Look up signals and intelligence for any entity
30d signal volume
A critical security vulnerability (CVE-2026-3854, CVSS 8.7) has been disclosed affecting GitHub.com and GitHub Enterprise Server. The flaw is a command injection issue allowing authenticated users with repository push access to achieve remote code execution through a single git push command.
CISA added four vulnerabilities to its Known Exploited Vulnerabilities catalog on Friday, including CVE-2024-57726 (CVSS 9.9), a missing authorization vulnerability affecting SimpleHelp, Samsung MagicINFO 9 Server, and D-Link DIR-823X series routers. These vulnerabilities are currently being actively exploited in the wild.
Intelligence item summarizing vulnerability disclosures from April 2026 across multiple product categories including web frameworks (ThinkPHP 5.0.23 RCE), business software (Fortra GoAnywhere MFT authentication bypass), database systems (ELBA5 RCE), and desktop applications. Multiple high-severity remote code execution and local privilege escalation vulnerabilities are documented with CVSS scores ranging from 5.3 to 9.8, alongside associated exploit references.
A high-severity SSRF vulnerability in LMDeploy, an open-source toolkit for large language model deployment, is actively being exploited in the wild within 13 hours of public disclosure. CVE-2026-33626 (CVSS 7.5) could allow attackers to access sensitive systems through Server-Side Request Forgery attacks.
Microsoft revised its advisory for CVE-2026-32202, a high-severity Windows Shell spoofing vulnerability (CVSS 4.3) that has been actively exploited in the wild. The flaw allows attackers to access sensitive information and was patched as part of Microsoft's Patch Tuesday update.