Vulnerabilities in Zyxel, ProjectSend and CyberPanel are being actively exploited, so patch now


  • CISA has added a number of serious flaws to its catalog
  • One of the bugs is a 10/10
  • However, one of these is being exploited by Chinese state-sponsored actors

Multiple vulnerabilities affecting solutions from Zyxel, North Grid Proself, ProjectSend, and CyberPanel are being actively exploited to bypass authentication, conduct XXE attacks, remove malicious JavaScript, deploy arbitrary files, and more.

Earlier this year, multiple cybersecurity researchers, vendors and professionals warned about these bugs at different times, with reports coming in from Sekoia, Censys, VulnCheck and others.