June 2026 - TheCybrDef

CISA Adds Oracle WebLogic CVE-2024-21182 to KEV Catalog

John 3 hours ago

The Cybersecurity and Infrastructure Security Agency (CISA) added CVE-2024-21182, a high-severity unspecified vulnerability in Oracle WebLogic Server,...

Apache ActiveMQ Flaw Lets Low-Privilege Users Run Admin Commands

John 3 hours ago

Apache has disclosed a new high-severity vulnerability in Apache ActiveMQ, tracked as CVE-2026-49157, that allows authenticated low-privilege web...

OpenCATS SQL Injection Flaw Exposes Candidate Data to Attackers

John 1 day ago

OpenCATS, the open-source applicant tracking system, has a high-severity SQL injection vulnerability (GHSA-gmpc-j6h7-vw74 / CVE-2026-49490) in its...

CVE-2026-9739: Google MCP Toolbox DNS Rebinding Flaw Exposed

John 1 day ago

A critical security vulnerability tracked as CVE-2026-9739 has been disclosed in Google’s MCP Toolbox for Databases, a widely used...

CVE-2026-44825: Apache Solr Flaw Grants Full Admin Access

John 1 day ago

Apache Solr has patched a high-severity vulnerability that silently installs hardcoded default users during BasicAuth setup, granting...

Month: June 2026

CISA Adds Oracle WebLogic CVE-2024-21182 to KEV Catalog

Apache ActiveMQ Flaw Lets Low-Privilege Users Run Admin Commands

CVE-2026-4387: How to Fix StrongDM State File Session Hijacking Flaw

Critical TP-Link Archer Router Flaw CVE-2026-5509 Patched: Update Now

OpenCATS SQL Injection Flaw Exposes Candidate Data to Attackers

CVE-2026-9739: Google MCP Toolbox DNS Rebinding Flaw Exposed

CVE-2026-44825: Apache Solr Flaw Grants Full Admin Access

CVE-2026-8732: WP Maps Pro Flaw Allows Admin Takeover

You May Have Missed

CISA Adds Oracle WebLogic CVE-2024-21182 to KEV Catalog

Apache ActiveMQ Flaw Lets Low-Privilege Users Run Admin Commands

CVE-2026-4387: How to Fix StrongDM State File Session Hijacking Flaw

Critical TP-Link Archer Router Flaw CVE-2026-5509 Patched: Update Now