Archive snapshot

Tue, Jun 02 · 06:00 AM CDT

Archived briefing content rendered inside the ACSP site experience.

Back to archive

Archived briefing

Snapshot overview

Generated Tue, Jun 02 · 06:00 AM CDTWindow last 6 hours

Top line

Coverage now updates on a rolling 6-hour window, while NVD entries come from the live API using a last-24-hours modified window and are sorted by severity.

Fast take

News stays on the current 6-hour slice, videos now use the last 24 hours, and NVD uses the API instead of the traditional feed to better match the live site behavior.

Top stories

5

Worth skimming

5

Tracked videos

2

NVD vulnerabilities

25

Top stories

Tue, Jun 02 · 06:00 AM CDT

Attackers Hijack Red Hat npm Scope to Steal Cloud Secrets

9.3/10 · Must read/watch

Infosecurity Magazinesupply-chain

Summary
Collected from the Infosecurity Magazine news page during the latest run.

Open article ↗

Tue, Jun 02 · 06:00 AM CDT

Threat Actor Uses AI to Build EDR Evasion Tools

8.7/10 · Worth your time

Infosecurity Magazineai

Summary
Collected from the Infosecurity Magazine news page during the latest run.

Open article ↗

Tue, Jun 02 · 06:00 AM CDT

Infosecurity Europe: UK Firms Prioritize AI Threat Preparedness as Cyber Risks Evolve

8.7/10 · Worth your time

Infosecurity Magazineai

Summary
Collected from the Infosecurity Magazine news page during the latest run.

Open article ↗

Tue, Jun 02 · 05:10 AM CDT

Michael Burry says neither SpaceX nor Anthropic is worth $1T

8.4/10 · Worth your time

Hacker Newsai

Summary
Surfaced from Hacker News front page during collection run. Freshness on HN: 50 minutes ago.

Open article ↗

Tue, Jun 02 · 06:00 AM CDT

Infosecurity Europe: Business Leaders Lack Understanding of Threat Intelligence, Study Warns

8.2/10 · Worth your time

Infosecurity Magazinegeneral

Summary
Collected from the Infosecurity Magazine news page during the latest run.

Open article ↗

Worth skimming

Tue, 02 Jun 2026 14:35:40 +0530

Pakistan-Linked SideCopy Targets Afghanistan Finance Ministry with Xeno RAT

8.1/10 · Worth your time

The Hacker Newsai

Summary
Cybersecurity researchers have disclosed details of a spear-phishing campaign likely undertaken by the Pakistan-aligned SideCopy group targeting Afghanistan's Ministry of Finance with an open-source remote access trojan called Xeno RAT. "The campaign opens wit

Open article ↗

Tue, Jun 02 · 05:01 AM CDT

Adafruit Receives Demand Letter from Fenwick Legal Counsel on Behalf of Flux.ai

8.1/10 · Worth your time

Hacker Newsai

Summary
Surfaced from Hacker News front page during collection run. Freshness on HN: 59 minutes ago.

Open article ↗

Tue, Jun 02 · 12:00 AM CDT

Strace-ui, Bonsai_term, and the TUI renaissance

8.1/10 · Worth your time

Hacker Newsai

Summary
Surfaced from Hacker News front page during collection run. Freshness on HN: 6 hours ago.

Open article ↗

Tue, Jun 02 · 06:00 AM CDT

Attackers Abuse Shared Content for ChatGPT Phishing Campaign

8.0/10 · Worth your time

Infosecurity Magazineai

Summary
Collected from the Infosecurity Magazine news page during the latest run.

Open article ↗

Tue, Jun 02 · 06:00 AM CDT

Critical Flowise Flaw Gives Attackers Full Server Control

7.7/10 · Worth your time

Infosecurity Magazinegeneral

Summary
Collected from the Infosecurity Magazine news page during the latest run.

Open article ↗

Videos worth watching

Mon, Jun 01 · 07:45 AM CDT

How I Found My First $3,000 AI Vulnerability

8.8/10 · Worth your time

YouTube / NahamSecvulnai

Why it matters
Recent creator upload with some page-level evidence. Better than raw feed discovery, but still not a full content review.

Worth watching?Maybe — good candidate if the title matches your interests, but confidence is still moderate.

Confidencelow

Open article ↗

Mon, Jun 01 · 08:00 AM CDT

A Linux Backdoor is For Sale on the Dark Web

7.6/10 · Worth your time

YouTube / John Hammondgeneral

Why it matters
Recent creator upload with some page-level evidence. Better than raw feed discovery, but still not a full content review.

