Skip to content
Threat Feed
Subscribe

Tag

Zero-Day

2 briefs RSS
critical threat

Gogs Zero-Day Vulnerability Enables Remote Code Execution

An unpatched argument injection vulnerability in Gogs (versions 0.14.2 and 0.15.0+dev) allows authenticated attackers to achieve remote code execution (RCE) on vulnerable instances, potentially leading to complete server compromise.

exploited Gogs 0.14.2 +1 rce zero-day argument injection
2r 1t 5c
high threat

TrueConf Zero-Day Exploitation Leading to Arbitrary Code Execution

Hackers exploited a zero-day vulnerability (CVE-2026-3502) in TrueConf conference servers to execute arbitrary files on connected endpoints, potentially deploying the Havoc C2 framework.

exploited TrueChaos trueconf zero-day cve-2026-3502 supply-chain attack
2r 3t 1c 4i