Skip to main content
COSMICBYTEZLABS
NewsSecurityHOWTOsToolsTraining
StudyProjectsNewsletterHire MeAbout
Subscribe

Press Enter to search or Esc to close

News
Security
HOWTOs
Tools
Training
Study
Projects
Newsletter
Hire Me
About
RSS Feed
Reading List
Subscribe

Stay in the Loop

Get the latest security alerts, tutorials, and tech insights delivered to your inbox.

Subscribe NowFree forever. No spam.
COSMICBYTEZLABS

Your trusted source for IT intelligence, cybersecurity insights, and hands-on technical guides.

1941+ Articles
150+ Guides

CONTENT

  • Latest News
  • Security Alerts
  • HOWTOs
  • Checklists
  • Projects
  • Exam Prep

RESOURCES

  • Search
  • Browse Tags
  • Newsletter Archive
  • Reading List
  • RSS Feed

COMPANY

  • About Us
  • Contact
  • Privacy Policy
  • Terms of Service

© 2026 CosmicBytez Labs. All rights reserved.

System Status: Operational
All tags
400 articles

#Vulnerability

All CosmicBytez Labs articles tagged #Vulnerability, across news, security advisories, how-to guides, and projects.

  • NewsJul 17, 2026

    Inc Ransomware Exploits Chained SonicWall SMA Zero-Days for Root Access

    The Inc ransomware group is actively exploiting two chained zero-day vulnerabilities in SonicWall Secure Mobile Access appliances. When combined, the flaws allow unauthenticated attackers to gain root-level control over SMA devices.

  • SecurityJul 17, 2026

    CVE-2026-38158: Critical SQL Injection in UReport v2.2.9 (CVSS 9.8)

    A critical SQL injection vulnerability in the /ureport/datasource/previewData endpoint of ureport v2.2.9 allows unauthenticated attackers to exfiltrate sensitive database contents via crafted SQL statements. CVSS score of 9.8.

  • SecurityJul 16, 2026

    CVE-2026-42533: NGINX Memory Corruption via Map Directive Regex (CVSS 8.1)

    A vulnerability in NGINX Plus and NGINX Open Source allows map directives using regex matching with capture variables to trigger memory corruption when the capture variable is referenced before the map output variable.

  • SecurityJul 16, 2026

    CVE-2026-61736: LightRAG Critical CORS Credential Bypass (CVSS 9.3)

    LightRAG's default server configuration combines CORS_ORIGINS=* with allow_credentials=True, allowing any origin to make credentialed cross-origin requests and exposing knowledge graphs to unauthorized access.

  • NewsJul 15, 2026

    Zoom Warns of Critical Account Takeover Vulnerability (CVE-2026-53412, CVSS 9.8)

    Zoom has disclosed a critical improper input validation flaw in its Windows desktop client and SDK that allows unauthenticated network attackers to hijack accounts. Update to Zoom Workplace 7.0.0 immediately.

  • SecurityJul 15, 2026

    CVE-2023-4346: KNX Protocol Connection Authorization Option 1 Account Lockout Vulnerability

    A vulnerability in KNX Association KNX Protocol Connection Authorization Option 1 allows an attacker to purge all devices without additional security options enabled and set a BCU key to lock the device. CISA added this flaw to the Known Exploited Vulnerabilities catalog on July 15, 2026.

  • SecurityJul 14, 2026

    CVE-2026-14453: Critical SSTI to RCE in Centreon Open Tickets (CVSS 9.6)

    A critical Server-Side Template Injection vulnerability in Centreon's centreon-open-tickets module allows unauthenticated attackers to achieve Remote Code Execution via the unsanitized message_confirm field.

  • SecurityJul 14, 2026

    CVE-2026-57433: Perl Storable Signed Integer Overflow in SX_HOOK Deserialization

    A CVSS 9.8 signed integer overflow in Perl's Storable module (before 3.41) allows a crafted SX_HOOK record to wrap an I32_MAX item count to -1, corrupting heap memory and potentially enabling remote code execution.

