CERT Polska

Vulnerabilities in QuickCMS software

CERT Polska — Fri, 29 May 2026 15:15:00 +0100

CERT Polska has received a report about 2 vulnerabilities (CVE-2026-33384 and CVE-2026-33386) found in QuickCMS software.

Vulnerability in Kidsview application

CERT Polska — Thu, 28 May 2026 14:55:00 +0100

Authentication Bypass vulnerability (CVE-2026-8990) has been found in Kidsview software.

Vulnerability in bzip2 software

CERT Polska — Thu, 28 May 2026 13:15:00 +0100

Out-of-bounds Write vulnerability (CVE-2026-42250) has been found in bzip2 software.

Vulnerability in D-Link DWR-X1820 router

CERT Polska — Thu, 28 May 2026 12:55:00 +0100

Use of Weak Credentials vulnerability (CVE-2026-4377) has been found in DWR-X1820 router.

Vulnerabilities in Slican telephone exchanges software

CERT Polska — Wed, 27 May 2026 11:55:00 +0100

CERT Polska has received a report about 3 vulnerabilities (CVE-2026-35087, CVE-2026-35089 and CVE-2026-35090) found in Slican telephone exchanges software.

Vulnerability in Szafir SDK software

CERT Polska — Mon, 25 May 2026 15:55:00 +0100

Improper Certificate Verification vulnerability (CVE-2026-9058) has been found in Szafir SDK software.

Vulnerability in Kenik cameras software

CERT Polska — Mon, 25 May 2026 12:55:00 +0100

Path Traversal vulnerability (CVE-2026-7766) has been found in Kenik cameras software.

Vulnerability in Lifetime software

CERT Polska — Mon, 25 May 2026 11:55:00 +0100

Authorization Bypass Through User-Controlled Key vulnerability (CVE-2026-40127) has been found in OutSystems Lifetime software.

Vulnerability in vifm software

CERT Polska — Fri, 22 May 2026 14:55:00 +0100

Heap-based Buffer Overflow vulnerability (CVE-2026-8997) has been found in vifm software.

Vulnerabilities in STER software

CERT Polska — Fri, 22 May 2026 11:55:00 +0100

CERT Polska has received a report about 3 vulnerabilities (from CVE-2026-25606 to CVE-2026-25608) found in STER software.

Autonomous fuzzing process under LLM supervision

CERT Polska — Thu, 21 May 2026 13:37:00 +0100

The CCN project is co-financed by the European Regional Development Fund and the State Budget under the European Funds for Digital Development Programme 2021-2027.

Fuzzing is an automated software testing technique that involves feeding random or deliberately malformed input data to detect bugs and security vulnerabilities. For years it has …

Vulnerability in Request Tracker software

CERT Polska — Thu, 21 May 2026 11:55:00 +0100

Cross-site Scripting vulnerability (CVE-2026-6841) has been found in Request Tracker software.

Vulnerabilities in Sparx Systems products

CERT Polska — Tue, 19 May 2026 10:55:00 +0100

CERT Polska has received a report about 5 vulnerabilities (from CVE-2026-42096 to CVE-2026-42100) found in Sparx Systems products: Pro Cloud Server and Enterprise Architect.

Vulnerabilities in DHTMLX software

CERT Polska — Fri, 15 May 2026 12:55:00 +0100

CERT Polska has received a report about 3 vulnerabilities (CVE-2026-7182, CVE-2026-41552 and CVE-2026-41553) found in DHTMLX software.

Vulnerability in SzafirHost software

CERT Polska — Fri, 15 May 2026 11:55:00 +0100

Unrestricted Upload of File with Dangerous Type vulnerability (CVE-2026-44088) has been found in SzafirHost software.

Vulnerability in Verint Verba software

CERT Polska — Thu, 14 May 2026 15:00:00 +0100

Cross-site Scripting vulnerability (CVE-2026-21730) has been found in Verba software.

Vulnerability in WEBCON BPS software

CERT Polska — Thu, 14 May 2026 14:55:00 +0100

Cross-site Scripting vulnerability (CVE-2026-1630) has been found in WEBCON BPS software.

Vulnerabilities in Comarch ERP Optima software

CERT Polska — Thu, 14 May 2026 13:55:00 +0100

CERT Polska has received a report about 2 vulnerabilities (CVE-2025-68420 and CVE-2025-68421) found in Comarch ERP Optima software.

