Skip to main content
← All Articles

Tag

#RCE

190 articles

Advertisement

FortiSandbox Command Injection (CVE-2026-25089) & Critical Vendor Patches
CRITICAL
Vulnerabilities

FortiSandbox Command Injection (CVE-2026-25089) & Critical Vendor Patches

Critical patches from Fortinet, Ivanti, and SAP address vulnerabilities including CVE-2026-25089 (FortiSandbox command injection), enabling RCE and info disclosure.

Runtime Rebel Intel
4 min read·Jun 10, 2026
VU
HIGH
Vulnerabilities

Adobe Addresses 123 Vulnerabilities: Focus on Experience Manager RCE

Adobe's extensive patch cycle resolves 123 vulnerabilities across multiple products, with a critical focus on Experience Manager arbitrary code execution flaws.

Runtime Rebel Intel
4 min read·Jun 10, 2026
Veeam Backup & Replication RCE via CVE-2026-44963 — Patch Guide
CRITICAL
Vulnerabilities

Veeam Backup & Replication RCE via CVE-2026-44963 — Patch Guide

A critical RCE flaw (CVE-2026-44963) in Veeam Backup & Replication allows authenticated domain users to execute code. Patch immediately.

Runtime Rebel Intel
4 min read·Jun 9, 2026
CVE-2026-42271: BerriAI LiteLLM RCE Exploited in the Wild
CRITICAL
Vulnerabilities

CVE-2026-42271: BerriAI LiteLLM RCE Exploited in the Wild

CISA warns of active exploitation of CVE-2026-42271 in BerriAI LiteLLM. This command injection flaw allows attackers to achieve RCE and compromise AI proxies.

Runtime Rebel Intel
3 min read·Jun 9, 2026
VU
CRITICAL
Vulnerabilities

Gogs 0.13.0 Patch: Fixing Critical CVE-2024-39930 RCE Vulnerability

Gogs has patched a critical zero-day vulnerability (CVE-2024-39930) in its built-in SSH server that enables unauthenticated remote code execution.

Runtime Rebel Intel
3 min read·Jun 8, 2026
CVE-2026-3300: Critical RCE in Everest Forms Pro — Patch Now
CRITICAL
Vulnerabilities

CVE-2026-3300: Critical RCE in Everest Forms Pro — Patch Now

Attackers are exploiting CVE-2026-3300 in Everest Forms Pro up to 1.9.12 to achieve RCE. Learn how to protect your WordPress site from full compromise.

Runtime Rebel Intel
3 min read·Jun 5, 2026
Cisco Unified CM RCE via CVE-2026-20230 — Mitigation Guide
HIGH
Vulnerabilities

Cisco Unified CM RCE via CVE-2026-20230 — Mitigation Guide

Cisco patches CVE-2026-20230, a high-severity SSRF in Unified Communications Manager. Learn how public PoC code impacts your security and find remediation steps.

Runtime Rebel Intel
3 min read·Jun 4, 2026
VU
CRITICAL
Vulnerabilities

Mirasvit Full Page Cache Warmer RCE via CVE-2024-34961 - Patch Now

Attackers are exploiting a critical RCE vulnerability in Mirasvit's Full Page Cache Warmer for Magento. Learn how to detect and mitigate CVE-2024-34961.

Runtime Rebel Intel
4 min read·Jun 4, 2026
VU
CRITICAL
Vulnerabilities

CVE-2024-20469: Critical Cisco Unified CM Root Escalation Risk

Cisco patches a critical SQL injection flaw (CVE-2024-20469) in Unified Communications Manager that allows remote attackers to gain full root-level access.

Runtime Rebel Intel
3 min read·Jun 4, 2026
CVE-2026-45247: Magento Mirasvit Cache Warmer RCE Exploit Analysis
CRITICAL
Vulnerabilities

CVE-2026-45247: Magento Mirasvit Cache Warmer RCE Exploit Analysis

CISA adds CVE-2026-45247, a critical Mirasvit Cache Warmer RCE flaw impacting Magento sites, to the KEV catalog following reports of active exploitation.

Runtime Rebel Intel
3 min read·Jun 4, 2026
VU
HIGH
Vulnerabilities

CVE-2026-45247: Mirasvit Full Page Cache Warmer Exploited — Patch Now

CISA adds CVE-2026-45247, a deserialization vulnerability in Mirasvit Full Page Cache Warmer for Magento, to the KEV catalog after reports of active exploitation.

Runtime Rebel Intel
3 min read·Jun 3, 2026
VU
CRITICAL
Vulnerabilities

Acer Wave 7 Router RCE via CVE-2024-41591 and CVE-2024-41592

Acer addresses two critical 10.0 CVSS zero-day vulnerabilities in Wave 7 mesh routers that allow unauthenticated remote code execution and full takeover.

Runtime Rebel Intel
3 min read·Jun 3, 2026