rce 34

• Gogs Zero-Day RCE Lets Any Authenticated User Execute Arbitrary Code May 28, 2026
• KnowledgeDeliver LMS Zero-Day Exploited to Deploy Godzilla Web Shell and Cobalt Strike May 25, 2026
• ExifTool CVE-2026-3102: Malicious Image File Triggers macOS Compromise May 20, 2026
• ScadaBR 1.2.0 Hit by Four CVEs Including Unauthenticated RCE (CVSS 9.1) May 19, 2026
• Critical SEPPMail Gateway Vulnerabilities Enable RCE and Full Mail Traffic Read May 19, 2026
• Pwn2Own Berlin 2026 Day 2: 15 Zero-Days in Windows 11, Exchange, and RHEL Earn $385K May 15, 2026
• Microsoft Exchange CVE-2026-42897 Zero-Day Exploited via Crafted Email May 14, 2026
• 18-Year-Old NGINX Rewrite Module Bug Enables Unauthenticated RCE May 13, 2026
• Critical Exim Mail Server Flaw Allows Unauthenticated Remote Code Execution May 13, 2026
• May 2026 Patch Tuesday: 138 CVEs Including Critical Zero-Click Outlook Flaw CVE-2026-40361 May 13, 2026
• Google Project Zero Demonstrates 0-Click Exploit Chain for Pixel 10 May 13, 2026
• Fortinet Patches Critical RCE Flaws in FortiSandbox and FortiAuthenticator May 12, 2026
• JDownloader Website Compromised to Distribute Python RAT via Malicious Installers May 9, 2026
• cPanel and WHM Patch Three Vulnerabilities Including RCE and Privilege Escalation May 9, 2026
• Dozen Critical Vulnerabilities in vm2 Node.js Library Enable Sandbox Escape and RCE May 6, 2026
• PAN-OS Zero-Day CVE-2026-0300 Enables Unauthenticated RCE via Captive Portal May 6, 2026
• Palo Alto PAN-OS RCE Zero-Day CVE-2026-0300 Actively Exploited May 5, 2026
• MetInfo CMS CVE-2026-29014 Under Active Exploitation — Unauthenticated RCE (CVSS 9.8) May 5, 2026
• Weaver E-cology CVE-2026-22679 Actively Exploited — CVSS 9.8 Unauthenticated RCE via Debug API May 5, 2026
• Critical Gemini CLI Flaw Enabled Host Code Execution and Supply Chain Attacks Apr 30, 2026
• Google Patches CVSS 10 Gemini CLI RCE Enabling Supply-Chain Code Execution Apr 30, 2026
• GitHub RCE Flaw CVE-2026-3854 Exposed Millions of Private Repositories Apr 29, 2026
• Critical GitHub RCE CVE-2026-3854 Exposed Millions of Repositories Apr 28, 2026
• 15-Year-Old OpenSSH Flaw Allowed Full Root Shell Access via Certificate Principal Parsing Bug Apr 27, 2026
• CVE-2026-1731: Critical Bomgar RMM RCE Actively Exploited to Spread Ransomware Apr 21, 2026
• Google Antigravity AI IDE: Prompt Injection Chained to Sandbox Escape and Code Execution Apr 21, 2026
• Splunk Enterprise Patches RCE Flaw Exploitable by Low-Privileged Users via File Upload Apr 16, 2026
• CVE-2026-33032 (MCPwn): Critical Nginx UI Authentication Bypass Actively Exploited Apr 15, 2026
• Fortinet Patches Critical FortiSandbox Vulnerabilities Enabling Auth Bypass and RCE Apr 15, 2026
• April 2026 Patch Tuesday: SharePoint Zero-Day Among 167 CVEs Fixed Apr 14, 2026
• ShowDoc RCE Flaw CVE-2025-0520 Actively Exploited on Unpatched Servers Apr 13, 2026
• Adobe Patches Actively Exploited Acrobat Reader RCE — CVE-2026-34621 Apr 11, 2026
• Apache ActiveMQ Classic Carries 13-Year-Old RCE Risk via Unauthenticated Jolokia API Apr 8, 2026
• CVE-2026-1337 — RCE in Widely-Used Python ORM Apr 7, 2026