Vulnerability in simdjson library

CERT Polska — Thu, 14 May 2026 11:55:00 +0100

Integer Overflow vulnerability (CVE-2026-8295) has been found in simdjson library.

Vulnerability in Code Runner MCP Server project

CERT Polska — Tue, 12 May 2026 11:55:00 +0100

Missing Authentication for Critical Function vulnerability (CVE-2026-5029) has been found in Code Runner MCP Server software.

Vulnerabilities in ATutor software

CERT Polska — Mon, 11 May 2026 11:55:00 +0100

CERT Polska has received a report about 2 vulnerabilities (CVE-2026-6909 and CVE-2026-6956) found in ATutor software.

Vulnerability in GW1101-1D(RS-485)-TB-P modbus gateways

CERT Polska — Mon, 04 May 2026 15:55:00 +0100

OS Command Injection vulnerability (CVE-2025-13605) has been found in 3onedata GW1101-1D(RS-485)-TB-P modbus gateways.

Vulnerability in LEX Baza Dokumentów software

CERT Polska — Thu, 30 Apr 2026 11:55:00 +0100

Cross-site Scripting vulnerability (CVE-2026-1493) has been found in LEX Baza Dokumentów software.

Vulnerabilities in Ollama software

CERT Polska — Wed, 29 Apr 2026 11:55:00 +0100

CERT Polska has received a report about 2 vulnerabilities (CVE-2026-42248 and CVE-2026-42249) found in Ollama software.

Vulnerabilities in mpGabinet software

CERT Polska — Tue, 28 Apr 2026 11:55:00 +0100

CERT Polska has received a report about 3 vulnerabilities (from CVE-2026-40550 to CVE-2026-40552) found in mpGabinet software.

Vulnerability in AdaptiveGRC software

CERT Polska — Fri, 24 Apr 2026 11:55:00 +0100

Cross-site Scripting vulnerability (CVE-2026-4313) has been found in AdaptiveGRC software.

Vulnerability in GNU sed software

CERT Polska — Mon, 20 Apr 2026 11:55:00 +0100

Time-of-check Time-of-use (TOCTOU) Race Condition vulnerability (CVE-2026-5958) has been found in GNU sed software.

Vulnerability in Fudo Enterprise software

CERT Polska — Mon, 20 Apr 2026 10:55:00 +0100

Incorrect Authorization vulnerability (CVE-2025-13480) has been found in Fudo Enterprise software.

Vulnerabilities in PAC4J software

CERT Polska — Fri, 17 Apr 2026 14:55:00 +0100

CERT Polska has received a report about 2 vulnerabilities (CVE-2026-40458, CVE-2026-40459) found in PAC4J software.

Vulnerability in GREENmod software

CERT Polska — Fri, 17 Apr 2026 11:55:00 +0100

Server-Side Request Forgery (SSRF) vulnerability (CVE-2026-5131) has been found in GREENmod software.

Vulnerability in MCPHub software

CERT Polska — Tue, 14 Apr 2026 11:55:00 +0100

Authorization bypass vulnerability (CVE-2025-13822) has been found in MCPHub project.

Vulnerabilities in Hydrosystem Control System software

CERT Polska — Thu, 09 Apr 2026 11:55:00 +0100

CERT Polska has received a report about 3 vulnerabilities (CVE-2026-4901, CVE-2026-34184, CVE-2026-34185) found in Hydrosystem Control System software.

Annual report from the actions of CERT Polska 2025

CERT Polska — Wed, 08 Apr 2026 09:00:00 +0200

Another year of CERT Polska’s activities is behind us. It was a special one, as it marked the end of the third decade of our operations – we are celebrating our 30th anniversary! The year 2025 was a time full of challenges, growth, and a comprehensive approach to shaping cybersecurity – from proactive threat detection, through handling reports and responding to incidents, to sharing knowledge and building public awareness.

Vulnerabilities in Mlflow software

CERT Polska — Tue, 07 Apr 2026 13:55:00 +0100

CERT Polska has received a report about 2 vulnerabilities (CVE-2026-33865, CVE-2026-33866) found in Mlflow software.

Vulnerability in Bludit software

CERT Polska — Tue, 07 Apr 2026 11:55:00 +0100

CERT Polska has received a report about a Stored Cross-site Scripting vulnerability found in Bludit software.

