https://kkm-mako.com/en/blog/articles/mirasvit-cache-warmer-cve-2026-45247-magento-rce/まこちゃんの技術ジャーナルen2026-06-03T18:11:09+00:00Magento Stores Face Server Takeover Flaw CVE-2026-45247, Already Under Attackhttps://kkm-mako.com/blog/articles/mirasvit-cache-warmer-cve-2026-45247-magento-rce/まこちゃんの技術ジャーナルja2026-06-03T18:10:50+00:00Magento通販に乗っ取りの脆弱性 CVE-2026-45247、攻撃発生中で即更新をhttps://kkm-mako.com/en/blog/articles/apache-mina-cve-2026-47065-deserialization-rce/まこちゃんの技術ジャーナルen2026-06-03T12:14:22+00:00Apache MINA Flaw CVE-2026-47065 Lets Attackers Take Over Servers Without a Loginhttps://kkm-mako.com/blog/articles/apache-mina-cve-2026-47065-deserialization-rce/まこちゃんの技術ジャーナルja2026-06-03T12:14:03+00:00Apache MINAに乗っ取りの脆弱性 CVE-2026-47065、ログイン無しで悪用https://kkm-mako.com/en/blog/articles/authentik-cve-2026-49448-multiple-vulnerabilities/まこちゃんの技術ジャーナルen2026-06-02T22:09:54+00:00authentik Identity Platform: 4 Flaws Let Attackers Skip Login, CVE-2026-49448 — Update Nowhttps://kkm-mako.com/blog/articles/authentik-cve-2026-49448-multiple-vulnerabilities/まこちゃんの技術ジャーナルja2026-06-02T22:09:35+00:00社内ログイン基盤authentikに脆弱性、空送信で突破 CVE-2026-49448ほか4件https://kkm-mako.com/en/blog/articles/linux-cgroups-cve-2022-0492-container-escape-kev/まこちゃんの技術ジャーナルen2026-06-02T18:07:58+00:00Linux container-escape flaw CVE-2022-0492 exploited; CISA orders a fixhttps://kkm-mako.com/blog/articles/linux-cgroups-cve-2022-0492-container-escape-kev/まこちゃんの技術ジャーナルja2026-06-02T18:07:40+00:00Linuxのコンテナ脱出脆弱性CVE-2022-0492が悪用中、CISAが修正を指示https://kkm-mako.com/en/blog/articles/amazon-kiro-cve-2026-10591-file-write-tasks-json-rce/まこちゃんの技術ジャーナルen2026-06-02T17:08:37+00:00Flaw in Amazon's AI dev tool Kiro, CVE-2026-10591: open a folder, run codehttps://kkm-mako.com/blog/articles/amazon-kiro-cve-2026-10591-file-write-tasks-json-rce/まこちゃんの技術ジャーナルja2026-06-02T17:08:19+00:00AmazonのAI開発ツールKiroに脆弱性 CVE-2026-10591、開くだけでコード実行https://kkm-mako.com/en/blog/articles/progress-sitefinity-cve-2026-7198-7312-multiple-vulnerabilities/まこちゃんの技術ジャーナルen2026-06-02T15:10:27+00:00Five flaws in enterprise CMS Sitefinity, unauthenticated data exposure: CVE-2026-7198 and morehttps://kkm-mako.com/blog/articles/progress-sitefinity-cve-2026-7198-7312-multiple-vulnerabilities/まこちゃんの技術ジャーナルja2026-06-02T15:10:07+00:00企業向けCMS Sitefinityに脆弱性5件、無認証で情報露出 CVE-2026-7198ほかhttps://kkm-mako.com/en/blog/articles/openshift-cve-2026-1784-route-haproxy-config-injection/まこちゃんの技術ジャーナルen2026-06-02T10:15:10+00:00OpenShift flaw CVE-2026-1784: low-privilege users can hijack cluster traffichttps://kkm-mako.com/blog/articles/openshift-cve-2026-1784-route-haproxy-config-injection/まこちゃんの技術ジャーナルja2026-06-02T10:14:51+00:00OpenShiftに脆弱性 CVE-2026-1784、低い権限でクラスターの通信を乗っ取りhttps://kkm-mako.com/en/blog/articles/kirki-cve-2026-8206-account-takeover-password-reset/まこちゃんの技術ジャーナルen2026-06-02T05:08:05+00:00WordPress 'Kirki' flaw CVE-2026-8206 lets attackers hijack admin accounts on 500k siteshttps://kkm-mako.com/blog/articles/kirki-cve-2026-8206-account-takeover-password-reset/まこちゃんの技術ジャーナルja2026-06-02T05:07:46+00:00WordPress『Kirki』に脆弱性 CVE-2026-8206、50万サイトで管理者乗っ取りhttps://kkm-mako.com/en/blog/articles/tp-link-archer-be450-be7200-cve-2026-5509-command-injection/まこちゃんの技術ジャーナルen2026-06-02T03:10:35+00:00Flaw in two TP-Link Wi-Fi routers risks full takeover: CVE-2026-5509https://kkm-mako.com/blog/articles/tp-link-archer-be450-be7200-cve-2026-5509-command-injection/まこちゃんの技術ジャーナルja2026-06-02T03:10:16+00:00TP-Link Archerルーターに脆弱性 CVE-2026-5509、最新ファームへ更新をhttps://kkm-mako.com/en/blog/articles/langroid-cve-2026-25879-sqlchatagent-prompt-injection-rce/まこちゃんの技術ジャーナルen2026-06-02T00:07:58+00:00Langroid flaw CVE-2026-25879: AI-written SQL can hijack your databasehttps://kkm-mako.com/blog/articles/langroid-cve-2026-25879-sqlchatagent-prompt-injection-rce/まこちゃんの技術ジャーナルja2026-06-02T00:07:39+00:00Langroidに脆弱性 CVE-2026-25879、AIが書いたSQLでデータベース乗っ取りhttps://kkm-mako.com/en/blog/articles/cloud-foundry-uaa-cve-2026-40965-ec-private-key-exposure/まこちゃんの技術ジャーナルen2026-06-01T23:08:51+00:00Cloud Foundry UAA leaks its private key: CVE-2026-40965 (CVSS 10.0)https://kkm-mako.com/blog/articles/cloud-foundry-uaa-cve-2026-40965-ec-private-key-exposure/まこちゃんの技術ジャーナルja2026-06-01T23:08:32+00:00Cloud Foundryの認証サーバーで秘密鍵漏えい CVE-2026-40965https://kkm-mako.com/en/blog/articles/weblogic-cve-2024-21182-kev-exploited/まこちゃんの技術ジャーナルen2026-06-01T21:17:39+00:00Oracle WebLogic CVE-2024-21182 exploited in the wild; CISA orders a fixhttps://kkm-mako.com/blog/articles/weblogic-cve-2024-21182-kev-exploited/まこちゃんの技術ジャーナルja2026-06-01T21:17:20+00:00WebLogicの脆弱性CVE-2024-21182が悪用中、CISAが緊急是正を指示