🛡️ blast.kok.fyi

Hosting-relevant security intel · refresh 2026-07-03 21:50 EEST · refresh every 15 min · today only → · unfiltered → · cPanel releases → · WordPress →
1631CISA KEV total 3KEV recent (top 25) 6CVEs published 7d 1Critical 7d 9Security headlines 94Vendor updates 9WordPress

🚨 CISA KEV — recently added

⚠️ KEV contains historical CVEs (CVE-2008, CVE-2010 etc) that are currently being actively exploited. Watch the "ADDED" date — that's when CISA confirmed active exploitation in 2026, NOT when the CVE was published.
ADDED 2026-06-16CVE-2026-48907 — Widget Factory Joomla Content Editor
Widget Factory Joomla Content Editor Improper Access Control Vulnerability
ADDED 2026-06-15CVE-2026-54420 — LiteSpeed cPanel Plugin
LiteSpeed cPanel Plugin UNIX Symbolic Link (Symlink) Following Vulnerability
ADDED 2026-06-02CVE-2022-0492 — Linux Kernel
Linux Kernel Improper Authentication Vulnerability

📋 NVD — recent CVEs (7 days)

UnknownCVE-2026-53282
In the Linux kernel, the following vulnerability has been resolved: x86/kexec: Push kjump return address even for non-kjump kexec The version of purgatory code shipped by kexec-tools attempts to loo
2026-06-26 23:17
HIGHCVE-2026-53281
In the Linux kernel, the following vulnerability has been resolved: iommu/vt-d: Avoid NULL pointer dereference or refcount corruption Commit 60f030f7418d ("iommu/vt-d: Avoid use of NULL after WARN_O
2026-06-26 23:17 · CVSS 8.8
UnknownCVE-2026-53280
In the Linux kernel, the following vulnerability has been resolved: iommu: Fix NULL group->domain dereference in pci_dev_reset_iommu_done() Local sashiko review pointed it out that group->domain cou
2026-06-26 23:17
UnknownCVE-2026-53279
In the Linux kernel, the following vulnerability has been resolved: drm/gma500/oaktrail_lvds: fix hang on init failure The LVDS init code looks up an I2C adapter using i2c_get_adapter() and tries to
2026-06-26 23:17
UnknownCVE-2026-53278
In the Linux kernel, the following vulnerability has been resolved: arm_mpam: Check whether the config array is allocated before destroying it __destroy_component_cfg() is called to free the configu
2026-06-26 23:17
Show 1 more CVEs
CRITICALCVE-2026-46386
OpenProject is open-source, web-based project management software. Prior to , the official openproject/openproject Docker image ships ENV SECRET_KEY_BASE=OVERWRITE_ME as the default Rails master key.
2026-06-26 23:17 · CVSS 9.9

📰 Security headlines

🏷️ Vendor updates

Show 89 more vendor updates
Friday Five — July 3, 2026
Red Hat · 2026-07-03 03:00
USN-8503-1: ncurses vulnerability
Ubuntu Security · 2026-07-03 01:04
USN-8500-1: Vim vulnerabilities
Ubuntu Security · 2026-07-02 19:46
USN-8501-1: Linux kernel vulnerabilities
Ubuntu Security · 2026-07-02 19:14
USN-8493-2: Linux kernel (Oracle) vulnerabilities
Ubuntu Security · 2026-07-02 19:07
USN-8499-1: Linux kernel (Xilinx) vulnerabilities
Ubuntu Security · 2026-07-02 18:56
pgtt v4.5 has been released
PostgreSQL · 2026-06-28 03:00
pg_qualstats 2.1.4 is out!
PostgreSQL · 2026-06-26 03:00
pg_stat_kcache 2.3.2 is out!
PostgreSQL · 2026-06-26 03:00
AlmaLinux OS is Common Criteria certified
AlmaLinux · 2026-06-24 03:00
mTLS Policies in NGINX Ingress Controller
nginx blog · 2026-06-08 18:44
HTTP/2 Bomb Vulnerability
LiteSpeed · 2026-06-05 14:56
Security Update for LiteSpeed cPanel Plugin
LiteSpeed · 2026-06-01 19:04
CIFSwitch (CVE-2026-46243) Patches Released
AlmaLinux · 2026-05-28 03:00
Security Update for LSCWP
LiteSpeed · 2026-05-27 17:42
Security Update for LiteSpeed cPanel Plugin
LiteSpeed · 2026-05-21 18:04
Stretch Your Hardware Budget With LiteSpeed
LiteSpeed · 2026-05-11 13:00
EasyApache 4 25.69
cPanel Releases ·
EasyApache 4 25.68
cPanel Releases ·
Sitejet Builder 4.10.0-1
cPanel Releases ·
EasyApache 4 25.67
cPanel Releases ·
dnsdist-2.1.0
PowerDNS ·
auth-5.1.3
PowerDNS ·
auth-5.1.2
PowerDNS ·
auth-5.0.6
PowerDNS ·
auth-4.9.16
PowerDNS ·
7-Zip 26.02
7-Zip ·
7-Zip 26.01
7-Zip ·
26.00
7-Zip ·
25.01
7-Zip ·
25.00
7-Zip ·
v2.7.5
OpenVPN ·
v2.6.21
OpenVPN ·
v2.7.4
OpenVPN ·
v2.7.3
OpenVPN ·
v2.6.20
OpenVPN ·
V_10_3_P1
OpenSSH ·
V_10_2_P1
OpenSSH ·
V_10_1_P1
OpenSSH ·
V_10_0_P1
OpenSSH ·
Tag 7.0
WordPress Core ·
Tag 6.0.12
WordPress Core ·
Tag 4.7.33
WordPress Core ·
Tag 5.2.24
WordPress Core ·
Tag 5.1.22
WordPress Core ·