[01/04/2026 23:00] Grandes distribuidoras de combustíveis decidem ficar fora de programa de subvenção ao diesel - Folha de S.Paulo

[02/04/2026 12:26] Lula rebate críticas do governo Trump: ‘Ninguém nos fará mudar o Pix’ - CartaCapital

[02/04/2026 03:41] Irã alerta para ataques "mais destrutivos" até “rendição” dos EUA e Israel - CNN Brasil

[02/04/2026 08:18] Macron diz a Trump que não é elegante ironizar seu casamento - Jovem Pan

[02/04/2026 01:18] EUA vão intensificar ataques ao Irã nas próximas 3 semanas, diz Trump - Poder360

[01/04/2026 16:08] EUA mentiram para atacar o Irã, afirma Lula - Poder360

[02/04/2026 10:02] Governo Lula decide enviar ao Congresso projeto para acabar com escala 6x1 - Folha de S.Paulo

[02/04/2026 09:32] Aro deixa o governo mirando o Senado em meio a mal-estar com Simões por ida de Viana ao PSD - O TEMPO

[01/04/2026 11:37] AtlasIntel em MG: Cleitinho na frente, seguido por Pacheco - em.com.br

[02/04/2026 02:00] 'Eu fiz de tudo pelo meu filho', diz pai de menino de 9 anos morto em acidente na Tijuca - Extra online

[CVE-2025-57200] [Modified: 05-01-2026] [Analyzed] [V3.1 S6.5:MEDIUM] AVTECH SECURITY Corporation DGM1104 FullImg-1015-1004-1006-1003 was discovered to contain an authenticated command injection vulnerability in the test_mail function. This vulnerability allows attackers to execute arbitrary commands via a crafted input.

[CVE-2025-65267] [Modified: 05-12-2025] [Analyzed] [V3.1 S9.0:CRITICAL] In ERPNext v15.83.2 and Frappe Framework v15.86.0, improper validation of uploaded SVG avatar images allows attackers to embed malicious JavaScript. The payload executes when an administrator clicks the image link to view the avatar, resulting in stored cross-site scripting (XSS). Successful exploitation may lead to account takeover, privilege escalation, or full compromise of the affected ERPNext instance.

[CVE-2025-55182] [Modified: 10-12-2025] [Analyzed] [V3.1 S10.0:CRITICAL] A pre-authentication remote code execution vulnerability exists in React Server Components versions 19.0.0, 19.1.0, 19.1.1, and 19.2.0 including the following packages: react-server-dom-parcel, react-server-dom-turbopack, and react-server-dom-webpack. The vulnerable code unsafely deserializes payloads from HTTP requests to Server Function endpoints.

[CVE-2025-57198] [Modified: 23-12-2025] [Analyzed] [V3.1 S8.8:HIGH] AVTECH SECURITY Corporation DGM1104 FullImg-1015-1004-1006-1003 was discovered to contain an authenticated command injection vulnerability in the Machine.cgi endpoint. This vulnerability allows attackers to execute arbitrary commands via a crafted input.

[CVE-2025-57199] [Modified: 23-12-2025] [Analyzed] [V3.1 S8.8:HIGH] AVTECH SECURITY Corporation DGM1104 FullImg-1015-1004-1006-1003 was discovered to contain an authenticated command injection vulnerability in the NetFailDetectD binary. This vulnerability allows attackers to execute arbitrary commands via a crafted input.

[CVE-2025-57202] [Modified: 18-12-2025] [Analyzed] [V3.1 S6.1:MEDIUM] A stored cross-site scripting (XSS) vulnerability in the PwdGrp.cgi endpoint of AVTECH SECURITY Corporation DGM1104 FullImg-1015-1004-1006-1003 allows attackers to execute arbitrary web scripts or HTML via injecting a crafted payload into the username field.

[CVE-2025-65320] [Modified: 18-12-2025] [Analyzed] [V3.1 S7.5:HIGH] Abacre Restaurant Point of Sale (POS) up to 15.0.0.1656 are vulnerable to Cleartext Storage of Sensitive Information in Memory. The application leaves valid device-bound license keys in process memory during an activation attempt.

[CVE-2025-7044] [Modified: 18-12-2025] [Analyzed] [V3.1 S7.7:HIGH] An Improper Input Validation vulnerability exists in the user websocket handler of MAAS. An authenticated, unprivileged attacker can intercept a user.update websocket request and inject the is_superuser property set to true. The server improperly validates this input, allowing the attacker to self-promote to an administrator role. This results in full administrative control over the MAAS deployment.

[CVE-2024-32641] [Modified: 05-12-2025] [Analyzed] [V3.1 S9.8:CRITICAL] Masa CMS is an open source Enterprise Content Management platform. Masa CMS versions prior to 7.2.8, 7.3.13, and 7.4.6 are vulnerable to remote code execution. The vulnerability exists in the addParam function, which accepts user input via the criteria parameter. This input is subsequently evaluated by setDynamicContent, allowing an unauthenticated attacker to execute arbitrary code via the m tag. The vulnerability is patched in versions 7.2.8, 7.3.13, and 7.4.6.

