2026-05-27 06:29:32 UTC
live · 0 feeds · 0 degraded
sort: KEVCRITNEW
auto · no filters · all actual
▲ CRITICAL · KEV · 0DAY · last 7d 0 pinned
▶ EXPLOITS & POCs 9
23m ago ▶ EXP
🛠 Demonstrate remote code execution in Windows Notepad via markdown links exploiting unsecured URL protocols. HIGH POC
Demonstrate remote code execution in Windows Notepad via markdown links exploiting unsecured URL protocols.
github ·#CVE-2026-20841#Windows
25m ago ▶ EXP
🛠 Demonstrate remote code execution in Windows Notepad versions below 11.2510 using the CVE-2026-20841 proof of concept. HIGH POC
Demonstrate remote code execution in Windows Notepad versions below 11.2510 using the CVE-2026-20841 proof of concept.
github ·#CVE-2026-20841#Windows
31m ago ▶ EXP
🛠️ Exploit CVE-2025-2304 in Camaleon CMS easily with this Python script for privilege escalation, tested on version 2.9.0. HIGH POC
Exploit CVE-2025-2304 in Camaleon CMS easily with this Python script for privilege escalation, tested on version 2.9.0.
github ·#CVE-2025-2304#Python
44m ago ▶ EXP
🔍 Identify and understand the local privilege escalation vulnerability (CVE-2025-68921) in Nahimic audio software, impacting many gaming laptops. HIGH POC
Identify and understand the local privilege escalation vulnerability (CVE-2025-68921) in Nahimic audio software, impacting many gaming laptops.
github ·#CVE-2025-68921
1d ago ▶ EXP
[webapps] Grav CMS 2.0.0-beta.2 - Remote Code Execution HIGH
Remote Code Execution in Grav CMS 2.0.0-beta.2.
exploit-db
1d ago ▶ EXP
[local] Linux Kernel 6.8 - Local Privilege Escalation HIGH
exploit-db ·#Linux
5d ago ▶ EXP
Land #21434, adds Dirtyfrag privilege escalation modules (CVE-2026-43284, CVE-20 HIGH
metasploit ·#CVE-2026-43284
2m ago ▶ EXP
Demonstrate and analyze the CVE-2026-31802 path traversal vulnerability in npm tar, enabling arbitrary file overwrite via symlink extraction. POC
Demonstrate and analyze the CVE-2026-31802 path traversal vulnerability in npm tar, enabling arbitrary file overwrite via symlink extraction.
github ·#CVE-2026-31802#Node.js
16m ago ▶ EXP
Expose and detail an unauthenticated stored XSS vulnerability in the Google Cloud Vertex AI Python SDK affecting versions 1.98.0 to 1.130.9. POC
Expose and detail an unauthenticated stored XSS vulnerability in the Google Cloud Vertex AI Python SDK affecting versions 1.98.0 to 1.130.9.
github ·#CVE-2026-2472#GCP#Python
◊ LABS & RESEARCH 9
18h ago ◇ LAB
[UPDATE] [mittel] TeamViewer: Schwachstelle ermöglicht Privilegieneskalation HIGH
A privilege escalation vulnerability in TeamViewer may be exploited by red teamers to simulate advanced attacks.
BSI
7h ago ◇ LAB
Gitlab have also kicked NightmareEclipse off their service. gitlab.com/nightmare-ec... cc @campuscodi.risky.biz
Red teamers should be aware of NightmareEclipse's removal from Gitlab to assess potential impact on their tactics.
@doublepulsar.com ·#GitLab
9h ago ◇ LAB
The Silent Ransom Group is now sending in-person hackers to law firms to hack their networks FBI, PDF: www.ic3.gov/CSA/2026/260...
The Silent Ransom Group's in-person hacking tactics may require red teamers to adapt their social engineering simulations.
@campuscodi.risky.biz
12h ago ◇ LAB
🫶 Welcome back #Iran! Metrics show a further rise in connectivity as mobile networks and other segments are reconnected to the global internet: • Filternet remains in place but can be worked around • WhatsApp now restricted, requiring c...
Iran's reconnection to the global internet may allow red teamers to test their tactics against new targets and vulnerabilities.
