https://blog.it-learn.io/tags/nginx/Recent content in Nginx on it-learn.io | IT, Networking & Cybersecurity BlogHugoen-usMon, 18 May 2026 00:00:00 +0000https://blog.it-learn.io/posts/2026-05-18-cve-2026-42945-nginx-heap-overflow-exploited-miniplasma-wind/Mon, 18 May 2026 00:00:00 +0000https://blog.it-learn.io/posts/2026-05-18-cve-2026-42945-nginx-heap-overflow-exploited-miniplasma-wind/Active exploitation of CVE-2026-42945 in NGINX, a weaponized Windows kernel zero-day with no patch, 7-Eleven’s confirmed breach by ShinyHunters, and npm supply chain attacks using the Shai-Hulud framework.https://blog.it-learn.io/posts/2026-05-15-cisco-sd-wan-zero-day-cve-2026-20182-exploited-exchange-xss/Fri, 15 May 2026 00:00:00 +0000https://blog.it-learn.io/posts/2026-05-15-cisco-sd-wan-zero-day-cve-2026-20182-exploited-exchange-xss/Three actively exploited zero-days — Cisco SD-WAN authentication bypass (CVSS 10), Microsoft Exchange XSS-to-code-exec, and an npm supply chain worm that hit OpenAI — plus an 18-year-old NGINX RCE and TeamPCP open-sourcing their attack framework.https://blog.it-learn.io/posts/2026-05-14-pan-os-critical-rce-cve-2026-0300-cvss-9-8-buffer-overflow-p/Thu, 14 May 2026 00:00:00 +0000https://blog.it-learn.io/posts/2026-05-14-pan-os-critical-rce-cve-2026-0300-cvss-9-8-buffer-overflow-p/Palo Alto drops four PAN-OS RCEs including a CVSS 9.8 unauthenticated buffer overflow in User-ID. An 18-year-old NGINX heap overflow surfaces at CVSS 9.2. G7 publishes first coordinated AI SBOM guidance. MuddyWater and FamousSparrow expand targeting across manufacturing and energy.