Analysis of cifrat: could this be an evolution of a mobile RAT?

Kacper Ratajczak — Fri, 03 Apr 2026 12:00:00 +0200

CERT Polska analyzed a Booking themed Android malware chain delivered through phishing and a fake update website. The sample is a multistage dropper that installs a hidden accessibility controlled RAT with WebSocket C2.

Vulnerabilities in Szafir software

CERT Polska — Thu, 02 Apr 2026 11:55:00 +0100

CERT Polska has received a report about 2 vulnerabilities (CVE-2026-26927, CVE-2026-26928) found in Szafir software.

Analysis of FvncBot campaign

Kacper Ratajczak — Mon, 30 Mar 2026 14:00:00 +0100

CERT Polska has analyzed an SGB-branded Android malware sample from the FvncBot campaign targeting Poland. The app installs a second-stage implant, coerces the victim into enabling accessibility, and registers the device to a backend that issues per-device credentials.

Vulnerability in Robolinho Update Software

CERT Polska — Mon, 30 Mar 2026 09:55:00 +0100

Use of Hard-coded Credentials vulnerability (CVE-2026-1612) has been found in Robolinho Update Software.

Vulnerabilities in Bludit software

CERT Polska — Fri, 27 Mar 2026 11:55:00 +0100

CERT Polska has received a report about 3 vulnerabilities (from CVE-2026-25099 to CVE-2026-25101) found in Bludit software.

Vulnerability in KlinikaXP and KlinikaXP Insertino software

CERT Polska — Mon, 23 Mar 2026 11:55:00 +0100

Use of Hard-coded Credentials vulnerability (CVE-2026-1958) has been found in KlinikaXP and KlinikaXP Insertino software.

Vulnerability in Befree SDK software

CERT Polska — Wed, 18 Mar 2026 11:55:00 +0100

Cross-site Scripting vulnerability (CVE-2025-12518) has been found in Befree SDK software.

Vulnerabilities in Raytha software

CERT Polska — Mon, 16 Mar 2026 13:55:00 +0100

CERT Polska has received a report about 11 vulnerabilities (CVE-2025-15540 and from CVE-2025-69236 to CVE-2025-69243 and from CVE-2025-69245 to CVE-2025-69246) found in Raytha software.

Vulnerabilities in multiple tinycontrol devices

CERT Polska — Mon, 16 Mar 2026 11:55:00 +0100

CERT Polska has received reports about 2 vulnerabilities (CVE-2025-11500 and CVE-2025-15587) found in multiple tinycontrol devices (tcPDU and LAN Controllers: LK3.5, LK3.9 and LK4).

Vulnerability in Streamsoft Prestiż software

CERT Polska — Thu, 12 Mar 2026 11:55:00 +0100

Weak Token Encoding vulnerability (CVE-2026-0809) has been found in Streamsoft Prestiż software.

Vulnerability in Coppermine Photo Gallery software

CERT Polska — Wed, 11 Mar 2026 11:55:00 +0100

Path Traversal vulnerability (CVE-2026-3013) has been found in Coppermine Photo Gallery software.

Vulnerability in QuickCMS software

CERT Polska — Fri, 06 Mar 2026 11:55:00 +0100

Cross-Site Request Forgery (CSRF) vulnerability (CVE-2026-1468) has been found in QuickCMS software.

Vulnerabilities in DobryCMS software

CERT Polska — Mon, 02 Mar 2026 13:55:00 +0100

CERT Polska has received a report about 2 vulnerabilities (CVE-2025-12462 and CVE-2025-14532) found in DobryCMS software.

Vulnerabilities in CGM CLININET and CGM NETRAAD software

CERT Polska — Mon, 02 Mar 2026 11:55:00 +0100

CERT Polska has received reports about 8 vulnerabilities found in CGM CLININET and CGM NETRAAD software.

Vulnerability in Pro3W CMS software

CERT Polska — Fri, 27 Feb 2026 13:55:00 +0100

SQL Injection vulnerability (CVE-2025-15498) has been found in Pro3W CMS software.

Vulnerabilities in PluXml CMS software

CERT Polska — Fri, 27 Feb 2026 11:55:00 +0100

CERT Polska has received a report about 3 vulnerabilities (from CVE-2026-24350 to CVE-2026-24352) found in PluXml CMS software.

