popular attack vector due to its vulnerability. SSRF (Server-Side Request Forgery) allows attackers to make requests from a server, potentially accessing sensitive information or executing malicious actions. This bug's exploitation poses a significant security risk, making it a favorite target for attackers seeking unauthorized access to systems. |
| 2025-03-13 2025 | Experts warn of a coordinated surge in the exploitation attempts of SSRF vulnerabilitiesSSRF | Experts are cautioning about a rise in coordinated exploitation attempts targeting SSRF vulnerabilities. This warning highlights the increasing threat posed by attackers who are actively seeking to exploit these vulnerabilities. It underscores the importance of addressing and securing SSRF vulnerabilities to prevent potential breaches and protect systems from malicious activities. |
| 2024-12-10 2024 | SAP fixed critical SSRF flaw in NetWeaver NetWeaverSSRF | SAP addressed a critical Server-Side Request Forgery (SSRF) vulnerability in NetWeaver, a popular software platform. The flaw could potentially allow attackers to manipulate server requests and access sensitive information. SAP released a fix to address this security issue, aiming to prevent unauthorized access and protect the integrity of NetWeaver systems. It is crucial for users to promptly apply the patch to safeguard their systems from potential exploitation. |