Worth watching?Maybe — good candidate if the title matches your interests, but confidence is still moderate.

Confidencelow

Open article ↗

NVD vulnerabilities

Fri, Feb 14 · 01:15 PM CST

CVE-2024-13152

10.0/10 · Must read/watch

NVDvuln

Summary
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in BSS Software Mobuy Online Machinery Monitoring Panel allows SQL Injection. This issue affects Mobuy Online Machinery Monitoring Panel: before 2.0.

CVECVE-2024-13152

SeverityCRITICAL

TypeUPDATED

PublishedFri, Feb 14 · 01:15 PM CST

ModifiedMon, Jun 01 · 01:16 PM CDT

Open article ↗

Wed, Dec 25 · 01:15 PM CST

CVE-2024-8950

9.9/10 · Must read/watch

NVDvuln

Summary
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Arne Informatics Piramit Automation allows Blind SQL Injection. This issue affects Piramit Automation: before 27.09.2024.

CVECVE-2024-8950

SeverityCRITICAL

TypeUPDATED

PublishedWed, Dec 25 · 01:15 PM CST

ModifiedTue, Jun 02 · 09:16 AM CDT

Open article ↗

Mon, Mar 06 · 08:15 AM CST

CVE-2023-0839

9.8/10 · Must read/watch

NVDvuln

Summary
Improper Protection for Outbound Error Messages and Alert Signals vulnerability in ProMIS Process Co. InSCADA allows Account Footprinting. This issue affects inSCADA: before 20230115-1.

CVECVE-2023-0839

SeverityCRITICAL

TypeUPDATED

PublishedMon, Mar 06 · 08:15 AM CST

ModifiedMon, Jun 01 · 01:16 PM CDT

Open article ↗

Thu, Feb 23 · 08:15 AM CST

CVE-2023-0939

9.8/10 · Must read/watch

NVDvuln

Summary
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in NTN Information Technologies Online Services Software allows SQL Injection. This issue affects Online Services Software: before 1.17.

CVECVE-2023-0939

SeverityCRITICAL

TypeUPDATED

PublishedThu, Feb 23 · 08:15 AM CST

ModifiedMon, Jun 01 · 01:16 PM CDT

Open article ↗

Mon, Mar 06 · 03:15 PM CST

CVE-2023-0979

9.8/10 · Must read/watch

NVDvuln

Summary
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in MedData MedDataPACS allows SQL Injection. This issue affects MedDataPACS : before 2023-03-03.

CVECVE-2023-0979

SeverityCRITICAL

TypeUPDATED

PublishedMon, Mar 06 · 03:15 PM CST

ModifiedMon, Jun 01 · 01:16 PM CDT

Open article ↗

Thu, Mar 23 · 07:15 AM CDT

CVE-2023-1050

9.8/10 · Must read/watch

NVDvuln

Summary
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in As Koc Energy Web Report System allows SQL Injection. This issue affects Web Report System: before 23.03.10.

CVECVE-2023-1050

SeverityCRITICAL

TypeUPDATED

PublishedThu, Mar 23 · 07:15 AM CDT

ModifiedMon, Jun 01 · 01:16 PM CDT

Open article ↗

Wed, Mar 01 · 01:15 PM CST

CVE-2023-1064

9.8/10 · Must read/watch

NVDvuln

Summary
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Uzay Baskul Weighbridge Automation Software allows SQL Injection. This issue affects Weighbridge Automation Software: before 1.1.

CVECVE-2023-1064

SeverityCRITICAL

TypeUPDATED

PublishedWed, Mar 01 · 01:15 PM CST

ModifiedMon, Jun 01 · 01:16 PM CDT

Open article ↗

Fri, Mar 10 · 08:15 AM CST

CVE-2023-1091

9.8/10 · Must read/watch

NVDvuln

Summary
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Alpata Licensed Warehousing Automation System allows Command Line Execution through SQL Injection. This issue affects Licensed Warehousing Automation System: through 2023.1.01.

CVECVE-2023-1091

SeverityCRITICAL

TypeUPDATED

PublishedFri, Mar 10 · 08:15 AM CST

ModifiedMon, Jun 01 · 01:16 PM CDT

Open article ↗

Wed, Mar 01 · 01:15 PM CST

CVE-2023-1114

9.8/10 · Must read/watch

NVDvuln

Summary
Missing Authorization vulnerability in Eskom e-Belediye allows Information Elicitation. This issue affects e-Belediye: from 1.0.0.95 before 1.0.0.100.

