June 3, 2026

Vendor Advisories

This category highlights official security advisories and bulletins from vendors, including patch notices, product-specific vulnerabilities, remediation guidance, and important updates affecting supported technologies and platforms.

Cisco Integrated Management Controller Command Injection and Remote Code Execution Vulnerabilities Cisco Integrated Management Controller Command Injection and Remote Code Execution Vulnerabilities

Cisco Integrated Management Controller Command Injection and Remote Code Execution Vulnerabilities

Advisoryloom Editor April 22, 2026
Multiple vulnerabilities in the web-based management interface of Cisco Integrated Management Controller (IMC) could allow an authenticated,...
Read More Read more about Cisco Integrated Management Controller Command Injection and Remote Code Execution Vulnerabilities
Drupal core – Moderately critical – Gadget Chain – SA-CORE-2026-002 Drupal core – Moderately critical – Gadget Chain – SA-CORE-2026-002

Drupal core – Moderately critical – Gadget Chain – SA-CORE-2026-002

Advisoryloom Editor April 22, 2026
Project:  Drupal core Date:  2026-April-15 Security risk:  Moderately critical 14 ∕ 25 AC:Complex/A:Admin/CI:All/II:All/E:Theoretical/TD:Uncommon Vulnerability:  Gadget Chain Affected versions:  >=...
Read More Read more about Drupal core – Moderately critical – Gadget Chain – SA-CORE-2026-002
Drupal core – Moderately critical – Cross-site scripting – SA-CORE-2026-003 Drupal core – Moderately critical – Cross-site scripting – SA-CORE-2026-003

Drupal core – Moderately critical – Cross-site scripting – SA-CORE-2026-003

Advisoryloom Editor April 22, 2026
Project:  Drupal core Date:  2026-April-15 Security risk:  Moderately critical 13 ∕ 25 AC:Basic/A:User/CI:Some/II:Some/E:Theoretical/TD:Default Vulnerability:  Cross-site scripting Affected versions:  >=...
Read More Read more about Drupal core – Moderately critical – Cross-site scripting – SA-CORE-2026-003