📰 DAILY THREAT BRIEFING
Sunday, June 7, 2026
12 News Items
HN · BleepingComputer · Krebs · Dark Reading · SANS · THN Intel · Unit 42 · Security.com

📰 Cybersecurity News Headlines

Top stories from leading cybersecurity publications as of June 7, 2026.

  1. Critical Everest Forms Pro flaw exploited to take over WordPress sites
    — Bleeping Computer

    Hackers are actively exploiting a critical vulnerability (CVE-2026-3300) in the Everest Forms Pro plugin, which lets them take complete cont…
  2. New ChatGPT Lockdown Mode Limits Tools That Could Enable Data Exfiltration
    — The Hacker News

    OpenAI has begun rolling out a new Lockdown Mode to ChatGPT for eligible personal accounts to reduce the risk of data exfiltration arising f…
  3. Free Apps Are Quietly Turning Smart TVs Into Web-Scraping Proxies for AI
    — The Hacker News

    A researcher has reverse-engineered the iOS SDK that Bright Data embeds in consumer apps and documented how it turns devices, including alwa…
  4. CISA Adds Actively Exploited SolarWinds Serv-U DoS Flaw to KEV Catalog
    — The Hacker News

    The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has added a high-severity security flaw impacting SolarWinds Serv-U multi-p…
  5. Suspicious Polyfill login prompts pop up on Toshiba, Muji websites
    — Bleeping Computer

    Tech giant Toshiba and mega-retailer Muji warned visitors that suspicious sign-in screens popping up on their websites could collect credent…
  6. CISA: Hackers now exploit SolarWinds Serv-U flaw to crash servers
    — Bleeping Computer

    CISA warned today that hackers are now actively exploiting a recently patched high-severity SolarWinds Serv-U flaw to crash servers. […]
  7. Exposed Fuel Tank Gauges Under Attack in the US
    — Dark Reading

    Threat actors are taking advantage of Internet-exposed tank gauges by breaching gas stations, opening the door to disruption.
  8. Adaptive, Agentic AI Worms Loom as Next Enterprise Threat
    — Dark Reading

    AI worms, or "viruses with wings and brains," adapt to new environments, seek out vulnerabilities, and will likely strike within a year, res…
  9. Threat Brief: Active Exploitation of PAN-OS CVE-2026-0257
    — Unit 42

    We include indicators of activity and mitigations for PAN-OS vulnerability CVE-2026-0257. The post Threat Brief: Active Exploitation of PAN-…
  10. Trump AI Order Seeks Voluntary Frontier Model Testing
    — Dark Reading

    The White House's executive order establishes voluntary framework for early government access to frontier models while investing in federal …
  11. The Evil MSI Background is Back!, (Fri, Jun 5th)
    — SANS ISC

    A few months ago, I wrote a diary about a payload that was embedded into a JPEG picture. It was a MSI-branded background[1]. Yesterday, I sp…
  12. ISC Stormcast For Friday, June 5th, 2026 https://isc.sans.edu/podcastdetail/9960, (Fri, Jun 5th)
    — SANS ISC

    (c) SANS Internet Storm Center. https://isc.sans.edu Creative Commons Attribution-Noncommercial 3.0 United States License.

🪲 NVD — Last 20 Scored Vulnerabilities

Latest scored CVEs from the National Vulnerability Database (7126 in last 30 days).
Critical: 0 · High: 5 · Medium: 14 · Low: 1. View full dashboard →

  1. CVE-2026-26422
    — CVSS 8.4 (HIGH)

    clash-verge-service-ipc before 2.3.0 has a world-reachable IPC endpoint, leading to local privilege escalation.
  2. CVE-2026-11441
    — CVSS 6.3 (MEDIUM)

    A vulnerability was identified in theonedev onedev up to 15.0.5. This vulnerability affects the function canAccessIssue of the file /issues/ of the component Pull Request Handler. Such manipulation of the argument issue …
  3. CVE-2026-11440
    — CVSS 6.3 (MEDIUM)

    A vulnerability was determined in theonedev onedev up to 15.0.5. This affects an unknown part of the file /repositories/{projectId}/default-branch of the component REST API. This manipulation of the argument project.defa…
  4. CVE-2026-11439
    — CVSS 6.3 (MEDIUM)

    A vulnerability was found in theonedev onedev up to 15.0.5. Affected by this issue is some unknown functionality of the file /projects/ of the component Parent Project Handler. The manipulation of the argument project.pa…
  5. CVE-2026-11438
    — CVSS 6.3 (MEDIUM)

    A vulnerability has been found in theonedev onedev up to 15.0.5. Affected by this vulnerability is an unknown functionality of the file /projects. The manipulation of the argument project.forkedFromId leads to improper a…
  6. CVE-2026-11437
    — CVSS 7.3 (HIGH)

