RCE – TheCyberThrone

CVE-2025-59528: Flowise CustomMCP Code Injection RCE

Status: Actively exploited | CVSS: 10.0 (Critical) | EPSS: 99.25% | Exposure: 12,000+ internet-facing instances Vulnerability Summary CVE-2025-59528 affects Flowise, a drag & drop interface for building customized large language…

PravinKarthik April 7, 2026

WordPress WPML Plugin Critical Vulnerability CVE-2024-6386

Researchers have uncovered a critical vulnerability in WPML multilingual CMS Plugin for WordPress that leads to a Remote Code Execution, which potentially allows the compromise of impacted websites. The vulnerability…

PravinKarthik August 28, 2024

Citrix ShareFile RCE Vulnerability Exploited in Wild

Researchers have spotted the exploitation of a recent critical remote code execution (RCE) vulnerability in Citrix Sharefile, a cloud based file sharing and collaboration solution. Tracked as CVE-2023-24489 with a…

PravinKarthik July 29, 2023

Atlassian Patches RCE Vulnerabilities in its Products

Atlassian has released patches for two of the vulnerabilities in Confluence Data Center and Server and another in Bamboo Data Center. Atlassian in its advisory says that the newly discovered…

PravinKarthik July 24, 2023

Zyxel Recently Patched Vulnerability Exploited in Wild

There is an active warning for Zyxel networking device users to update their firewalls and VPNs after reports that hackers are actively exploiting a vulnerability in the wild to enable…

PravinKarthik June 1, 2023

US Agency Exploited with an Old Progress Telerik RCE

The US CISA has reported that the threat actors are seen exploited a vulnerability that was first documented in 2019 that allows remote code execution (RCE) to access a federal…

PravinKarthik March 17, 2023

Cisco Clam AV Bug leads to a RCE

A critical vulnerability in Cisco’s ClamAV open-source AV solution has been patched. This flaw could allow remote code execution on infected devices The vulnerability tracked as CVE-2023-20032 with a CVSS…

PravinKarthik February 17, 2023

Gitlab Patches Critical Flaws that lead to RCE

GitLab has released patches for two critical security flaws in Git that allows attackers to remotely execute arbitrary code and take advantage of integer overflows. The flaws, tracked as CVE-2022-41903…

PravinKarthik January 18, 2023