Vulnerability in Omega-PSIR software

CERT Polska — Thu, 26 Feb 2026 12:55:00 +0100

Reflected XSS vulnerability (CVE-2026-1434) has been found in Omega-PSIR software.

Vulnerability in Simple.ERP software

CERT Polska — Thu, 26 Feb 2026 11:55:00 +0100

SQL Injection vulnerability (CVE-2026-1198) has been found in Simple.ERP software.

Vulnerability in multiple Finka applications

CERT Polska — Tue, 24 Feb 2026 15:55:00 +0100

Use of Hard-coded Credentials vulnerability (CVE-2025-13776) has been found in Finka-FK, Finka-KPR, Finka-Płace, Finka-Faktura, Finka-Magazyn, Finka-STW applications.

Vulnerability in multiple Slican devices

CERT Polska — Tue, 24 Feb 2026 12:55:00 +0100

Missing Authentication for Critical Function vulnerability (CVE-2025-14577) has been found in in multiple Slican devices.

ClickFix in action: how fake captcha can lead to a company-wide infection

Jarosław Jedynak — Tue, 17 Feb 2026 10:00:00 +0200

We assisted a large organisation in the investigation and remediation of a live malware infection caused by a successful Fake Captcha attack. In this report, we summarize our observations and publish an in-depth malware analysis.

Vulnerabilities in Quick.Cart software

CERT Polska — Thu, 05 Feb 2026 11:55:00 +0100

CERT Polska has received a report about 2 vulnerabilities (CVE-2026-23796 and CVE-2026-23797) found in Quick.Cart software.

Vulnerability in mObywatel application for iOS

CERT Polska — Tue, 03 Feb 2026 11:55:00 +0100

Exposure of Private Personal Information to an Unauthorized Actor vulnerability (CVE-2025-11598) has been found in mObywatel application for iOS.

Vulnerability in EAP Legislator software

CERT Polska — Mon, 02 Feb 2026 11:55:00 +0100

A vulnerability has been found in EAP Legislator software that allows a file archive to be extracted outside the target directory (CVE-2026-1186).

Energy Sector Incident Report - 29 December 2025

CERT Polska — Fri, 30 Jan 2026 11:00:00 +0100

CERT Polska presents a report on the analysis of an incident in the energy sector that occurred on 29 December 2025. The attacks were destructive in nature and targeted wind and photovoltaic farms, a large combined heat and power plant, and a company from the manufacturing sector. The publication aims to raise awareness of the risks associated with sabotage in cyberspace.

Vulnerabilities in firmware of Pix-Link LV-WR21Q routers

CERT Polska — Tue, 27 Jan 2026 11:55:00 +0100

CERT Polska has received a report about 2 vulnerabilities (CVE-2025-12386 and CVE-2025-12387) found in LV-WR21Q firmware.

TCC Bypass vulnerability in Inkscape application for MacOS

CERT Polska — Thu, 22 Jan 2026 13:55:00 +0100

TCC Bypass vulnerability (CVE-2025-15523) has been found in Inkscape application for MacOS.

Vulnerabilities in Quick.Cart software

CERT Polska — Thu, 22 Jan 2026 11:55:00 +0100

CERT Polska has received a report about 2 vulnerabilities (CVE-2025-67683 and CVE-2025-67684) found in Quick.Cart software.

Vulnerability in Crazy Bubble Tea mobile application

CERT Polska — Wed, 14 Jan 2026 12:55:00 +0100

Exposure of Private Personal Information (CVE-2025-14317) has been identified in Crazy Bubble Tea mobile application.

Vulnerability in Ysoft SafeQ 6 software

CERT Polska — Wed, 14 Jan 2026 11:55:00 +0100

Missing Password Field Masking vulnerability (CVE-2025-13175) has been found in Ysoft SafeQ 6 software.

Vulnerabilities in firmware of Vivotek IP7137 camera

CERT Polska — Fri, 09 Jan 2026 12:55:00 +0100

CERT Polska has received a report about 4 vulnerabilities (from CVE-2025-66049 to CVE-2025-66052) found in Vivotek IP7137 camera.

