CPE
critical
threat
iCagenda Unrestricted File Upload Vulnerability Leading to RCE (CVE-2026-48939)
1 rule 2 TTPs 2 CVEsAttackers are actively exploiting CVE-2026-48939, an unrestricted file upload vulnerability in iCagenda, to upload malicious PHP code and achieve remote code execution on affected web servers.
exploited
iCagenda +1
web-application
rce
file-upload
cve
1r
2t
2c
critical
threat
CVE-2026-56291: Balbooa Forms Unrestricted File Upload Vulnerability Leading to RCE
1 rule 2 TTPs 1 CVEA critical unrestricted file upload vulnerability, CVE-2026-56291, in Balbooa Forms allows an unauthenticated attacker to upload executable files, potentially leading to arbitrary code execution on the server.
exploited
Forms
vulnerability
web-vulnerability
rce
file-upload
cisa-kev
1r
2t
1c