Vulnerabilities Critical RCE Vulnerability in Grandstream GXP1600 VoIP Phones Allows Root Access Without Authentication , and Dark Web Informer February 18, 2026 Paid Members Public
Vulnerabilities Google Chrome Zero-Day Exploited in the Wild: Use-After-Free in CSS Enables Remote Code Execution (CVE-2026-2441) , and Dark Web Informer February 16, 2026 Paid Members Public
Vulnerabilities XML Signature Wrapping Vulnerability in SAP NetWeaver ABAP Enables Identity Tampering and Unauthorized Access (CVE-2026-23687) , and Dark Web Informer February 10, 2026 Paid Members Public
Vulnerabilities Critical Pre-Auth RCE Vulnerability in BeyondTrust Remote Support & PRA Exposes Thousands of Instances (CVE-2026-1731) , and Dark Web Informer February 10, 2026 Paid Members Public
Vulnerabilities CVE-2026-0755: Reported Zero-Day in Gemini MCP Tool Could Allow Remote Code Execution , and Dark Web Informer January 30, 2026 Paid Members Public
Vulnerabilities CVE-2026-1281 & CVE-2026-1340: A code injection in Ivanti Endpoint Manager Mobile allowing attackers to achieve unauthenticated remote code execution , and Dark Web Informer January 30, 2026 Paid Members Public
Vulnerabilities SolarWinds Web Help Desk RCE Hit by Multiple Critical Security Flaws; CVE-2025-40551, CVE-2025-40552, CVE-2025-40553, CVE-2025-40554 , and Dark Web Informer January 29, 2026 Paid Members Public
Vulnerabilities AISLE Goes 12-for-12 on OpenSSL Vulnerability Detection , and Dark Web Informer January 29, 2026 Paid Members Public
Vulnerabilities CVE-2025-52691: SmarterMail Authentication Bypass and RCE PoC , and Dark Web Informer January 28, 2026 Paid Members Public
Vulnerabilities CVE-2026-24858: Fortinet Multiple Products Authentication Bypass Using an Alternate Path or Channel Vulnerability , and Dark Web Informer January 28, 2026 Paid Members Public
Vulnerabilities CVE-2024-9932: An unauthenticated arbitrary file upload vulnerability in the Wux Blog Editor WordPress plugin, leading to remote command execution (RCE) , and Dark Web Informer January 27, 2026 Paid Members Public
Vulnerabilities CVE-2026-21509: Reliance on untrusted inputs in a security decision in Microsoft Office allows an unauthorized attacker to bypass a security feature locally , and Dark Web Informer January 26, 2026 Paid Members Public
Vulnerabilities CISA Adds Five Vulnerabilities to Known Exploited Vulnerabilities Catalog , and Dark Web Informer January 23, 2026 Paid Members Public
Vulnerabilities Attackers Actively Probing RCE Vulnerability in Cisco Enterprise Communications Products , and Dark Web Informer January 21, 2026 Paid Members Public
News Multiple Veeam CVEs Identified: Critical Flaws Allow RCE and High-Privilege Actions , and Dark Web Informer January 7, 2026 Paid Members Public
Vulnerabilities [Video] CVE-2025-6389: WordPress Sneeit Framework plugin vulnerability currently under active exploitation , and Dark Web Informer January 6, 2026 Paid Members Public
![[Video] CVE-2025-6389: WordPress Sneeit Framework plugin vulnerability currently under active exploitation](/content/images/size/w1304/format/webp/2026/01/CVE-2025-6389.png)