Activity

Vulnerability name

SmarterTools SmarterMail Missing Authentication for Critical Function Vulnerability

Product

SmarterTools SmarterMail

CVE-2026-24423 is an unauthenticated remote code execution vulnerability found in SmarterTools SmarterMail versions prior to build 9511. The flaw resides within the `ConnectToHub` API method, which lacks proper authentication controls. An attacker can exploit this vulnerability by directing the vulnerable SmarterMail instance to connect to a malicious HTTP server. This malicious server then delivers operating system commands, which are subsequently executed by the SmarterMail application. This vulnerability has been added to CISA's Known Exploited Vulnerabilities Catalog and is reportedly being exploited in the wild, including in ransomware campaigns.

Vulnerability name

React Native Community CLI OS Command Injection Vulnerability

Product

React Native Community CLI

CVE-2025-11953 is a vulnerability in the `@react-native-community/cli` NPM package, specifically affecting versions 4.8.0 through 20.0.0-alpha.2. This flaw stems from the Metro development server, used by React Native, binding to external interfaces by default and exposing an "/open-url" endpoint susceptible to OS command injection. The vulnerability allows unauthenticated network attackers to send a POST request to the server, running arbitrary executables. On Windows, attackers can execute arbitrary shell commands with fully controlled arguments. While macOS and Linux systems have slightly more restricted exploitation paths, researchers believe arbitrary command execution is achievable. The package has been patched in version 20.0.0.

Vulnerability name

SolarWinds Web Help Desk Deserialization of Untrusted Data Vulnerability

Product

SolarWinds Web Help Desk

CVE-2025-40551 is a remote code execution (RCE) vulnerability identified in SolarWinds Web Help Desk (WHD) software. This flaw originates from an untrusted data deserialization weakness, which allows an attacker to execute commands on the host machine. Exploitation of CVE-2025-40551 can occur without requiring authentication. This vulnerability is often discussed alongside other related issues in SolarWinds WHD, forming potential attack chains.

Vulnerability name

Sangoma FreePBX OS Command Injection Vulnerability

Product

Sangoma FreePBX

CVE-2025-64328 identifies a command injection vulnerability within the FreePBX Endpoint Manager module. Specifically, the flaw resides in the `check_ssh_connect()` function of the Filestore component. This post-authentication vulnerability allows an authenticated attacker to execute arbitrary shell commands as the `asterisk` user on the affected system. This vulnerability impacts FreePBX Endpoint Manager versions 17.0.2.36 and above, prior to version 17.0.3. Reports indicate that a financially motivated hacker group, INJ3CTOR3, has actively exploited CVE-2025-64328 since early December 2025 to deploy a persistent webshell known as "EncystPHP," enabling them to gain administrative control over compromised VoIP systems.

Vulnerability name

GitLab Community and Enterprise Editions Server-Side Request Forgery (SSRF) Vulnerability

Product

GitLab Community and Enterprise Editions

An issue has been discovered in GitLab CE/EE affecting all versions starting from 10.5 before 14.3.6, all versions starting from 14.4 before 14.4.4, all versions starting from 14.5 before 14.5.2. Unauthorized external users could perform Server Side Requests via the CI Lint API

Vulnerability name

Sangoma FreePBX Improper Authentication Vulnerability

Product

Sangoma FreePBX

CVE-2019-19006 is an improper authentication vulnerability found in Sangoma FreePBX versions 115.0.16.26 and below, 14.0.13.11 and below, and 13.0.197.13 and below. This flaw allows a remote attacker to bypass the login mechanism and gain full administrative access to the FreePBX system without valid credentials. Exploiting this vulnerability enables an unauthenticated user to effectively take control of the PBX web interface, allowing them to change configurations, access call logs, and manage users. The vulnerability is categorized as an incorrect access control issue.