Vulnerability in firmware of KAON CG3000T/CG3000TC routers

CERT Polska — Fri, 09 Jan 2026 11:55:00 +0100

Use of Hard-coded Credentials vulnerability (CVE-2025-7072) has been found in firmware of KAON routers CG3000T and CG3000TC.

Vulnerability in Asseco AMDX software

CERT Polska — Thu, 08 Jan 2026 15:56:00 +0100

An issue allowing unauthorized access to medical records (CVE-2025-4596) was found in Asseco AMDX software.

Vulnerabilities in Asseco InfoMedica Plus software

CERT Polska — Thu, 08 Jan 2026 13:55:00 +0100

CERT Polska has received a report about 2 vulnerabilities (CVE-2025-8306 and CVE-2025-8307) found in Asseco InfoMedica Plus software.

Vulnerability in Kieback&Peter Neutrino-GLT software

CERT Polska — Wed, 07 Jan 2026 11:55:00 +0100

Command Injection vulnerability (CVE-2025-6225) has been found in Kieback&Peter Neutrino-GLT software.

Vulnerabilities in WODESYS WD-R608U router

CERT Polska — Thu, 18 Dec 2025 13:55:00 +0100

CERT Polska has received a report about 5 vulnerabilities (from CVE-2025-65007 to CVE-2025-65011) found in WODESYS WD-R608U router.

Vulnerability in Govee devices with cloud connectivity firmware

CERT Polska — Thu, 18 Dec 2025 11:55:00 +0100

Authorization Bypass Through User-Controlled Key vulnerability (CVE-2025-10910) has been found in Govee devices with cloud connectivity firmware.

Vulnerabilities in WaveStore Server software

CERT Polska — Tue, 16 Dec 2025 11:55:00 +0100

CERT Polska has received a report about 3 vulnerabilities (from CVE-2025-65074 to CVE-2025-65076) found in WaveStore Server software.

Vulnerability in OpenSolution QuickCMS software

CERT Polska — Tue, 02 Dec 2025 11:55:00 +0100

SQL Injection vulnerability (CVE-2025-12465) has been found in OpenSolution QuickCMS software.

Vulnerability in Simple SA Wirtualna Uczelnia software

CERT Polska — Thu, 27 Nov 2025 14:40:00 +0100

Remote Code Execution vulnerability (CVE-2025-12140) has been found in Wirtualna Uczelnia software.

Vulnerability in SDMC NE6037 routers

CERT Polska — Thu, 27 Nov 2025 14:30:00 +0100

Authorized shell command injection vulnerability (CVE-2025-8890) has been found in SDMC NE6037 routers.

Vulnerabilities in SOPlanning software

CERT Polska — Thu, 20 Nov 2025 11:55:00 +0100

CERT Polska has received a report about 8 vulnerabilities (from CVE-2025-62293 to 62297 and from 2025-62729 to CVE-2025-62731) found in SOPlanning software.

Vulnerability in Times Software E-Payroll software

CERT Polska — Tue, 18 Nov 2025 14:55:00 +0100

An improper neutralization of input data has been detected in Times Software E-Payroll, resulting in the possibility of a DoS attack and (potentially) SQL Injection (CVE-2025-9977).

Vulnerabilities in Windu CMS software

CERT Polska — Tue, 18 Nov 2025 11:55:00 +0100

CERT Polska has received a report about 8 vulnerabilities (from CVE-2025-59110 to CVE-2025-59117) found in Windu CMS software.

Vulnerabilities in OpenSolution QuickCMS software

CERT Polska — Fri, 14 Nov 2025 11:55:00 +0100

CERT Polska has received a report about 2 vulnerabilities (CVE-2025-9982 and CVE-2025-10018) found in OpenSolution QuickCMS software.

Analysis of NGate malware campaign (NFC relay)

Kacper Ratajczak — Mon, 03 Nov 2025 10:37:00 +0100

CERT Polska has observed new samples of mobile malware in recent months associated with an NFC Relay (NGate) attack targeting users of Polish banks.

Vulnerability in Eveo URVE Smart Office software

CERT Polska — Thu, 30 Oct 2025 13:55:00 +0100

Cross-site Scripting vulnerability (CVE-2025-10348) has been found in Eveo URVE Smart Office software.

Vulnerability in OpenSolution Quick.Cart software

CERT Polska — Thu, 30 Oct 2025 11:55:00 +0100

Cross-Site Request Forgery (CSRF) vulnerability (CVE-2025-10317) has been found in OpenSolution Quick.Cart software.

