🔴 CVE-2025-10484 - Critical The Registration & Login with Mobile Phone Number for WooCommerce plugin for WordPress is vulnerable to Authentication Bypass in all versions up to, and including, 1.3.1. This is due to t... https://t.co/4v64Yp6WzW

🔴 CVE-2025-15403 - Critical The RegistrationMagic plugin for WordPress is vulnerable to Privilege Escalation in all versions up to, and including, 6.0.7.1. This is due to the 'add_menu' function is accessible via th... https://t.co/r4qUV7sxFG

🟠 CVE-2026-20960 - High Improper authorization in Microsoft Power Apps allows an authorized attacker to execute code over a network. https://t.co/Amn9JAB0n1

🔴 CVE-2026-23800 - Critical Incorrect Privilege Assignment vulnerability in Modular DS modular-connector allows Privilege Escalation.This issue affects Modular DS: from 2.5.2 before 2.6.0. https://t.co/n1nzsWt66o

🔴 CVE-2026-23722 - Critical WeGIA is a Web Manager for Charitable Institutions. Prior to 3.6.2, a Reflected Cross-Site Scripting (XSS) vulnerability was discovered in the WeGIA system, specifically within the html/m... https://t.co/dmGQeF0Ufe

🔴 CVE-2026-23744 - Critical MCPJam inspector is the local-first development platform for MCP servers. Versions 1.4.2 and earlier are vulnerable to remote code execution (RCE) vulnerability, which allows an attacker ... https://t.co/oORm3VM6qp

🟠 CVE-2026-23742 - High Skipper is an HTTP router and reverse proxy for service composition. The default skipper configuration before 0.23.0 was -lua-sources=inline,file. The problem starts if untrusted users can cr... https://t.co/IH8xMWkfr5

🟠 CVE-2025-62291 - High In the eap-mschapv2 plugin (client-side) in strongSwan before 6.0.3, a malicious EAP-MSCHAPv2 server can send a crafted message of size 6 through 8, and cause an integer underflow that potent... https://t.co/jy880Gwwuh

🟠 CVE-2026-23535 - High wlc is a Weblate command-line client using Weblate's REST API. Prior to 1.17.2, the multi-translation download could write to an arbitrary location when instructed by a crafted server. This v... https://t.co/iKJBV93kxQ

🔴 CVE-2026-23523 - Critical Dive is an open-source MCP Host Desktop Application that enables integration with function-calling LLMs. Prior to 0.13.0, crafted deeplink can install an attacker-controlled MCP server co... https://t.co/fJZeX2k9rL

🔴 CVE-2025-60021 - Critical Remote command injection vulnerability in heap profiler builtin service in Apache bRPC ((all versions < 1.15.0)) on all platforms allows attacker to inject remote command. Root Caus... https://t.co/LOlaFvVaw2

🔴 CVE-2025-67822 - Critical A vulnerability in the Provisioning Manager component of Mitel MiVoice MX-ONE 7.3 (7.3.0.0.50) through 7.8 SP1 (7.8.1.0.14) could allow an unauthenticated attacker to conduct an authentic... https://t.co/ApXYxZzTIP

🟠 CVE-2025-67823 - High A vulnerability in the Multimedia Email component of Mitel MiContact Center Business through 10.2.0.10 and Mitel CX through 1.1.0.1 could allow an unauthenticated attacker to conduct a Cross-... https://t.co/5zoplnX7E1

🟠 CVE-2026-0695 - High In ConnectWise PSA versions older than 2026.1, Time Entry notes stored in the Time Entry Audit Trail may be rendered without applying output encoding to certain content. Under specific conditi... https://t.co/OP80Wqk5r6

🟠 CVE-2025-14510 - High Incorrect Implementation of Authentication Algorithm vulnerability in ABB ABB Ability OPTIMAX.This issue affects ABB Ability OPTIMAX: 6.1, 6.2, from 6.3.0 before 6.3.1-251120, from 6.4.0 befo... https://t.co/82abE3hDfe

🔴 CVE-2025-62581 - Critical Delta Electronics DIAView has multiple vulnerabilities. https://t.co/7pdD14OoWy

🔴 CVE-2025-14233 - Critical Invalid free in CPCA file deletion processing on Small Office Multifunction Printers and Laser Printers(*) which may allow an attacker on the network segment to trigger the affected produ... https://t.co/2NUILYt9UR

🔴 CVE-2025-14232 - Critical Buffer overflow in XML processing of XPS file in Small Office Multifunction Printers and Laser Printers(*) which may allow an attacker on the network segment to trigger the affected produ... https://t.co/XE2luEgm5u

🔴 CVE-2025-14231 - Critical Buffer overflow in print job processing by WSD on Small Office Multifunction Printers and Laser Printers(*) which may allow an attacker on the network segment to trigger the affected prod... https://t.co/ENbzgj3HG7

🔴 CVE-2025-14237 - Critical Buffer overflow in XPS font parse processing on Small Office Multifunction Printers and Laser Printers(*) which may allow an attacker on the network segment to trigger the affected produc... https://t.co/wFCWcMb2f4