CVECVE-2023-1114

SeverityCRITICAL

TypeUPDATED

PublishedWed, Mar 01 · 01:15 PM CST

ModifiedMon, Jun 01 · 01:16 PM CDT

Open article ↗

Fri, Mar 17 · 09:15 AM CDT

CVE-2023-1152

9.8/10 · Must read/watch

NVDvuln

Summary
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Utarit Information Technologies Persolus allows SQL Injection. This issue affects Persolus: before 2.03.93.

CVECVE-2023-1152

SeverityCRITICAL

TypeUPDATED

PublishedFri, Mar 17 · 09:15 AM CDT

ModifiedMon, Jun 01 · 01:16 PM CDT

Open article ↗

Tue, Mar 21 · 12:15 PM CDT

CVE-2023-1153

9.8/10 · Must read/watch

NVDvuln

Summary
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Pacsrapor allows SQL Injection, Command Line Execution through SQL Injection. This issue affects Pacsrapor: before 1.22.

CVECVE-2023-1153

SeverityCRITICAL

TypeUPDATED

PublishedTue, Mar 21 · 12:15 PM CDT

ModifiedMon, Jun 01 · 01:16 PM CDT

Open article ↗

Fri, Mar 10 · 09:15 PM CST

CVE-2023-1198

9.8/10 · Must read/watch

NVDvuln

Summary
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Saysis Starcities allows SQL Injection. This issue affects Starcities: through 1.3.

CVECVE-2023-1198

SeverityCRITICAL

TypeUPDATED

PublishedFri, Mar 10 · 09:15 PM CST

ModifiedMon, Jun 01 · 01:16 PM CDT

Open article ↗

Thu, Mar 09 · 08:15 AM CST

CVE-2023-1251

9.8/10 · Must read/watch

NVDvuln

Summary
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Akinsoft Wolvox. This issue affects Wolvox: before 8.02.03.

CVECVE-2023-1251

SeverityCRITICAL

TypeUPDATED

PublishedThu, Mar 09 · 08:15 AM CST

ModifiedMon, Jun 01 · 01:16 PM CDT

Open article ↗

Wed, Mar 08 · 12:15 PM CST

CVE-2023-1267

9.8/10 · Must read/watch

NVDvuln

Summary
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Ulkem Company PtteM Kart. This issue affects PtteM Kart: before 2.1.

CVECVE-2023-1267

SeverityCRITICAL

TypeUPDATED

PublishedWed, Mar 08 · 12:15 PM CST

ModifiedMon, Jun 01 · 01:16 PM CDT

Open article ↗

Tue, May 23 · 09:15 PM CDT

CVE-2023-1508

9.8/10 · Must read/watch

NVDvuln

Summary
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Adam Retail Automation Systems Mobilmen Terminal Software allows SQL Injection. This issue affects Mobilmen Terminal Software: before 3.

CVECVE-2023-1508

SeverityCRITICAL

TypeUPDATED

PublishedTue, May 23 · 09:15 PM CDT

ModifiedMon, Jun 01 · 01:16 PM CDT

Open article ↗

Thu, Jul 13 · 08:15 AM CDT

CVE-2023-1547

9.8/10 · Must read/watch

NVDvuln

Summary
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Elra Parkmatik allows SQL Injection through SOAP Parameter Tampering, Command Line Execution through SQL Injection. This issue affects Parkmatik: before 02.01-a51.

CVECVE-2023-1547

SeverityCRITICAL

TypeUPDATED

PublishedThu, Jul 13 · 08:15 AM CDT

ModifiedMon, Jun 01 · 11:16 AM CDT

Open article ↗

Mon, Nov 04 · 12:16 PM CST

CVE-2024-10035

9.8/10 · Must read/watch

NVDvuln

Summary
Improper Control of Generation of Code ('Code Injection'), Improper Neutralization of Special Elements used in a Command ('Command Injection'), Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection') vulnerability in BG-TEK Informatics Security Technologies CoslatV3 allows Command Inj

CVECVE-2024-10035

SeverityCRITICAL

TypeUPDATED

PublishedMon, Nov 04 · 12:16 PM CST

ModifiedTue, Jun 02 · 09:16 AM CDT

Open article ↗

Thu, Dec 19 · 02:15 PM CST

CVE-2024-10244

9.8/10 · Must read/watch

NVDvuln

Summary
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in ISDO Software Web Software allows SQL Injection. This issue affects Web Software: before 3.6.

