Gitea Vulnerabilities Allow Bypass, Data Manipulation, Disclosure

CERT-Bund has issued a security advisory for Gitea, detailing multiple vulnerabilities with a CVSS base score of 7.3. These vulnerabilities can allow attackers to bypass security measures, manipulate data, and disclose confidential information. Users are advised to update to Gitea version 1.25.5 or later.

NetBox Cross-Site Scripting Vulnerability Advisory

CERT-Bund has issued a security advisory for NetBox, detailing a vulnerability that allows for Cross-Site Scripting attacks. The advisory affects NetBox version 4.3.5 and provides information on mitigation strategies.

Octopus Deploy Vulnerability Allows Remote File Manipulation

CERT-Bund has issued a security advisory for Octopus Deploy, detailing a vulnerability that allows remote authenticated attackers to manipulate files. The advisory affects specific versions of Octopus Deploy running on Linux and Windows and provides mitigation information.

Arizona Corporation Commission Closes Densco Case, Recovers $19.7M for Investors

The Arizona Corporation Commission (ACC) has closed its civil case against Densco Investment Corporation after recovering nearly $19.7 million for defrauded investors. The ACC filed the complaint in 2016 for violations of the Arizona Securities Act, stemming from misrepresentations about real estate loans.

Arizona Corporation Commission Orders $10,000 Penalty for Craigslist Securities Fraud

The Arizona Corporation Commission ordered Dean Douglas Odle and MCM AF Assets LLC to pay $10,000 in administrative penalties for violating the Securities Act. The respondents engaged in fraudulent Craigslist investment advertisements offering high returns with misrepresented risks.

ACC Orders $4.14M Restitution and Penalties for Business Automation Scheme

The Arizona Corporation Commission ordered Ryan Morgan and All Done Consulting, LLC to pay $4,143,670 in restitution and $510,000 in administrative penalties for violating the Arizona Securities Act. The order stems from a business automation scheme that defrauded 109 investors.

H-2B Foreign Labor Certification Program Comment Request

The Employment and Training Administration (ETA) is requesting public comments on proposed revisions to the H-2B Foreign Labor Certification Program's information collection requests. This includes renewing existing forms and eliminating the H-2B Registration form.

USDA Submission for OMB Review: Aquatic Animal Test Lab Approval

The Department of Agriculture's Animal and Plant Health Inspection Service (APHIS) has submitted an information collection for OMB review concerning the approval of laboratories for conducting aquatic animal tests for export health certificates. Comments are requested on the necessity, utility, and burden of this collection.

USTR Initiates Section 301 Investigations on Forced Labor Imports

The Office of the United States Trade Representative (USTR) has initiated Section 301 investigations into economies failing to prohibit and enforce bans on goods produced with forced labor. The USTR is seeking public comments and will hold hearings on the matter.

USTR Initiates Section 301 Investigations on Manufacturing Practices

The Office of the United States Trade Representative (USTR) has initiated Section 301 investigations into the manufacturing practices of several economies, citing structural excess capacity. The USTR is seeking public comments and requests to appear at hearings, with a deadline of April 15, 2026, for submissions.