KnowledgeDeliver flaw exploited as a zero-day to install web shells

Hackers exploited a critical zero-day vulnerability in a server running the KnowledgeDeliver learning management system (LMS) to deploy the Godzilla web shell.
For Construction Pros

Bluebeam Unveils Bluebeam Max Subscription with AI Tools and Expanded AEC Collaboration Features

Bluebeam has announced Bluebeam Max, a new premium subscription plan designed to bring artificial intelligence into its Revu platform. Launching globally in early 2026, the plan adds automation and ...
SecurityWeek

Hackers Exploited KnowledgeDeliver Zero-Day for Web Shell Deployment

CVE-2026-5426, a hardcoded ASP.NET machineKey in KnowledgeDeliver, was exploited as a zero-day in ViewState deserialization ...