CVECVE-2024-10244

SeverityCRITICAL

TypeUPDATED

PublishedThu, Dec 19 · 02:15 PM CST

ModifiedTue, Jun 02 · 07:16 AM CDT

Open article ↗

Fri, Nov 15 · 11:15 AM CST

CVE-2024-10534

9.8/10 · Must read/watch

NVDvuln

Summary
Origin Validation Error vulnerability in Dataprom Informatics Personnel Attendance Control Systems (PACS) / Access Control Security Systems (ACSS) allows Traffic Injection. This issue affects Personnel Attendance Control Systems (PACS) / Access Control Security Systems (ACSS): before 2024.

CVECVE-2024-10534

SeverityCRITICAL

TypeUPDATED

PublishedFri, Nov 15 · 11:15 AM CST

ModifiedTue, Jun 02 · 07:16 AM CDT

Open article ↗

Wed, Mar 05 · 02:15 PM CST

CVE-2024-12097

9.8/10 · Must read/watch

NVDvuln

Summary
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Boceksoft Informatics E-Travel allows SQL Injection. This issue affects E-Travel: before 15.12.2024.

CVECVE-2024-12097

SeverityCRITICAL

TypeUPDATED

PublishedWed, Mar 05 · 02:15 PM CST

ModifiedTue, Jun 02 · 07:16 AM CDT

Open article ↗

Thu, Mar 06 · 02:15 PM CST

CVE-2024-12144

9.8/10 · Must read/watch

NVDvuln

Summary
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Finder Fire Safety Finder ERP/CRM (Old System) allows SQL Injection. This issue affects Finder ERP/CRM (Old System): before 18.12.2024.

CVECVE-2024-12144

SeverityCRITICAL

TypeUPDATED

PublishedThu, Mar 06 · 02:15 PM CST

ModifiedMon, Jun 01 · 03:16 PM CDT

Open article ↗

Wed, Mar 05 · 02:15 PM CST

CVE-2024-13147

9.8/10 · Must read/watch

NVDvuln

Summary
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Merkur Software B2B Login Panel allows SQL Injection. This issue affects B2B Login Panel: before 15.01.2025.

CVECVE-2024-13147

SeverityCRITICAL

TypeUPDATED

PublishedWed, Mar 05 · 02:15 PM CST

ModifiedMon, Jun 01 · 01:16 PM CDT

Open article ↗

Thu, Feb 27 · 03:15 PM CST

CVE-2024-13148

9.8/10 · Must read/watch

NVDvuln

Summary
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Yukseloglu Filter B2B Login Platform allows SQL Injection. This issue affects B2B Login Platform: before 16.01.2025.

CVECVE-2024-13148

SeverityCRITICAL

TypeUPDATED

PublishedThu, Feb 27 · 03:15 PM CST

ModifiedMon, Jun 01 · 01:16 PM CDT

Open article ↗

Mon, Dec 09 · 02:15 PM CST

CVE-2024-8259

9.8/10 · Must read/watch

NVDvuln

Summary
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Eryaz Information Technologies NatraCar B2B Dealer Management Program allows SQL Injection. This issue affects NatraCar B2B Dealer Management Program: through 09.12.2024. NOTE: The vendor was contacted and it was learn

CVECVE-2024-8259

SeverityCRITICAL

TypeUPDATED

PublishedMon, Dec 09 · 02:15 PM CST

ModifiedTue, Jun 02 · 09:16 AM CDT

Open article ↗

Mon, Mar 03 · 03:15 PM CST

CVE-2024-8262

9.8/10 · Must read/watch

NVDvuln

Summary
Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in Proliz Software OBS allows Path Traversal. This issue affects OBS: before 24.0927.

CVECVE-2024-8262

SeverityCRITICAL

TypeUPDATED

PublishedMon, Mar 03 · 03:15 PM CST

ModifiedTue, Jun 02 · 09:16 AM CDT

Open article ↗

Ignore today

Generic low-detail roundups without primary reporting.
HN items that are interesting but not clearly security or AI relevant.
Creator videos that look more like promotion, podcast chatter, or evergreen content than time-sensitive signal outside the rolling window.