[CVE-2024-32642] [Modified: 05-12-2025] [Analyzed] [V3.1 S8.8:HIGH] Masa CMS is an open source Enterprise Content Management platform. Prior to 7.2.8, 7.3.13, and 7.4.6, there is vulnerable to host header poisoning which allows account takeover via password reset email. This vulnerability is fixed in 7.2.8, 7.3.13, and 7.4.6.

[CVE-2024-32643] [Modified: 05-12-2025] [Analyzed] [V3.1 S7.5:HIGH] Masa CMS is an open source Enterprise Content Management platform. Prior to 7.2.8, 7.3.13, and 7.4.6, if the URL to the page is modified to include a /tag/ declaration, the CMS will render the page regardless of group restrictions. This vulnerability is fixed in 7.2.8, 7.3.13, and 7.4.6.

[CVE-2025-13492] [Modified: 05-12-2025] [Analyzed] [V3.1 S7.0:HIGH] A potential security vulnerability has been identified in HP Image Assistant for versions prior to 5.3.3. The vulnerability could potentially allow a local attacker to escalate privileges via a race condition when installing packages.

[CVE-2025-13751] [Modified: 30-01-2026] [Analyzed] [V3.1 S5.5:MEDIUM] Interactive service agent in OpenVPN version 2.5.0 through 2.6.16 and 2.7_alpha1 through 2.7_rc2 on Windows allows a local authenticated user to connect to the service and trigger an error causing a local denial of service.

[CVE-2025-20382] [Modified: 05-12-2025] [Analyzed] [V3.1 S3.5:LOW] In Splunk Enterprise versions below 10.0.2, 9.4.6, 9.3.8, and 9.2.10, and Splunk Cloud Platform versions below 10.1.2507.10, 10.0.2503.8, and 9.3.2411.120, a low-privileged user that does not hold the "admin" or "power" Splunk roles could create a views dashboard with a custom background using the `data:image/png;base64` protocol that could potentially lead to an unvalidated redirect. This behavior circumvents the Splunk external URL warning mechanism by using a specially crafted URL, allowing for a redirection to an external malicious site. The vulnerability requires the attacker to phish the victim by tricking them into initiating a request within their browser. The authenticated user should not be able to exploit the vulnerability at will.

[CVE-2025-20383] [Modified: 05-12-2025] [Analyzed] [V3.1 S4.3:MEDIUM] In Splunk Enterprise versions below 10.0.2, 9.4.6, 9.3.8, and 9.2.10, and below 3.9.10, 3.8.58, and 3.7.28 of Splunk Secure Gateway app in Splunk Cloud Platform, a low-privileged user that does not hold the "admin" or "power" Splunk roles and subscribes to mobile push notifications could receive notifications that disclose the title and description of the report or alert even if they do not have access to view the report or alert.

[CVE-2025-20384] [Modified: 05-12-2025] [Analyzed] [V3.1 S5.3:MEDIUM] In Splunk Enterprise versions below 10.0.1, 9.4.6, 9.3.8, and 9.2.10, and Splunk Cloud Platform versions below 10.1.2507.4, 10.0.2503.6, and 9.3.2411.117.125, an unauthenticated attacker can inject American National Standards Institute (ANSI) escape codes into Splunk log files due to improper validation at the /en-US/static/ web endpoint. This may allow them to poison, forge, or obfuscate sensitive log data through specially crafted HTTP requests, potentially impacting log integrity and detection capabilities.

[CVE-2025-20385] [Modified: 05-12-2025] [Analyzed] [V3.1 S2.4:LOW] In Splunk Enterprise versions below 10.0.2, 9.4.6, 9.3.8, and 9.2.10, and Splunk Cloud Platform versions below 10.1.2507.6, 10.0.2503.7, and 9.3.2411.117, a user who holds a role with a high privilege capability `admin_all_objects` could craft a malicious payload through the href attribute of an anchor tag within a collection in the navigation bar, which could result in execution of unauthorized JavaScript code in the browser of a user.

[CVE-2025-20386] [Modified: 05-12-2025] [Analyzed] [V3.1 S8.0:HIGH] In Splunk Enterprise for Windows versions below 10.0.2, 9.4.6, 9.3.8, and 9.2.10, a new installation of or an upgrade to an affected version can result in incorrect permissions assignment in the Splunk Enterprise for Windows Installation directory. This lets non-administrator users on the machine access the directory and all its contents.

[CVE-2025-20387] [Modified: 05-12-2025] [Analyzed] [V3.1 S8.0:HIGH] In Splunk Universal Forwarder for Windows versions below 10.0.2, 9.4.6, 9.3.8, and 9.2.10, a new installation of or an upgrade to an affected version can result in incorrect permissions assignment in the Universal Forwarder for Windows Installation directory. This lets non-administrator users on the machine access the directory and all its contents.

[CVE-2025-20388] [Modified: 05-12-2025] [Analyzed] [V3.1 S2.7:LOW] In Splunk Enterprise versions below 10.0.1, 9.4.6, 9.3.8, and 9.2.10, and Splunk Cloud Platform versions below 10.1.2507.4, 10.0.2503.7, and 9.3.2411.116, a user who holds a role that contains the high privilege capability `change_authentication` could enumerate internal IP addresses and network ports when adding new search peers to a Splunk search head in a distributed environment.