📰 DAILY THREAT BRIEFING
Sunday, June 14, 2026
12 News Items
HN · BleepingComputer · Krebs · Dark Reading · SANS · THN Intel · Unit 42 · Security.com

📰 Cybersecurity News Headlines

Top stories from leading cybersecurity publications as of June 14, 2026.

  1. Ex-school district employee jailed for hacks on former employer
    — Bleeping Computer

    A former  IT employee at an Iowa school district was sentenced to 21 months in prison after conducting a prolonged cyberattack against the …
  2. Chinese hackers hijack auth flow, spy on isolated network for a decade
    — Bleeping Computer

    Chinese hackers took control of a target organization's authentication stack and maintained persistence for 10 years, with full visibility i…
  3. Critical Splunk Enterprise Flaw Lets Attackers Run Code Without Authentication
    — The Hacker News

    Splunk has released security updates to address a critical security flaw in Splunk Enterprise that could be exploited to conduct unauthentic…
  4. US Gov asks Anthropic to ban 'foreign national' access to Fable, Mythos
    — Bleeping Computer

    The US government has ordered Anthropic to block all foreign nationals from accessing Fable 5 and Mythos 5, forcing the company to suspend b…
  5. U.S. Orders Anthropic to Suspend Fable 5 and Mythos 5 Access for Foreign Nationals
    — The Hacker News

    Anthropic said on Friday it will "abruptly disable" its most advanced artificial intelligence (AI) models, Claude Fable 5 and Mythos 5, for …
  6. Tracing Digital Intent: New MacOS Tahoe 26 Artifact Discovered
    — Unit 42

    Unit 42 has discovered a new macOS Tahoe 26 forensic artifact that tracks user menu selections across the operating system. Learn more here.…
  7. ShinyHunters Uses Oracle Zero-Day to Rampage Higher Ed
    — Dark Reading

    A major bug in Oracle's ERP software disproportionately affected American universities, and hackers have capitalized by stealing gobs of dat…
  8. Over 400 Arch Linux AUR Packages Hijacked to Deploy Infostealer and eBPF Rootkit
    — The Hacker News

    Attackers took over more than 400 packages in the Arch User Repository (AUR) this week and rewrote their build scripts to install a credenti…
  9. Claude Fable 5 Doesn't Change the Mythos Security Story
    — Dark Reading

    Stay cool: Mythos 5 is an upgrade over Mythos Preview while Fable 5 is Mythos "made safe for general use," Anthropic explained.
  10. ISC Stormcast For Friday, June 12th, 2026 https://isc.sans.edu/podcastdetail/9970, (Fri, Jun 12th)
    — SANS ISC

    (c) SANS Internet Storm Center. https://isc.sans.edu Creative Commons Attribution-Noncommercial 3.0 United States License.
  11. Phishing Attack Volume Down 20%, But Risk Still Rising
    — Dark Reading

    Hackers are valuing quality over quantity, using AI to upgrade their phishing attacks rather than multiply them.
  12. Trust No Skill: Integrity Verification for AI Agent Supply Chains
    — Unit 42

    Protect enterprise AI agents from supply chain risks by auditing third-party skills for hidden vulnerabilities and multi-stage attack chains…

🪲 NVD — Last 20 Scored Vulnerabilities

Latest scored CVEs from the National Vulnerability Database (6742 in last 30 days).
Critical: 1 · High: 8 · Medium: 11 · Low: 0. View full dashboard →

  1. CVE-2026-12176
    — CVSS 4.3 (MEDIUM)

    A vulnerability has been found in SourceCodester CET Automated Grading System with AI Predictive Analytics 1.0. The impacted element is an unknown function of the file /index.php. The manipulation of the argument action …
  2. CVE-2026-12175
    — CVSS 4.7 (MEDIUM)

    A vulnerability was detected in CodeAstro Student Attendance Management System 1.0. Impacted is an unknown function of the file /attendance-php/Admin/createStudents.php. Performing a manipulation of the argument admissio…
  3. CVE-2026-12174
    — CVSS 8.8 (HIGH)

    A security vulnerability has been detected in D-Link DCS-935L 1.10.01. This issue affects the function snprintf of the file /web/cgi-bin/greece/rhea of the component HTTP Handler. Such manipulation of the argument data l…
  4. CVE-2026-12183
    — CVSS 9.8 (CRITICAL)

    Nefteprodukttekhnika BUK TS-G Gas Station Automation System 2.9.1 through 2.10.2 on Linux contains an Improper Authentication vulnerability (CWE-287) in the system configuration module. The /php/ajax-login.php endpoint r…
  5. CVE-2026-6428
    — CVSS 7.6 (HIGH)