  • SecurityJul 14, 2026

    CVE-2026-58065: Apache Airflow Git Provider Disables SSH Host Key Verification

    The Apache Airflow Git provider runs git-over-SSH with StrictHostKeyChecking=no by default, allowing a network-position attacker to silently impersonate the Git server and steal SSH credentials or inject malicious code.

  • SecurityJul 14, 2026

    CVE-2026-61500: Rejetto HFS Session Cookie Key Derived from Math.random()

    Rejetto HFS 3.0.0–3.2.0 derives its session-cookie signing key from JavaScript's non-cryptographic Math.random(), and leaks generator outputs to unauthenticated clients — enabling full session forgery with CVSS 9.8.

  • NewsJul 13, 2026

    CISA Warns of Actively Exploited RCE Flaws in Joomla Extensions

    CISA has added two Joomla extension vulnerabilities to its KEV catalog after attackers began exploiting arbitrary file upload flaws in iCagenda and Balbooa Forms to achieve remote code execution on vulnerable websites.

  • SecurityJul 13, 2026

    CVE-2008-4128: Cisco IOS Cross-Site Request Forgery Vulnerability

    Cisco IOS 12.4 contains multiple CSRF vulnerabilities that allow remote attackers to execute arbitrary commands. The flaw has been added to the CISA Known Exploited Vulnerabilities catalog, signaling active exploitation.

  • SecurityJul 13, 2026

    CVE-2026-11964: WordPress User Registration Plugin PayPal Webhook Bypass

    The User Registration & Membership WordPress plugin before 5.2.2 fails to verify PayPal webhook signatures, allowing unauthenticated attackers to forge payment events and gain free premium memberships.

  • SecurityJul 13, 2026

    CVE-2026-56260: Crawl4AI Arbitrary File Write in Docker API

    A critical CVSS 9.1 vulnerability in Crawl4AI before 0.8.7 allows attackers to write arbitrary files anywhere on the host filesystem via the Docker API's /screenshot and /pdf endpoints — patch immediately.

  • NewsJul 12, 2026

    Attackers Exploit 'Ill Bloom' Vulnerability to Drain Over $5 Million From Cryptocurrency Wallets

    Security firm Coinspect has disclosed a critical crypto wallet flaw called Ill Bloom that exploits weak pseudorandom number generation in wallet seed creation, enabling attackers to derive private keys and drain funds. Over $5 million has already been stolen.

  • NewsJul 12, 2026

    Six U-Boot Flaws Could Enable Stealthy Firmware Attacks on Embedded Devices

    Researchers have discovered six vulnerabilities in the widely deployed U-Boot bootloader that could allow attackers to execute malicious code at boot time, bypassing OS-level security protections and installing persistent firmware implants.

  • NewsJul 11, 2026

    Critical Zimbra Flaw Could Let Crafted Emails Run Malicious Code in User Sessions

    A critical stored XSS vulnerability in Zimbra's Classic Web Client allows attackers to deliver specially crafted emails that execute arbitrary code within...

  • SecurityJul 11, 2026

    CVE-2026-48939: iCagenda Unrestricted File Upload Allows PHP Code Execution

    A critical unrestricted file upload vulnerability in the iCagenda Joomla event calendar plugin allows unauthenticated attackers to upload arbitrary PHP...

  • SecurityJul 11, 2026

    CVE-2026-56765: Vikunja Authorization Bypass Enables Permission Escalation

    A critical authorization flaw in Vikunja task manager (CVSS 9.8) exposes share hashes via LinkSharing.ReadAll and allows task attachment access through...

  • SecurityJul 11, 2026

    CVE-2026-59792: JetBrains IntelliJ IDEA Remote Code Execution via Path Traversal

    A critical RCE vulnerability (CVSS 9.6) in JetBrains IntelliJ IDEA before 2026.1.4 allows code execution through path traversal in project workspace ID...

  • NewsJul 10, 2026

    Microsoft Reins in RoguePlanet Zero-Day After Public PoC Release

    Researcher 'Nightmare-Eclipse' published a proof-of-concept exploit for a Windows Defender vulnerability in early June after dropping several other...

