ProjectGlasswing Disclosure Vulnerability Security Update Advisory (Anthropic)
Overview Anthropic has announced a number of major open source software vulnerabilities in the course of its ProjectGlasswing effort. Affected Products the affected products are NGINX Open Source, NGINX Plus, jq, MapServer, Temporal Server, wolfSSL, HashiCorp Nomad / Nomad Enterprise, libyang, Craft CMS, Mastodon, gix / gitoxide, junrar, FreeRDP, Ghost,
WordPress Plugin Security Update Advisory (CVE-2026-8732)
Overview A security update has been issued for a vulnerability in the WordPress plugin WP Maps Pro. the vulnerability is an unauthenticated privilege escalation vulnerability (CVE-2026-8732), which can be exploited through the wpgmptempaccess_ajax AJAX Action (a feature that allows web applications to handle asynchronous requests) related to the way threat
KnowledgeDeliver Product Security Update Advisory (CVE-2026-5426)
A security update has been released for the KnowledgeDeliver product. the vulnerability addressed is CVE-2026-5426, a remote code execution vulnerability based on ViewState deserialization (the process of converting stored Data back into objects). the affected products are distributions of KnowledgeDeliver versions prior to February 24, 2026. a Vulnerability Patch has
IBM Product Security Update Advisory
Overview Security updates have been released to address vulnerabilities in IBM products. the affected products are IBM Verify Identity Access Container, IBM Security Verify Access Container, IBM Verify Identity Access, and IBM Security Verify Access. Affected products and versions IBM Verify Identity Access Container versions 11.0 and later and 11.0.2
ExifTool Product Security Update Advisory (CVE-2026-3102)
Overview A security update has been released to address a vulnerability in the ExifTool product. the target is ExifTool version 13.50 and earlier. Vulnerability Information CVE-2026-3102 is an OS command injection vulnerability in ExifTool. the vulnerability has been patched in the latest update. Impact and advisory If you are using
Mozilla Product Security Update Advisory
Overview A security update has been released to address a vulnerability in Mozilla products. the target is Firefox versions below 151.0.3, updating to the latest version will provide the Vulnerability Patch. Affected Products Firefox 151.0.3 and earlier. Vulnerability Resolved CVE-2026-10701. Graphics: Boundary condition mishandling vulnerability in the Text component. CVE-2026-10702.
Mirasvit Product Security Update Advisory (CVE-2026-45247)
Overview A security update has been released to address a vulnerability found in a Mirasvit product. the target is Mirasvit Cache Warmer for Magento 2, and versions below 1.11.12 are affected. Vulnerability information the vulnerability is CVE-2026-45247. the vulnerability type is PHP object injection. a patch for this vulnerability has
Ghost CMS Product Security Update Advisory (CVE-2026-26980)
Overview A security update has been released to address a SQL Injection vulnerability (CVE-2026-26980) in the Ghost CMS product. users of the affected products should update to the latest version. Affected Products Ghost CMS versions 3.24.0 through 6.19.1 and earlier. CVE-2026-26980 is resolved in Ghost CMS version 6.19.1 and later.
Notepad++ Security Update Advisory
Overview A security update has been released to address vulnerabilities in Notepad++. the vulnerabilities could lead to a denial of service (a condition that causes the Service to stop working properly) and arbitrary code execution (a risk that could cause a threat actor to execute unwanted code). Target Products Notepad++
IBM Product Security Update Advisory
Security updates have been released to address vulnerabilities in IBM products. the target product is IBM WebSphere Application Server. affected Versions are 8.5.0.0 and above but below 8.5.5.30 and 9.0.0.0 and above but below 9.0.5.29. the vulnerabilities addressed are an identity masquerade vulnerability (CVE-2026-8644) and remote code execution vulnerabilities (CVE-2026-9311,
