Casky.AI
BlogFree GuideAboutEnterpriseCommunityContributeCVE WatchCareers
Sign inGet Access
Get Access
Updated daily · NVD + CISA KEV

CVE Watch

Every major CVE — automatically mapped to Casky's 754 Claude AI skills. We track which attack patterns our skills already detect, so you can see exactly how far ahead AI-native security training puts you.

CVE-2026-76748.8 HIGHMay 3

Buffer Overflow in LBT-T300 VPN Management Interface

255skills
CVE-2026-76758.8 HIGHMay 3

Buffer Overflow in LBT-T300 WiFi Device Configuration

255skills
CVE-2026-51097.2 HIGHMay 2

Gravity Forms Stored XSS via Unsanitized Product Options

301skills
CVE-2026-51107.2 HIGHMay 2

Gravity Forms Nested Field Stored XSS Vulnerability

301skills
CVE-2026-74918.1 HIGHMay 2

Insecure Direct Object Reference in School App

261skills
CVE-2026-40627.5 HIGHMay 2

WordPress Geo Mashup Plugin SQL Injection via Unquoted Parameters

301skills
CVE-2026-51117.2 HIGHMay 2

Gravity Forms Hidden Product Field Stored XSS Vulnerability

301skills
CVE-2026-51127.2 HIGHMay 2

Gravity Forms Unauthenticated Stored XSS in Calculation Fields

301skills
CVE-2026-51137.2 HIGHMay 2

WordPress Gravity Forms Stored XSS via Consent Field Validation

301skills
CVE-2026-20528.8 HIGHMay 2

WordPress Widget Plugin Remote Code Execution via Unsafe eval()

301skills
CVE-2026-62297.2 HIGHMay 2

WordPress Elementor Plugin Server-Side Request Forgery via URL Validation Bypass

312skills
CVE-2026-76307.3 HIGHMay 2

InnoShop Installation Endpoint Authentication Bypass

261skills
CVE-2026-70497.2 HIGHMay 2

WordPress PixelYourSite Plugin Blind SSRF Vulnerability

312skills
CVE-2026-76497.5 HIGHMay 2

ARMember Plugin Vulnerable to Unauthenticated SQL Injection

301skills
CVE-2026-41007.1 HIGHMay 2

WordPress Stripe Webhook Configuration Unauthorized Modification

261skills
CVE-2026-76478.1 HIGHMay 2

PHP Object Injection in WordPress Profile Builder Plugin

419skills
CVE-2026-74898.8 HIGHMay 2

SQL Injection in Sunnet CTMS Allows Authenticated Database Manipulation

301skills
CVE-2026-40607.5 HIGHMay 2

WordPress Geo Mashup Plugin Time-Based SQL Injection

301skills
CVE-2026-76078.8 HIGHMay 2

Buffer Overflow in TRENDnet Firmware Update Function

255skills
CVE-2026-76447.3 HIGHMay 2

Improper Authorization in ChatGPTNextWeb MCP Server Configuration

261skills
CVE-2026-53247.2 HIGHMay 2

Brizy Page Builder Unauthenticated Stored XSS Vulnerability

301skills
CVE-2026-74907.2 HIGHMay 2

Arbitrary File Upload Enables Remote Code Execution in Sunnet CTMS/CPAS

419skills
CVE-2026-40617.5 HIGHMay 2

WordPress Geo Mashup SQL Injection via Unvalidated POST Parameters

301skills
CVE-2026-63207.5 HIGHMay 2

WordPress Salon Booking Plugin Arbitrary File Read via Email

331skills
CVE-2026-25548.1 HIGHMay 2

WooCommerce Plugin Allows Vendor-Level Users to Delete Any Account

261skills
CVE-2026-76327.3 HIGHMay 2

SQL Injection in Hospital Management System Parameter

301skills
CVE-2026-76687.3 HIGHMay 2

MikroTik RouterOS SCEP Out-of-Bounds Read Vulnerability

255skills
CVE-2026-76707.3 HIGHMay 2

SQL Injection in Jinher OA User Selection Parameter

301skills
CVE-2026-75557.3 HIGHMay 1

SQL Injection in Electronic Judging System Login

301skills
CVE-2026-424027.5 HIGHMay 1

Apache Neethi Policy Normalization Denial of Service

312skills

Stay ahead of every CVE

Join Casky to run the skills that detect these attack patterns — before the next CVE is disclosed.

Join the Playground Waitlist →
XInstagramLinkedIn
TikTok

© 2026 Casky.AI, Inc. · AI-Powered Cyber Skills