@netblocks.org
18h ago ◇ LAB
[UPDATE] [hoch] Microsoft SharePoint Server 2016 und SharePoint Server 2019: Schwachstelle ermöglicht Codeausführung
A code execution vulnerability in Microsoft SharePoint Server may be used by red teamers to test their web application attack skills.
BSI ·#SharePoint
18h ago ◇ LAB
[UPDATE] [hoch] Microsoft Azure: Mehrere Schwachstellen
Multiple vulnerabilities in Microsoft Azure may be exploited by red teamers to simulate cloud-based attacks.
BSI ·#Azure
20h ago ◇ LAB
AI Threat Landscape Digest March-April 2026
Red teamers should be aware of the AI threat landscape to stay ahead of emerging threats and tactics.
Check Point
23h ago ◇ LAB
From Cookies to Keys: The Threat of Session Hijacking
Session hijacking threats may require red teamers to adapt their testing strategies to include cookie and session management attacks.
Huntress
1d ago ◇ LAB
PCI DSS, Telephone Payments, and the Problems With VoIP
Red teamers should be aware of the challenges of testing VoIP systems to ensure their tactics are effective against modern communication systems.
TrustedSec
☣ MALWARE 2
5m ago ☣ MAL
Demonstrate exploitation of Signal K Server CVE-2025-66398 allowing unauthenticated attackers to inject backdoor and enable remote code execution. HIGH POC
Demonstrate exploitation of Signal K Server CVE-2025-66398 allowing unauthenticated attackers to inject backdoor and enable remote code execution.
github ·#CVE-2025-66398
5d ago ☣ MAL
The Gentleman Ransomware | Defense Evasion TTPs Uncovered | Huntress
Defense evasion TTPs of Gentleman Ransomware have been uncovered.
Huntress
☣ RANSOM 6
10h ago ◈ RAN
[nova] Textile Testing Services of America (US)
ransomlive
16h ago ◈ RAN
[krybit] ctps.tp.edu.tw (TW)
ransomlive
17h ago ◈ RAN
[qilin] Hamister Group (RU)
ransomlive
17h ago ◈ RAN
[akira] Sunrise, Toscana Country Club,Andalusia Country Club.
ransomlive
22h ago ◈ RAN
[lamashtu] H-W-G & Acros Sport (DE)
ransomlive
1d ago ◈ RAN
[play] GW Mechanical (US)
ransomlive
★ NEWS 7
18h ago ◇ LAB
[UPDATE] [mittel] TeamViewer: Schwachstelle ermöglicht Privilegieneskalation HIGH
A privilege escalation vulnerability in TeamViewer may be exploited by red teamers to simulate advanced attacks.
BSI
7h ago ◇ LAB
Gitlab have also kicked NightmareEclipse off their service. gitlab.com/nightmare-ec... cc @campuscodi.risky.biz
Red teamers should be aware of NightmareEclipse's removal from Gitlab to assess potential impact on their tactics.
@doublepulsar.com ·#GitLab
9h ago ◇ LAB
The Silent Ransom Group is now sending in-person hackers to law firms to hack their networks FBI, PDF: www.ic3.gov/CSA/2026/260...
The Silent Ransom Group's in-person hacking tactics may require red teamers to adapt their social engineering simulations.
@campuscodi.risky.biz
10h ago ◈ RAN
[nova] Textile Testing Services of America (US)
ransomlive
12h ago ◇ LAB
🫶 Welcome back #Iran! Metrics show a further rise in connectivity as mobile networks and other segments are reconnected to the global internet: • Filternet remains in place but can be worked around • WhatsApp now restricted, requiring c...
Iran's reconnection to the global internet may allow red teamers to test their tactics against new targets and vulnerabilities.
@netblocks.org
16h ago ◈ RAN
[krybit] ctps.tp.edu.tw (TW)
ransomlive
17h ago ◈ RAN
[qilin] Hamister Group (RU)
ransomlive
↑ TRENDS top-5
CVEs
CVE-2026-208413
CVE-2020-105322
CVE-2024-388562
CVE-2025-148472
CVE-2025-23042
Tools
nuclei4
Actors & Targets
Akira2
Qilin2
akira1
cmdorganization1
incransom1
◈ PULSE & WATCH 24h
-24h-12hnow
#Fortinet 0
#Ivanti 0
#Citrix 0
#Chrome 2
#Kubernetes 0
#VMware 0
#OpenSSL 0
#Linux-Kernel 0