Vulnerability in Asseco Poland mMedica software

CERT Polska — Tue, 28 Oct 2025 11:55:00 +0100

Authentication Bypass Using an Alternate Path or Channel vulnerability (CVE-2025-9313) has been found in Asseco mMedica software.

Vulnerability in Studio Fabryka DobryCMS software

CERT Polska — Fri, 24 Oct 2025 11:55:00 +0100

SQL Injection vulnerability (CVE-2025-8536) has been found in Studio Fabryka DobryCMS software.

Vulnerability in Request Tracker software

CERT Polska — Fri, 24 Oct 2025 07:55:00 +0100

XSS vulnerability (CVE-2025-9158) has been found in Best Practical Request Tracker software.

Vulnerabilities in firmware of Vilar VS-IPC1002 IP cameras

CERT Polska — Thu, 23 Oct 2025 11:55:00 +0100

CERT Polska has received a report about 2 vulnerabilities (CVE-2025-53701 and CVE-2025-53702) found in Vilar VS-IPC1002 software.

Vulnerabilities in OpenSolution QuickCMS software

CERT Polska — Thu, 23 Oct 2025 11:55:00 +0100

CERT Polska has received a report about 2 vulnerabilities (from CVE-2025-9980 to CVE-2025-9981) found in OpenSolution QuickCMS software.

Vulnerability in SIMPLE.ERP software

CERT Polska — Tue, 21 Oct 2025 11:55:00 +0100

SQL Injection vulnerability (CVE-2025-9339) has been found in SIMPLE.ERP software.

Vulnerability in NetBird VPN software

CERT Polska — Mon, 20 Oct 2025 11:55:00 +0100

Use of Default Credentials vulnerability (CVE-2025-10678) has been found in NetBird VPN software.

Vulnerability in Strapi software

CERT Polska — Thu, 16 Oct 2025 11:55:00 +0100

Insufficient Session Expiration vulnerability (CVE-2025-3930) has been found in Strapi software.

Vulnerabilities in PAD CMS software

CERT Polska — Tue, 30 Sep 2025 11:55:00 +0100

CERT Polska has coordinated disclousure of 9 vulnerabilities (CVE-2025-7063, CVE-2025-7065 and from CVE-2025-8116 to CVE-2025-8122) found in PAD CMS software.

Vulnerability in CivetWeb software

CERT Polska — Mon, 29 Sep 2025 11:55:00 +0100

Improper Neutralization of NUL Character vulnerability (CVE-2025-9648) has been found in CivetWeb software.

Vulnerability in GALAYOU G2 software

CERT Polska — Mon, 22 Sep 2025 11:55:00 +0100

Missing Authentication for Critical Function vulnerability (CVE-2025-9983) has been found in GALAYOU G2 software.

Vulnerabilities in Sparkle software

CERT Polska — Tue, 16 Sep 2025 11:55:00 +0100

CERT Polska has received a report about 2 vulnerabilities (CVE-2025-10015 and CVE-2025-10016) found in Sparkle software.

Vulnerability in SMSEagle devices

CERT Polska — Tue, 09 Sep 2025 11:55:00 +0100

SQL Injection (CVE-2025-10095) has been found in SMSEagle firmware.

Vulnerability in ITCube CRM software

CERT Polska — Mon, 08 Sep 2025 11:55:00 +0100

Path Traversal vulnerability (CVE-2025-5993) has been found in ITCube CRM software.

Vulnerability in Concept Intermedia GOV CMS software

CERT Polska — Thu, 04 Sep 2025 13:55:00 +0100

SQL Injection vulnerability (CVE-2025-7385) has been found in Concept Intermedia GOV CMS software.

Vulnerabilities in Payload CMS software

CERT Polska — Fri, 29 Aug 2025 11:55:00 +0100

CERT Polska has received a report about 2 vulnerabilities (CVE-2025-4643 and CVE-2025-4644).

Vulnerabilities in OpenSolution QuickCMS software

CERT Polska — Thu, 28 Aug 2025 11:55:00 +0100

CERT Polska has received a report about 6 vulnerabilities (from CVE-2025-54540 to CVE-2025-55175) found in OpenSolution QuickCMS software.