    A flaw has been found in perfree go-fastdfs-web up to 1.3.7. Affected is the function checkServer of the file /install/checkServer of the component Installation Endpoint. Executing a manipulation can lead to server-side …
  7. CVE-2026-11436
    — CVSS 4.3 (MEDIUM)

    A vulnerability was detected in Mage AI up to 0.9.79. This impacts the function useMutation of the file mage_ai/frontend/components/Sessions/SignForm/index.tsx of the component Sign-in Flow. Performing a manipulation of …
  8. CVE-2026-11435
    — CVSS 7.3 (HIGH)

    A security vulnerability has been detected in Jinher OA 1.0. This affects an unknown function of the file nextselectplan.aspx. Such manipulation of the argument httpOID leads to sql injection. The attack may be launched …
  9. CVE-2026-11434
    — CVSS 2.4 (LOW)

    A weakness has been identified in FluentCMS 0.0.5. The impacted element is an unknown function of the file /admin/blocks of the component Blocks Plugin. This manipulation causes cross site scripting. The attack may be in…
  10. CVE-2026-11413
    — CVSS 8.8 (HIGH)

    A security vulnerability has been detected in JingDong JD Cloud Box AX6600 4.5.3.r4546. The impacted element is the function set_macfilter of the file /sbin/jdcweb_rpc. The manipulation leads to stack-based buffer overfl…
  11. CVE-2026-11412
    — CVSS 6.3 (MEDIUM)

    A weakness has been identified in Jinher OA C6. The affected element is an unknown function of the file /C6/JHSoft.Web.ModuleCount/GetFormSn.aspx. Executing a manipulation of the argument queryID can lead to sql injectio…
  12. CVE-2026-11411
    — CVSS 4.4 (MEDIUM)

    A security flaw has been discovered in iAI Lab PDF AI App 4.21.0 on Android. Impacted is the function getExternalCacheDir of the component chatpdf.pro. Performing a manipulation of the argument _display_name results in p…
  13. CVE-2026-11408
    — CVSS 6.3 (MEDIUM)

    A vulnerability was identified in vertex-app vertex up to 2026.02.12. This issue affects some unknown processing of the file app/model/LogMod.js of the component Log Viewer Endpoint. Such manipulation of the argument req…
  14. CVE-2026-11406
    — CVSS 6.3 (MEDIUM)

    A vulnerability was determined in GL.iNet MT3000 up to 4.4.5. This vulnerability affects unknown code of the file ovpnclient.sh of the component OpenVPN Client Import Workflow. This manipulation causes command injection.…
  15. CVE-2026-9851
    — CVSS 7.2 (HIGH)

    The Booking Package plugin for WordPress is vulnerable to Privilege Escalation via Account Takeover in versions up to, and including, 1.7.16. This is due to a missing capability check on the 'updateUser' branch of the pa…
  16. CVE-2026-9829
    — CVSS 6.5 (MEDIUM)

    The Photo Gallery by 10Web – Mobile-Friendly Image Gallery plugin for WordPress is vulnerable to time-based SQL Injection via 'compact_album_order_by' Shortcode Parameter in all versions up to, and including, 1.8.41 du…
  17. CVE-2026-9594
    — CVSS 4.4 (MEDIUM)

    The WP Maps – Google Maps,OpenStreetMap,Mapbox,Store Locator,Listing,Directory & Filters plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'location_messages' parameter in all versions up to, an…
  18. CVE-2026-9016
    — CVSS 5.3 (MEDIUM)

    The Debug Log Manager – Conveniently Monitor and Inspect Errors plugin for WordPress is vulnerable to Improper Output Neutralization for Logs in all versions up to, and including, 2.5.0. This is due to the `log_js_erro…
  19. CVE-2026-8839
    — CVSS 5.3 (MEDIUM)

    The MapPress Maps for WordPress plugin for WordPress is vulnerable to Authorization Bypass Through User-Controlled Key in all versions up to, and including, 2.96.6. This is due to missing ownership verification in the RE…
  20. CVE-2026-8611
    — CVSS 4.3 (MEDIUM)

    The Klamra Paycal for Aspaclaria plugin for WordPress is vulnerable to Insecure Direct Object Reference in all versions up to, and including, 1.1.4 via the 'invoice_id' parameter due to missing validation on a user contr…

Source: NVD CVE API 2.0

Generated by CryptXNet.ai Threat Intelligence Platform · June 7, 2026 · Sources: The Hacker News, Bleeping Computer, Krebs on Security, Dark Reading, SANS ISC, THN Threat Intel, Unit 42, Security.com