MetInfo, Weaver E-cology Vulnerabilities in Attackers’ Crosshairs
The security defects allow unauthenticated, remote attackers to execute arbitrary code through crafted requests. The post MetInfo, Weaver E-cology Vulnerabilities in Attackers’ Crosshairs appeared first on SecurityWeek .
AI Analysis
Technical Summary
MetInfo CMS suffers from an unauthenticated PHP code injection vulnerability (CVE-2026-29014, CVSS 9.8) that insufficiently sanitizes user input, enabling remote code execution. Weaver E-cology has an unauthenticated remote code execution vulnerability (CVE-2026-22679, CVSS 9.3) due to exposed debug functionality accessible via crafted POST requests, allowing arbitrary command execution. Both vulnerabilities have been exploited in the wild shortly after disclosure, with Weaver E-cology patches released on March 12, 2026. Exploitation activity includes automated probing, payload delivery, and command execution via debug endpoints acting as shells. The attacks have focused on deployments primarily in China and Singapore.
Potential Impact
Successful exploitation of these vulnerabilities allows unauthenticated remote attackers to execute arbitrary code on affected servers, leading to full server compromise. This can result in unauthorized control over the systems running MetInfo CMS or Weaver E-cology, potentially enabling data theft, service disruption, or further network penetration. Active exploitation has been observed, increasing the risk to organizations using these products, especially those with internet-facing deployments.
Mitigation Recommendations
For Weaver E-cology, patches addressing the unauthenticated remote code execution vulnerability were released on March 12, 2026, and should be applied immediately. For MetInfo CMS, the patch status is not explicitly stated in the provided data; therefore, check the vendor advisory for current remediation guidance. Organizations should promptly apply available official fixes to mitigate these critical vulnerabilities. If patches are not yet available for MetInfo, monitor vendor advisories closely and consider temporary mitigations such as restricting access to vulnerable endpoints until a fix is applied.
MetInfo, Weaver E-cology Vulnerabilities in Attackers’ Crosshairs
Description
The security defects allow unauthenticated, remote attackers to execute arbitrary code through crafted requests. The post MetInfo, Weaver E-cology Vulnerabilities in Attackers’ Crosshairs appeared first on SecurityWeek .
AI-Powered Analysis
Machine-generated threat intelligence
Technical Analysis
MetInfo CMS suffers from an unauthenticated PHP code injection vulnerability (CVE-2026-29014, CVSS 9.8) that insufficiently sanitizes user input, enabling remote code execution. Weaver E-cology has an unauthenticated remote code execution vulnerability (CVE-2026-22679, CVSS 9.3) due to exposed debug functionality accessible via crafted POST requests, allowing arbitrary command execution. Both vulnerabilities have been exploited in the wild shortly after disclosure, with Weaver E-cology patches released on March 12, 2026. Exploitation activity includes automated probing, payload delivery, and command execution via debug endpoints acting as shells. The attacks have focused on deployments primarily in China and Singapore.
Potential Impact
Successful exploitation of these vulnerabilities allows unauthenticated remote attackers to execute arbitrary code on affected servers, leading to full server compromise. This can result in unauthorized control over the systems running MetInfo CMS or Weaver E-cology, potentially enabling data theft, service disruption, or further network penetration. Active exploitation has been observed, increasing the risk to organizations using these products, especially those with internet-facing deployments.
Mitigation Recommendations
For Weaver E-cology, patches addressing the unauthenticated remote code execution vulnerability were released on March 12, 2026, and should be applied immediately. For MetInfo CMS, the patch status is not explicitly stated in the provided data; therefore, check the vendor advisory for current remediation guidance. Organizations should promptly apply available official fixes to mitigate these critical vulnerabilities. If patches are not yet available for MetInfo, monitor vendor advisories closely and consider temporary mitigations such as restricting access to vulnerable endpoints until a fix is applied.
Technical Details
- Article Source
- {"url":"https://www.securityweek.com/metinfo-weaver-e-cology-vulnerabilities-in-attackers-crosshairs/","fetched":true,"fetchedAt":"2026-05-05T09:36:22.727Z","wordCount":944}
Threat ID: 69f9ba16cbff5d8610e53c2c
Added to database: 5/5/2026, 9:36:22 AM
Last enriched: 5/5/2026, 9:36:31 AM
Last updated: 5/6/2026, 3:55:46 AM
Views: 11
Community Reviews
0 reviewsCrowdsource mitigation strategies, share intel context, and vote on the most helpful responses. Sign in to add your voice and help keep defenders ahead.
Want to contribute mitigation steps or threat intel context? Sign in or create an account to join the community discussion.
Actions
Updates to AI analysis require Pro Console access. Upgrade inside Console → Billing.
External Links
Need more coverage?
Upgrade to Pro Console for AI refresh and higher limits.
For incident response and remediation, OffSeq services can help resolve threats faster.
Latest Threats
Check if your credentials are on the dark web
Instant breach scanning across billions of leaked records. Free tier available.