  • SecurityJul 10, 2026

    CVE-2026-56291: Balbooa Forms Unrestricted File Upload Enables Full RCE

    A critical unauthenticated file upload vulnerability in Balbooa Forms for Joomla allows attackers to upload executable files and achieve full remote code...

  • NewsJul 9, 2026

    Microsoft Patches RoguePlanet Zero-Day in Windows Defender After Public PoC

    Microsoft has patched a Windows Defender zero-day vulnerability dubbed RoguePlanet after researcher 'Nightmare-Eclipse' released a working...

  • SecurityJul 9, 2026

    CVE-2026-35210: OpenCTI Authorization Bypass Allows Confidence Level and Object Marking Circumvention

    An authentication bypass vulnerability in OpenCTI prior to 7.260326.0 allows any authenticated user with KNOWLEDGE_KNUPDATE permission to bypass...

  • SecurityJul 9, 2026

    CVE-2026-47831: Weak RNG in BOSH Windows Stemcell Builder Enables Remote Password Prediction

    A cryptographically weak random number generator in the GenerateRandomPassword function of bosh-windows-stemcell-builder allows remote attackers to...

  • NewsJul 8, 2026

    CISA Orders Feds to Prioritize Patching Langflow Auth Bypass Flaw

    CISA added CVE-2026-55255, a CVSS 9.9 IDOR authorization bypass in Langflow, to its Known Exploited Vulnerabilities catalog on July 7, ordering U.S....

  • SecurityJul 8, 2026

    CVE-2026-13019: Esri ArcGIS Portal Critical Unauthenticated API Access

    A critical missing authentication vulnerability in Esri Portal for ArcGIS 12.1 and earlier allows remote unauthenticated attackers to access protected API...

  • SecurityJul 8, 2026

    CVE-2026-48908: JoomShaper SP Page Builder Unrestricted File Upload RCE

    A critical unrestricted file upload vulnerability in JoomShaper's SP Page Builder allows unauthenticated attackers to upload arbitrary PHP files and...

  • SecurityJul 7, 2026

    Coolify CVE-2026-34037: CVSS 9.9 IDOR Enables Cross-Team Resource Takeover

    A critical IDOR vulnerability in Coolify's cloneTo() Livewire action allows authenticated users to clone and take over resources across team boundaries...

  • SecurityJul 7, 2026

    Coolify CVE-2026-34047: Terminal WebSocket Authorization Bypass (CVSS 9.9)

    A critical authorization bypass in Coolify's terminal WebSocket bootstrap routes allows authenticated users to access server terminals for resources...

  • SecurityJul 7, 2026

    Coolify CVE-2026-34048: Low-Privilege Terminal Escalation via WebSocket (CVSS 9.9)

    A critical privilege escalation flaw in Coolify's terminal WebSocket routes lets any low-privileged team member connect to privileged server terminals by...

  • SecurityJul 6, 2026

    CVE-2026-14770: SQL Injection in SourceCodester Class and Exam Timetabling System

    A high-severity SQL injection vulnerability in SourceCodester Class and Exam Timetabling System 1.0 allows remote attackers to manipulate backend database...

  • SecurityJul 6, 2026

    CVE-2026-14771: SQL Injection in SourceCodester Class and Exam Timetabling System

    An unauthenticated remote SQL injection vulnerability in SourceCodester's Class and Exam Timetabling System 1.0 allows attackers to manipulate the id...

  • SecurityJul 4, 2026

    CVE-2026-4321: Critical SQL Injection in Raera Destekz Plugin (No Patch Available)

    A CVSS 9.8 critical SQL injection in the Destekz plugin by Raera - Ankara Web Design allows unauthenticated remote attackers full database access. The...

  • SecurityJul 4, 2026

    CVE-2026-49814: Dell PowerProtect Data Domain OS Command Injection

    A high-severity OS command injection vulnerability in Dell PowerProtect Data Domain allows authenticated remote attackers to execute arbitrary commands...

