VulncastBriefing archive

Daily Brief - 2026-06-21

· 4 vulnerabilities · 5 min listen

▶ Listen to this briefing

CVE-2026-48939

iCagenda iCagenda

A vulnerability in the iCagenda extension for Joomla allows the upload of arbitrary files in the file attachment feature, ultimately resulting in PHP code upload and execution.

  • Arbitrary File Upload
  • Remote Code Execution
  • joomla
  • php
  • web application

CVE-2026-5366

critical · CVSS 9.9 · Prefect Prefect

Prefect version 3.6.23 is vulnerable to remote code execution due to improper handling of user-controlled input in the `GitRepository` storage class. The `commit_sha` parameter, which is passed to git commands, lacks validation and does not include a `--` separator to distinguish user input from git flags. This allows attackers to inject arbitrary git flags, such as `--upload-pack`, enabling execution of external programs. Additionally, the `directories` parameter can be exploited to inject git flags during sparse-checkout operations. These vulnerabilities allow any user with deployment creation permissions to execute arbitrary commands on worker machines, compromising shared work pools in multi-tenant environments.

  • Remote Code Execution
  • Command Injection
  • python
  • git
  • workflow orchestration

CVE-2026-56216

high · CVSS 8.8 · Capgo Capgo

Capgo before 12.128.2 contains a scope escalation vulnerability in the POST /functions/v1/apikey endpoint that allows app-limited API keys to mint unrestricted keys by setting empty limits. Attackers with a compromised app-limited key can create an unrestricted key with org-wide access to resources like app listings and other protected endpoints.

  • Scope Escalation
  • Privilege Escalation
  • web application
  • api
  • key management

CVE-2026-56340

high · CVSS 8.8 · vLLM vLLM

vLLM versions >= 0.10.2 and < 0.13.0 are missing sparse tensor validation in multimodal embeddings processing. Because PyTorch disables sparse tensor invariant checks by default, an attacker can submit crafted embedding requests with malformed (negative or out-of-bounds) tensor indices, when the prompt-embeds feature is enabled, to trigger crashes or resource exhaustion (denial of service), with potential for out-of-bounds/write-what-where memory corruption. This continues CVE-2025-62164, whose prior fix only disabled the feature by default rather than addressing the root cause.

  • Denial of Service
  • Out-of-Bounds Memory Access
  • Memory Corruption
  • python
  • pytorch
  • machine learning framework