Skip to main content
Press slash or control plus K to focus the search. Use the arrow keys to navigate results and press enter to open a threat.

Threat Intelligence Database

Comprehensive database of the latest cyber threats affecting organizations worldwide. Filter and search to find specific threat intelligence relevant to your organization.

Pro Console Lifetime

Stop chasing alerts. Route them.

Start free, then upgrade once to turn Radar into an automated delivery engine for your security stack.

Custom feeds / Automations: email, Slack, webhooks, SIEM/MISP / API access (baseline limits)

View Plans & Pricing

API access activates after upgrading in Console -> Billing.

Breach by OffSeqOFFSEQFRIENDS — 25% OFF

Check if your credentials are on the dark web

Instant breach scanning across billions of leaked records. Free tier available.

Scan now

Filter Threats

Narrow down the results by type, severity, or affected countries

Search threats by title, CVE ID, or description. Maximum 100 characters.

Threat Intelligence

Click on any threat for detailed analysis and mitigation recommendations

CVE-2026-59867: CWE-22: Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') in microsoft kiotaCVE-2026-59867
0

Kiota is an OpenAPI based HTTP Client code generator. Prior to 1.32.5, Kiota resolved OpenAPI $ref values by fetching remote http(s) URLs and reading local absolute or out-of-tree file paths, allowing `kiota generate` on an attacker-controlled or attacker-influenced description to perform build-time SSRF, remote file inclusion, and local file inclusion by inlining external schemas such as REMOTE_KIOTA_PROP or Leaked into generated clients. This issue is fixed in version 1.32.5 by AllowedExternalOriginsStreamLoader and the --allowed-external-origins option.

Join the discussion
CVE-2026-59866: CWE-22: Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') in microsoft kiotaCVE-2026-59866
0

CVE-2026-59866 is a critical path traversal vulnerability in Microsoft Kiota, an OpenAPI-based HTTP client code generator. Versions prior to 1.32.5 fail to sanitize client class and namespace names derived from attacker-controlled OpenAPI descriptions, allowing writing of generated source files outside the intended output directory and injection of arbitrary text into generated code. This can lead to unauthorized file writes and code injection during code generation. The issue is fixed in version 1.32.5 by adding sanitization for client class and namespace names.

Join the discussion
CVE-2026-59865: CWE-94: Improper Control of Generation of Code ('Code Injection') in microsoft kiotaCVE-2026-59865
0

CVE-2026-59865 is a critical code injection vulnerability in Microsoft Kiota, an OpenAPI-based HTTP client code generator. Versions prior to 1.32.5 of Kiota's 'kiota info' command read and present dependency install commands from an OpenAPI description without proper validation. This allows an attacker-controlled or compromised OpenAPI description to inject malicious commands, which may be executed manually or via the Kiota VS Code extension. The issue is fixed in version 1.32.5.

Join the discussion
CVE-2026-59864: CWE-22: Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') in microsoft kiotaCVE-2026-59864
0

Kiota is an OpenAPI based HTTP Client code generator. Prior to 1.32.5, `kiota plugin add` and `kiota plugin generate` (with `-t APIPlugin`) emitted attacker-controlled static_template.file values from x-ai-adaptive-card and x-ai-capabilities into generated Microsoft 365 Copilot and Teams plugin manifests without path validation, allowing ../, absolute, rooted, UNC, Windows drive, or URI paths in response_semantics.static_template.file to cause path traversal or out-of-package file inclusion when the generated plugin was deployed. This issue is fixed in version 1.32.5.

Join the discussion
CVE-2026-59863: CWE-22: Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') in microsoft kiotaCVE-2026-59863
0

Kiota is an OpenAPI based HTTP Client code generator. Prior to 1.32.5, Kiota honored a poisoned .kiota/workspace.json workspace configuration without validating per-client or per-plugin outputPath values during kiota client generate and kiota plugin generate, allowing a malicious repository or pull request to use absolute paths, rooted POSIX / paths, UNC \\ or // paths, Windows drive X:\ paths, or .. traversal segments to write generated client files outside the workspace root on a developer or CI host. This issue is fixed in version 1.32.5.

Join the discussion
CVE-2026-59861: CWE-94: Improper Control of Generation of Code ('Code Injection') in microsoft kiotaCVE-2026-59861
0

Kiota is an OpenAPI based HTTP Client code generator. Prior to 1.32.0, Kiota's Ruby generator embedded OpenAPI default fields, property names, and other schema-derived strings through CodeMethodWriter.cs and SanitizeForQuotedLiteral() in Writers/StringExtensions.cs into Ruby double-quoted literals without escaping #, allowing attacker-controlled #{expr}, #$var, or #@var interpolation markers to inject arbitrary Ruby code into generated model classes. This issue is fixed in version 1.32.0.

Join the discussion
CVE-2026-59860: CWE-94: Improper Control of Generation of Code ('Code Injection') in microsoft kiotaCVE-2026-59860
0

Kiota is an OpenAPI based HTTP Client code generator. Prior to 1.32.3, Kiota is affected by a code-generation injection vulnerability in the C# XML documentation-comment sink (the description, externalDocs label, and externalDocs link fields emitted as /// … comments). When text from an OpenAPI description is written into single-line XML doc comments without stripping newline and Unicode line-terminator characters, an attacker can break out of the /// comment line and inject additional code into generated C# clients. This issue is fixed in version 1.32.3.

Join the discussion
CVE-2026-59859: CWE-94: Improper Control of Generation of Code ('Code Injection') in microsoft kiotaCVE-2026-59859
0

CVE-2026-59859 is a high-severity code injection vulnerability in Microsoft Kiota, an OpenAPI-based HTTP client code generator. Prior to version 1.32.4, the PHP generator improperly handled schema-derived strings by embedding them into double-quoted PHP literals without escaping the dollar sign ($). This allowed attacker-controlled interpolation constructs such as ${...}, $var, or {$obj->prop} to inject arbitrary PHP code into generated model and request-builder classes. The issue is fixed in version 1.32.4.

Join the discussion

Showing 1 to 8 of 8 results

Page 1 of 1
OffSeq TrainingCredly Certified

Lead Pen Test Professional

Technical5-day eLearningPECB Accredited
View courses