  • NewsJul 3, 2026

    Critical Cursor AI Code Editor Flaws Could Lead to OS-Level Remote Code Execution

    Two critical vulnerabilities (CVE-2026-50548, CVE-2026-50549) dubbed DuneSlide allow zero-click prompt injection attacks to escape Cursor IDE's sandbox...

  • NewsJul 2, 2026

    AI Agent Exploits Langflow RCE to Automate Database Ransomware Attack

    Sysdig researchers documented the first fully autonomous AI-driven ransomware campaign, where threat actor JADEPUFFER used an AI agent to chain Langflow...

  • NewsJul 2, 2026

    CISA: Microsoft SharePoint RCE Flaw Now Actively Exploited

    CISA added CVE-2026-45659 to its Known Exploited Vulnerabilities catalog, confirming active in-the-wild exploitation of a high-severity SharePoint...

  • NewsJul 2, 2026

    Ransomware Groups Turn to Citrix Bleed 2, BYOVD, and Supply Chain Credentials

    Anubis ransomware affiliates are exploiting CVE-2025-5777 (Citrix Bleed 2) for initial access while pairing BYOVD techniques and stolen supply chain...

  • NewsJul 2, 2026

    SharePoint RCE CVE-2026-45659 Added to CISA KEV After Active Exploitation

    CISA has added a high-severity Microsoft SharePoint Server remote code execution vulnerability to its Known Exploited Vulnerabilities catalog following...

  • SecurityJul 2, 2026

    CVE-2026-14198: Fastify Middie Middleware Path Bypass (CVSS 9.1)

    Critical path bypass vulnerability in @fastify/middie versions 9.1.0 through 9.3.2 allows attackers to evade middleware protection by exploiting a %2F...

  • SecurityJul 2, 2026

    CVE-2026-52186: Critical SQL Injection RCE in UTT nv518G Router

    A critical SQL injection vulnerability (CVSS 9.8) in the UTT nv518G router allows unauthenticated remote attackers to execute arbitrary code via the...

  • NewsJul 1, 2026

    Progress Kemp LoadMaster Pre-Auth RCE Flaw Faces Active Exploitation Attempts

    A critical pre-authentication remote code execution flaw in Progress Kemp LoadMaster (CVE-2026-8037, CVSS 9.6) is under active exploitation attempts,...

  • SecurityJul 1, 2026

    CVE-2025-36359: IBM DevOps Session Hijacking Vulnerability (CVSS 8.1)

    IBM DevOps Automation and IBM DevOps Loop fail to invalidate session IDs after expiration, allowing authenticated attackers to impersonate other users via...

  • NewsJun 30, 2026

    BlueHammer Vulnerability Exploited in Ransomware Attacks Before Microsoft Patch

    The Microsoft Defender vulnerability CVE-2026-33825 was actively exploited as a zero-day by ransomware groups before Microsoft had the chance to release a...

  • NewsJun 30, 2026

    CISA: Windows BlueHammer Flaw Now Exploited by Ransomware Gangs

    CISA has confirmed that ransomware gangs are actively exploiting BlueHammer, a Microsoft Defender privilege escalation vulnerability previously used in...

  • NewsJun 30, 2026

    Langflow RCE Exploited to Deploy Monero Miner on Exposed AI App Endpoints

    Threat actors are actively weaponizing CVE-2026-33017, a critical unauthenticated RCE flaw in Langflow, to deploy a Monero miner via the lambsys...

  • NewsJun 30, 2026

    Oracle E-Business Suite Flaw CVE-2026-46817 Actively Exploited in the Wild

    A critical CVSS 9.8 authentication bypass vulnerability in Oracle E-Business Suite's Payments module is being actively exploited in the wild, according to...

  • SecurityJun 30, 2026

    CVE-2026-13550: SQL Injection in itsourcecode Baptism Information Management System 1.0

    A high-severity SQL injection vulnerability has been identified in itsourcecode Baptism Information Management System 1.0, allowing remote attackers to...

