Archive snapshot

Mon, Apr 20 · 12:00 AM CDT

Archived briefing content rendered inside the ACSP site experience.

Back to archive

Archived briefing

Snapshot overview

Generated Mon, Apr 20 · 12:00 AM CDTWindow last 6 hours

Top line

Coverage now updates on a rolling 6-hour window, while NVD entries come from the live API using a last-24-hours modified window and are sorted by severity.

Fast take

News stays on the current 6-hour slice, videos now use the last 24 hours, and NVD uses the API instead of the traditional feed to better match the live site behavior.

Top stories

8

Worth skimming

0

Tracked videos

2

NVD vulnerabilities

17

Top stories

Mon, 20 Apr 2026 09:05:00 +0530

Vercel Breach Tied to Context AI Hack Exposes Limited Customer Credentials

9.4/10 · Must read/watch

The Hacker Newsaiidentity

Summary
Web infrastructure provider Vercel has disclosed a security breach that allows bad actors to gain unauthorized access to "certain" internal Vercel systems. The incident stemmed from the compromise of Context.ai, a third-party artificial intelligence (AI) tool,

Open article ↗

Mon, Apr 20 · 12:00 AM CDT

Critical Nginx-ui MCP Flaw Actively Exploited in the Wild

8.1/10 · Worth your time

Infosecurity Magazinevuln

Summary
Collected from the Infosecurity Magazine news page during the latest run.

Open article ↗

Mon, Apr 20 · 12:00 AM CDT

Commercial AI Models Show Rapid Gains in Vulnerability Research

8.0/10 · Worth your time

Infosecurity Magazinevulnai

Summary
Collected from the Infosecurity Magazine news page during the latest run.

Open article ↗

Mon, Apr 20 · 12:00 AM CDT

APK Malformation Found in Thousands of Android Malware Samples

8.0/10 · Worth your time

Infosecurity Magazinemalware

Summary
Collected from the Infosecurity Magazine news page during the latest run.

Open article ↗

Mon, Apr 20 · 12:00 AM CDT

Cookeville Medical Center Notifies Patients After July 2025 Ransomware Attack

7.8/10 · Worth your time

Infosecurity Magazinemalware

Summary
Collected from the Infosecurity Magazine news page during the latest run.

Open article ↗

Mon, Apr 20 · 12:00 AM CDT

Automotive Ransomware Attacks Double in a Year

7.8/10 · Worth your time

Infosecurity Magazinemalware

Summary
Collected from the Infosecurity Magazine news page during the latest run.

Open article ↗

Mon, Apr 20 · 12:00 AM CDT

US Nationals Jailed for Operating Fake Remote Worker Laptop Farms for North Korea

7.7/10 · Worth your time

Infosecurity Magazineai

Summary
Collected from the Infosecurity Magazine news page during the latest run.

Open article ↗

Mon, Apr 20 · 12:00 AM CDT

OpenAI Unveils GPT-5.4-Cyber for Improving Cyber Defense With AI

7.7/10 · Worth your time

Infosecurity Magazineai

Summary
Collected from the Infosecurity Magazine news page during the latest run.

Open article ↗

Worth skimming

Nothing surfaced yet.

Videos worth watching

John Hammond

6.8/10 · Skim only if relevant

YouTube / John Hammondgeneral

Why it matters
Recent creator upload with some page-level evidence. Better than raw feed discovery, but still not a full content review.

Summary
Free Cybersecurity Education and Ethical Hacking.

Worth watching?Maybe — good candidate if the title matches your interests, but confidence is still moderate.

Confidencelow

Open article ↗

NahamSec

6.6/10 · Skim only if relevant

YouTube / NahamSecgeneral

Why it matters
Recent creator upload with some page-level evidence. Better than raw feed discovery, but still not a full content review.

Summary
HACK THE PLANET!! Hi! I'm NahamSec. I think everyone can be a hacker and I'm on a mission to prove that!

Worth watching?Maybe — good candidate if the title matches your interests, but confidence is still moderate.

Confidencelow

Open article ↗

NVD vulnerabilities

Tue, Sep 09 · 02:15 PM CDT

CVE-2025-54236

9.1/10 · Must read/watch

NVDvuln

Summary
Adobe Commerce versions 2.4.9-alpha2, 2.4.8-p2, 2.4.7-p7, 2.4.6-p12, 2.4.5-p14, 2.4.4-p15 and earlier are affected by an Improper Input Validation vulnerability. A successful attacker can abuse this to achieve session takeover, increasing the confidentiality, and integrity impact to high. Exploitation of this issue doe

CVECVE-2025-54236

SeverityCRITICAL

TypeUPDATED

PublishedTue, Sep 09 · 02:15 PM CDT

ModifiedTue, Apr 14 · 07:00 PM CDT

Open article ↗

Sun, Apr 19 · 07:16 AM CDT

CVE-2026-6560

8.8/10 · Worth your time

NVDvuln

Summary
A security vulnerability has been detected in H3C Magic B0 up to 100R002. This vulnerability affects the function Edit_BasicSSID of the file /goform/aspForm. Such manipulation of the argument param leads to buffer overflow. The attack can be executed remotely. The exploit has been disclosed publicly and may be used. Th

