Advertisement
VU
CRITICAL
Vulnerabilities
CVE-2026-42897: Microsoft Exchange XSS Under Active Exploitation
CISA adds CVE-2026-42897, a Microsoft Exchange Server Cross-Site Scripting vulnerability, to KEV Catalog due to active exploitation. Immediate patching advised.
Runtime Rebel Intel
4 min read·May 15, 2026
VU
HIGH
Vulnerabilities
Zimbra XSS Attacks: Over 10,000 Servers Vulnerable — Patch Now
Ongoing cross-site scripting (XSS) attacks exploit a flaw in Zimbra Collaboration Suite (ZCS), leaving over 10,000 online servers vulnerable.
Runtime Rebel Intel
4 min read·Apr 24, 2026