KnowledgeDeliver flaw exploited as a zero
Source: Bleepingcomputer
Published:
<p>Hackers exploited a critical zero-day vulnerability in a server running the KnowledgeDeliver learning management system (LMS) to deploy the Godzilla web shell.</p> <p>The flaw is a deserialization issue tracked as CVE-2026-5426 and can be exploited without authentication. It stems from the use of