CVECVE-2026-6560

SeverityHIGH

TypeNEW

PublishedSun, Apr 19 · 07:16 AM CDT

ModifiedSun, Apr 19 · 07:16 AM CDT

Open article ↗

Sun, Apr 19 · 09:16 AM CDT

CVE-2026-6563

8.8/10 · Worth your time

NVDvuln

Summary
A vulnerability has been found in H3C Magic B1 up to 100R004. The affected element is the function SetAPWifiorLedInfoById of the file /goform/aspForm. The manipulation of the argument param leads to buffer overflow. It is possible to initiate the attack remotely. The exploit has been disclosed to the public and may be

CVECVE-2026-6563

SeverityHIGH

TypeNEW

PublishedSun, Apr 19 · 09:16 AM CDT

ModifiedSun, Apr 19 · 09:16 AM CDT

Open article ↗

Thu, Apr 16 · 10:16 PM CDT

CVE-2026-41113

8.1/10 · Worth your time

NVDvuln

Summary
sagredo qmail before 2026.04.07 allows tls_quit remote code execution because of popen in notlshosts_auto in qmail-remote.c.

CVECVE-2026-41113

SeverityHIGH

TypeUPDATED

PublishedThu, Apr 16 · 10:16 PM CDT

ModifiedSat, Apr 18 · 09:16 PM CDT

Open article ↗

Sun, Apr 19 · 09:16 AM CDT

CVE-2026-6562

7.3/10 · Worth your time

NVDvuln

Summary
A flaw has been found in dameng100 muucmf 1.9.5.20260309. Impacted is the function getListByPage of the file /index/Search/index.html. Executing a manipulation of the argument keyword can lead to sql injection. The attack may be performed from remote. The exploit has been published and may be used. The vendor was conta

CVECVE-2026-6562

SeverityHIGH

TypeNEW

PublishedSun, Apr 19 · 09:16 AM CDT

ModifiedSun, Apr 19 · 09:16 AM CDT

Open article ↗

Sun, Apr 19 · 10:16 AM CDT

CVE-2026-6568

7.3/10 · Worth your time

NVDvuln

Summary
A vulnerability was determined in kodcloud KodExplorer up to 4.52. This affects the function share.class.php::initShareOld of the file /app/controller/share.class.php of the component Public Share Handler. This manipulation of the argument path causes path traversal. The attack can be initiated remotely. The exploit ha

CVECVE-2026-6568

SeverityHIGH

TypeNEW

PublishedSun, Apr 19 · 10:16 AM CDT

ModifiedSun, Apr 19 · 10:16 AM CDT

Open article ↗

Thu, Feb 27 · 05:15 AM CST

CVE-2025-1686

6.8/10 · Skim only if relevant

NVDvuln

Summary
Versions of the package io.pebbletemplates:pebble from 0 and before 4.1.0 are vulnerable to External Control of File Name or Path via the include tag. A high privileged attacker can access sensitive local files by crafting malicious notification templates that leverage this tag to include files like /etc/passwd or /pro

CVECVE-2025-1686

SeverityMEDIUM

TypeUPDATED

PublishedThu, Feb 27 · 05:15 AM CST

ModifiedSun, Apr 19 · 08:16 AM CDT

Open article ↗

Thu, Apr 02 · 04:16 PM CDT

CVE-2026-33691

6.8/10 · Skim only if relevant

NVDvuln

Summary
The OWASP core rule set (CRS) is a set of generic attack detection rules for use with compatible web application firewalls. Prior to versions 3.3.9 and 4.25.0, a bypass was identified in OWASP CRS that allows uploading files with dangerous extensions (.php, .phar, .jsp, .jspx) by inserting whitespace padding in the fil

CVECVE-2026-33691

SeverityMEDIUM

TypeUPDATED

PublishedThu, Apr 02 · 04:16 PM CDT

ModifiedSat, Apr 18 · 08:16 PM CDT

Open article ↗

Sun, Apr 19 · 04:16 AM CDT

CVE-2026-0868

6.4/10 · Skim only if relevant

NVDvuln

Summary
The EMC – Easily Embed Calendly Scheduling Features plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's calendly shortcode in all versions up to, and including, 4.4 due to insufficient input sanitization and output escaping on user supplied attributes. This makes it possible for authentic

CVECVE-2026-0868

SeverityMEDIUM

TypeNEW

PublishedSun, Apr 19 · 04:16 AM CDT

ModifiedSun, Apr 19 · 04:16 AM CDT

Open article ↗

Sat, Apr 18 · 12:16 PM CDT

CVE-2026-2986

6.4/10 · Skim only if relevant

NVDvuln

Summary
The Contextual Related Posts plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'other_attributes' parameter in versions up to, and including, 4.2.1 due to insufficient input sanitization and output escaping. This makes it possible for authenticated attackers, with contributor-level access and ab