    SQL Injection in reports/catalogue_out.pl in Koha Community Koha through 22.11.37, 23.x, 24.x before 24.11.16, 25.05.x before 25.05.11, 25.11.x before 25.11.05, 26.05.x before 26.05.01, and 26.11.x before 26.11.00 allows…
  6. CVE-2026-5513
    — CVSS 7.2 (HIGH)

    The Online Scheduling and Appointment Booking System – Bookly plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'bookly-customer-full-name' cookie in versions up to, and including, 27.2 due to i…
  7. CVE-2026-1291
    — CVSS 4.3 (MEDIUM)

    The Meow Gallery plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the REST API endpoint /wp-json/meow-gallery/v1/save_shortcode in all versions up to, and inclu…
  8. CVE-2026-9629
    — CVSS 6.4 (MEDIUM)

    The Canvas plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'tag' parameter in all versions up to, and including, 2.5.2 due to insufficient input sanitization and output escaping. This makes it p…
  9. CVE-2026-3297
    — CVSS 6.4 (MEDIUM)

    The Page Builder: Pagelayer – Drag and Drop website builder plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the Anchor block in versions up to, and including, 2.0.9 due to insufficient input sanit…
  10. CVE-2026-2470
    — CVSS 4.3 (MEDIUM)

    The Page Builder: Pagelayer – Drag and Drop website builder plugin for WordPress is vulnerable to Incorrect Authorization in all versions up to, and including, 2.0.9. This is due to the pagelayer_save_content AJAX hand…
  11. CVE-2026-9134
    — CVSS 6.4 (MEDIUM)

    The FooGallery plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'custom_attribute_key' shortcode parameter in versions up to, and including, 3.1.31 This is due to an incomplete JavaScript event h…
  12. CVE-2026-9109
    — CVSS 7.2 (HIGH)

    The GPTranslate – Multilingual AI Translation for WordPress: Automatically Translate Websites plugin for WordPress is vulnerable to Stored Cross-Site Scripting via REST API Translation Storage in all versions up to, an…
  13. CVE-2026-9848
    — CVSS 7.5 (HIGH)

    The WP Ticket plugin for WordPress is vulnerable to SQL Injection via the WordPress search query parameter (`s`) in versions up to, and including, 6.0.4 The plugin hooks WordPress's `posts_request` filter with `wp_ticket…
  14. CVE-2026-54231
    — CVSS 5.5 (MEDIUM)

    A content injection vulnerability was found in the ABRT post-create event handler scripts in libreport. The event script queries the systemd journal for log entries matching the crashed process and writes the results to …
  15. CVE-2026-54230
    — CVSS 7.0 (HIGH)

    A symlink following vulnerability was found in the ABRT post-create event handler scripts in libreport. Event scripts write output files using shell redirections without the O_NOFOLLOW flag. If the target file is replace…
  16. CVE-2026-54229
    — CVSS 7.0 (HIGH)

    A race condition was found in the abrt-dbus D-Bus service's ChownProblemDir method. ChownProblemDir opens the dump directory with DD_OPEN_READONLY and calls dd_chown to change ownership of all files to the caller's uid, …
  17. CVE-2026-54228
    — CVSS 7.8 (HIGH)

    A time-of-check time-of-use (TOCTOU) race condition was found in the abrt-dbus D-Bus service's SetElement method. Between dump directory creation and post-create event execution, any local user can call SetElement to wri…
  18. CVE-2026-12089
    — CVSS 4.9 (MEDIUM)

    The LWS Optimize – All-in-One Speed Booster & Cache Tools plugin for WordPress is vulnerable to Arbitrary File Read in versions up to, and including, 3.3.19. This is due to the combine_current_css() function trusting …
  19. CVE-2026-11443
    — CVSS 4.6 (MEDIUM)

    Allegra downloadAttachment Cross-Site Scripting Authentication Bypass Vulnerability. This vulnerability allows remote attackers to execute arbitrary script on affected installations of Allegra. User interaction is requir…
  20. CVE-2026-11442
    — CVSS 6.5 (MEDIUM)

    Allegra exportReport Directory Traversal Information Disclosure Vulnerability. This vulnerability allows remote attackers to disclose sensitive information on affected installations of Allegra. Authentication is required…

Source: NVD CVE API 2.0

Generated by CryptXNet.ai Threat Intelligence Platform · June 14, 2026 · Sources: The Hacker News, Bleeping Computer, Krebs on Security, Dark Reading, SANS ISC, THN Threat Intel, Unit 42, Security.com