Knowledge Base

TODO

Updated 26 May 2026

Backlog

CVEs & Resources

  1. 2020
  2. [1]CVE-2020-3259 — Cisco AnyConnect
  3. 2021
  4. [2]CVE-2021-21985 — VMWare vSphere
  5. [3]CVE-2021-21972 — VMWare vCenter
  6. [4]CVE-2021-21974 — VMWare ESXi
  7. [5]CVE-2021-40655 — D-Link DIR-605L
  8. 2022
  9. [6]CVE-2022-22948 — VMWare vCenter
  10. 2023
  11. [7]CVE-2023-20198 — Cisco IOS XE
  12. [8]CVE-2023-20269 — Cisco ASA/Firepower VPN
  13. [9]CVE-2023-30908 — HPE OneView Auth Bypass
  14. [10]CVE-2023-34048 — VMWare vCenter
  15. [11]CVE-2023-34049 — VMWare Aria Operations for Networks
  16. [12]CVE-2023-48788 — Fortinet FortiClients EMS
  17. 2024
  18. [13]CVE-2024-3080 — ASUS Router Auth Bypass
  19. [14]CVE-2024-3400 — Palo Alto OS Command Injection
  20. [15]CVE-2024-3912 — ASUS Router Firmware Upload
  21. [16]CVE-2024-4985 — GitHub Enterprise Server Auth Bypass
  22. [17]CVE-2024-6045 — Confluence Auth RCE
  23. [18]CVE-2024-10914 — D-Link Command Injection
  24. [19]CVE-2024-20356 — Cisco CIMC Command Injection
  25. [20]CVE-2024-20357 — Cisco IP Phone XML Injection
  26. [21]CVE-2024-20358 — Cisco ASA/Firepower Auth RCE
  27. [22]CVE-2024-20359 — Cisco ASA/Firepower Auth RCE
  28. [23]CVE-2024-20419 — Cisco Smart Software Manager RCE
  29. [24]CVE-2024-24919 — Check Point SVN RCE
  30. [25]CVE-2024-29849 — Veeam Backup Auth Bypass
  31. [26]CVE-2024-29972 — Zyxel NAS326 Backdoor
  32. [27]CVE-2024-29973 — Zyxel NAS326 Code Injection
  33. [28]CVE-2024-29974 — Zyxel NAS326 RCE
  34. [29]CVE-2024-29975 — Zyxel NAS326 Priv Esc
  35. [30]CVE-2024-47575 — FortiJump Unauth RCE
  36. [31]CVE-2024-50629~50631 — Synology BeeStation RCE
  37. [32]PAN-SA-2024-0015 — Paloalto Unauth RCE
  38. [33]0.0.0.0-day — PNA bypass
  39. [34]Attacking UNIX Systems via CUPS
  40. 2025
  41. [35]CVE-2025-20188 — Cisco IOS XE Hardcoded JWT
  42. [36]CVE-2025-3280X — Kea DHCP Auth Bypass
  43. [37]CVE-2025-5054 — Apport Information Disclosure
  44. [38]CVE-2025-6218 — WinRAR Path Traversal RCE
  45. [39]CVE-2025-8110 — Gogs Path Traversal RCE
  46. [40]CVE-2025-13915 — IBM API Connect Auth Bypass
  47. [41]CVE-2025-14733 — WatchGuard Fireware OS Unauth RCE
  48. [42]CVE-2025-20393 — Cisco Secure Email Gateway RCE
  49. [43]CVE-2025-37164 — HPE OneView Unauth RCE
  50. [44]CVE-2025-52691 — SmarterMail Unauth RCE
  51. [45]CVE-2025-53690 — Sitecore Initial Access
  52. [46]CVE-2025-53772 — Microsoft Web Deploy RCE
  53. [47]CVE-2025-55182 — React RSC Code Execution
  54. [48]CVE-2025-59466 — Node.js DoS via async_hooks
  55. [49]CVE-2025-59470 — Veeam Auth RCE
  56. [50]CVE-2025-59718 / CVE-2025-59719 — Fortinet SSO Auth Bypass
  57. [51]CVE-2025-64155 — FortiSIEM Unauth RCE
  58. [52]CVE-2025-66516 — Apache Tika XXE
  59. [53]CVE-2025-68613 — n8n Code Execution
  60. [54]CVE-2025-68664 — LangChain Serialization Injection
  61. [55]CVE-2025-68668 — n8n Auth Sandbox Bypass
  62. [56]CVE-2026-0625 — D-Link Unauth Command Injection
  63. [57]CVE-2026-21858 — n8n Unauth RCE
  64. [58]CVE-2026-22709 — Node.js vm2 Sandbox Escape RCE
  65. [59]CVE-2026-24423 — SmarterMail Unauth RCE
  66. [60]CVE-xxxx-xxxxx — SmarterMail Auth Bypass
  67. [61]Hardware — Digital Microscope (budget)
  68. [62]Hardware — Digital Microscope (premium)
  69. [63]TP-Link Tapo C200 — Hardcoded Keys
  70. [64]XML Signature Wrapping (XSW)
  71. [65].NET Remote Object WSDL RCE
  72. 2026
  73. [66]CVE-2026-3888 — Ubuntu systemd Privilege Escalation
  74. [67]CVE-2026-21962 — Oracle Weblogic Proxy Plug-in Injection
  75. [68]CVE-2026-21992 — Oracle IDM RCE
  76. [69]CVE-2026-21994 — Oracle OKIT Hardcoded Flask Key
  77. [70]CVE-2026-23408 — AppArmor Use-After-Free LPE
  78. [71]CVE-2026-24061 — GNU InetUtils Telnetd Unauth RCE
  79. [72]CVE-2026-32746 — Telnetd Out-of-Bounds Write RCE
  80. [73]CVE-2026-40176 / CVE-2026-40261 — PHP Composer RCE
  81. [74]CVE-2026-42945 — NGINX Rift, heap buffer overflow, RCE/DOS
  82. [75]CVE-2026-XXXXX — Drupal something, more info May 20