CVECVE-2026-2986

SeverityMEDIUM

TypeNEW

PublishedSat, Apr 18 · 12:16 PM CDT

ModifiedSat, Apr 18 · 12:16 PM CDT

Open article ↗

Fri, May 30 · 01:15 PM CDT

CVE-2025-40909

5.9/10 · Skim only if relevant

NVDvuln

Summary
Perl threads have a working directory race condition where file operations may target unintended paths. If a directory handle is open at thread creation, the process-wide current working directory is temporarily changed in order to clone that handle for the new thread, which is visible from any third (or more) thread a

CVECVE-2025-40909

SeverityMEDIUM

TypeUPDATED

PublishedFri, May 30 · 01:15 PM CDT

ModifiedSat, Apr 18 · 03:16 PM CDT

Open article ↗

Sun, Apr 19 · 08:16 AM CDT

CVE-2026-6561

4.7/10 · Skip

NVDvuln

Summary
A vulnerability was detected in EyouCMS up to 1.7.1. This issue affects the function edit_adminlogo of the file application/admin/controller/Index.php. Performing a manipulation of the argument filename results in unrestricted upload. The attack is possible to be carried out remotely. The exploit is now public and may

CVECVE-2026-6561

SeverityMEDIUM

TypeNEW

PublishedSun, Apr 19 · 08:16 AM CDT

ModifiedSun, Apr 19 · 08:16 AM CDT

Open article ↗

Sun, Apr 19 · 06:16 AM CDT

CVE-2026-6559

4.3/10 · Skip

NVDvuln

Summary
A weakness has been identified in Wavlink WL-WN579A3 220323. This affects the function sub_401F80 of the file /cgi-bin/login.cgi. This manipulation of the argument Hostname causes cross site scripting. Remote exploitation of the attack is possible. Upgrading the affected component is recommended. The vendor was contact

CVECVE-2026-6559

SeverityMEDIUM

TypeNEW

PublishedSun, Apr 19 · 06:16 AM CDT

ModifiedSun, Apr 19 · 06:16 AM CDT

Open article ↗

Sun, Apr 19 · 10:16 AM CDT

CVE-2026-6564

4.3/10 · Skip

NVDvuln

Summary
A vulnerability was found in EMQ EMQX Enterprise up to 6.1.0. The impacted element is an unknown function of the component Session Handling. The manipulation results in improper authorization. It is possible to launch the attack remotely. The exploit has been made public and could be used. The vendor was contacted earl

CVECVE-2026-6564

SeverityMEDIUM

TypeNEW

PublishedSun, Apr 19 · 10:16 AM CDT

ModifiedSun, Apr 19 · 10:16 AM CDT

Open article ↗

Sat, Apr 18 · 02:16 PM CDT

CVE-2026-40948

4.8/10 · Skip

NVDvuln

Summary
The Keycloak authentication manager in `apache-airflow-providers-keycloak` did not generate or validate the OAuth 2.0 `state` parameter on the login / login-callback flow, and did not use PKCE. An attacker with a Keycloak account in the same realm could deliver a crafted callback URL to a victim's browser and cause the

CVECVE-2026-40948

SeverityUNKNOWN

TypeNEW

PublishedSat, Apr 18 · 02:16 PM CDT

ModifiedSat, Apr 18 · 02:16 PM CDT

Open article ↗

Sat, Apr 18 · 05:16 PM CDT

CVE-2026-41242

4.8/10 · Skip

NVDvuln

Summary
protobufjs compiles protobuf definitions into JavaScript (JS) functions. In versions prior to 8.0.1 and 7.5.5, attackers can inject arbitrary code in the "type" fields of protobuf definitions, which will then execute during object decoding using that definition. Versions 8.0.1 and 7.5.5 patch the issue.

CVECVE-2026-41242

SeverityUNKNOWN

TypeNEW

PublishedSat, Apr 18 · 05:16 PM CDT

ModifiedSat, Apr 18 · 05:16 PM CDT

Open article ↗

Sat, Apr 18 · 11:16 PM CDT

CVE-2026-6056

4.8/10 · Skip

NVDvuln

Summary
Rejected reason: This CVE ID has been rejected or withdrawn by its CVE Numbering Authority.

CVECVE-2026-6056

SeverityUNKNOWN

TypeNEW

PublishedSat, Apr 18 · 11:16 PM CDT

ModifiedSat, Apr 18 · 11:16 PM CDT

Open article ↗

Ignore today

Generic low-detail roundups without primary reporting.
HN items that are interesting but not clearly security or AI relevant.
Creator videos that look more like promotion, podcast chatter, or evergreen content than time-sensitive signal outside the rolling window.