Recent news in security

Security Vulns 

CVE-2026-56779 | 1Panel-dev MaxKB up to 2.9.x ToolSerializer Endpoint download_url server-side request forgery (Issue 6272)

Yanac

A vulnerability, which was classified as critical, has been found in 1Panel-dev MaxKB up to 2.9.x. This vulnerability affects unknown

Security Vulns 

CVE-2026-54917 | SeaweedFS up to 4.29 /evil-bucket/key mux.NewRouter path traversal (GHSA-w62w-66v9-vvgv)

Yanac

A vulnerability, which was classified as critical, was found in SeaweedFS up to 4.29. This issue affects the function mux.NewRouter

Security Vulns 

CVE-2026-56788 | tomojitakasu RTKLIB up to 2.4.3 RINEX File getcodepri out-of-bounds (Issue 797)

Yanac

A vulnerability has been found in tomojitakasu RTKLIB up to 2.4.3 and classified as critical. Impacted is the function getcodepri

Vendor

CERTs

Vulnerabilities

CL-STA-1062 Targets Southeast Asian Governments and Critical Infrastructure 

CL-STA-1062 Targets Southeast Asian Governments and Critical Infrastructure 

Yanac
Wordfence Intelligence Weekly WordPress Vulnerability Report (June 15, 2026 to June 21, 2026) 

Wordfence Intelligence Weekly WordPress Vulnerability Report (June 15, 2026 to June 21, 2026) 

Yanac
Microsoft a Leader in The Forrester Wave™ for Endpoint Management Platforms 

Microsoft a Leader in The Forrester Wave™ for Endpoint Management Platforms 

Yanac

The New MCP Specification: What Security Teams Must Prepare For 

Yanac

Linode Interfaces and Default Firewall Now Generally Available 

Yanac
How we built saga rollbacks for Cloudflare Workflows 

How we built saga rollbacks for Cloudflare Workflows 

Yanac

Your AI Cost Model Stops at the Token Price. The Bill Doesn’t. 

Yanac
ANY.RUN & Torq Integration: Scale Triage & Respond with Confidence 

ANY.RUN & Torq Integration: Scale Triage & Respond with Confidence 

Yanac
Inside the 2026 SMB threat landscape: From phishing and scams to fake AI tools 

Inside the 2026 SMB threat landscape: From phishing and scams to fake AI tools 

Yanac
Ping32 RMM and ValleyRAT 

Ping32 RMM and ValleyRAT 

Yanac

CERT-FR riasztás

Geronimo

BSI: 17.000 Exchange szerver veszélyben Németországban

Yanac
Brigadier General Seán White

EU Katonai Törzs: Az uniós országoknak szorosabb együttműködésre van szükségük a kiberbiztonság terén

Yanac

Erőltetett kiberbiztonság?

Yanac

Számos új fukcióval bővült a MISP

SZ

Az új közlekedési lámpa protokol (2.0) megjelent

SZ

Signal biztonsági beállítások

SZ

Windows 10 hardening ajánlások

Yanac

A szlovák CERT egy régiót érintő, jelentős mértékű kibertámadásra figyelmeztet

Yanac

Újabb kórház a zsarolóvírusok kereszttüzében

Yanac

CVE-2026-56779 | 1Panel-dev MaxKB up to 2.9.x ToolSerializer Endpoint download_url server-side request forgery (Issue 6272)

Yanac

CVE-2026-54917 | SeaweedFS up to 4.29 /evil-bucket/key mux.NewRouter path traversal (GHSA-w62w-66v9-vvgv)

Yanac

CVE-2026-56788 | tomojitakasu RTKLIB up to 2.4.3 RINEX File getcodepri out-of-bounds (Issue 797)

Yanac

CVE-2026-11310 | wolfSSL up to 5.9.1 wolfSSL_X509_verify_cert certificate validation

Yanac

CVE-2026-56789 | tomojitakasu RTKLIB up to 2.4.3 src/rinex.c readrnxobsb heap-based overflow (Issue 796)

Yanac

CVE-2026-57700 | Daan.dev OMGF Pro Plugin up to 5.2.6 on WordPress unrestricted upload

Yanac

CVE-2026-56790 | CANBoat up to 6.22 Global Buffer analyzer/pgn.c searchForPgn off-by-one (Issue 644)

Yanac

CVE-2026-10097 | wolfSSL up to 5.9.1 risky encryption

Yanac

CVE-2025-60465 | GPAC up to 26.1.x MP4Box filter_pid.c gf_filter_pid_inst_swap use after free (Issue 3283)

Yanac

CVE-2025-60464 | GPAC up to 26.1.x MP4Box /filters/sei_load.c gf_sei_load_from_state_internal use after free (Issue 3278)

Yanac