  • SecurityJun 30, 2026

    CVE-2026-13551: SQL Injection in itsourcecode Baptism Information Management System 1.0 (editBaptism.php)

    A second high-severity SQL injection vulnerability has been disclosed in itsourcecode Baptism Information Management System 1.0, this time affecting the...

  • SecurityJun 30, 2026

    CVE-2026-53434: Critical Apache Tomcat CRL Configuration Flaw (CVSS 9.1)

    A critical vulnerability in Apache Tomcat's FFM/Panama TLS connector silently ignores invalid or malformed CRL configurations, causing the server to...

  • NewsJun 29, 2026

    Critical SimpleHelp Flaw Exploited to Deploy Djinn Infostealer

    Hackers are actively exploiting CVE-2026-48558 in SimpleHelp remote support software to deploy Djinn Stealer, a previously undocumented cross-platform...

  • NewsJun 29, 2026

    Public PoC Released for Critical libssh2 CVE-2026-55200 Client-Side SSH Flaw

    A heap overflow in libssh2's transport layer allows a malicious SSH server to achieve pre-authentication RCE against any connecting client. All versions...

  • NewsJun 29, 2026

    NAIC Says Only Public Data Stolen in ShinyHunters PeopleSoft Breach

    The National Association of Insurance Commissioners confirms ShinyHunters exploited an Oracle PeopleSoft zero-day but says only publicly available data,...

  • NewsJun 29, 2026

    Nissan Discloses Employee Data Breach Linked to Oracle Zero-Day Attacks

    Nissan warns that current and former employees had data stolen after threat actors exploited an Oracle PeopleSoft zero-day vulnerability tied to the...

  • SecurityJun 29, 2026

    CVE-2026-13521: SQL Injection in SourceCodester Class and Exam Timetabling System

    A remotely exploitable SQL injection vulnerability affects SourceCodester Class and Exam Timetabling System 1.0 via the course_year_section parameter in...

  • SecurityJun 29, 2026

    CVE-2026-13526: SQL Injection in SourceCodester Class and Exam Timetabling System

    A remotely exploitable SQL injection flaw in SourceCodester's Class and Exam Timetabling System 1.0 allows unauthenticated attackers to manipulate...

  • SecurityJun 29, 2026

    CVE-2026-49048: Critical SQL Injection in JoomCCK Joomla Extension

    A critical unauthenticated SQL injection vulnerability (CVSS 9.8) in the JoomCCK Joomla extension allows attackers to read, modify, or delete database...

  • SecurityJun 28, 2026

    CVE-2026-58053: Newly Disclosed Informational Vulnerability

    CVE-2026-58053 was disclosed on June 28, 2026 with an informational severity rating. NVD analysis is pending; no exploitation or vendor advisory has been...

  • NewsJun 27, 2026

    CISA Sets Urgent Deadline to Fix Cisco Flaw Actively Exploited in Attacks

    CISA has added a Cisco Unified Communications Manager Server vulnerability to its Known Exploited Vulnerabilities catalog and ordered federal agencies to...

  • SecurityJun 27, 2026

    CVE-2025-55017: Apache IoTDB Critical Path Traversal Vulnerability

    Critical path traversal vulnerability (CVSS 9.1) in Apache IoTDB affects versions 1.0.0 through 1.3.5 and 2.0.0 through 2.0.5. Users must upgrade...

  • SecurityJun 27, 2026

    CVE-2025-64152: Apache IoTDB Second Critical Path Traversal Flaw

    A second critical path traversal vulnerability (CVSS 9.1) in Apache IoTDB affects versions 1.0.0 through 1.3.5 and 2.0.0 through 2.0.6. Patch to 1.3.6 or...

  • SecurityJun 27, 2026

    CVE-2026-52884: Notepad++ Trusted Directory Bypass via Path Traversal (CVSS 7.8)

    A path traversal flaw in Notepad++ v8.9.6.1 allows attackers to bypass the trusted directory plugin verification check using path sequences, potentially...

  • SecurityJun 27, 2026

    CVE-2026-54350: Budibase Unauthenticated Database Read & Write (CVSS 10.0)

    A critical CVSS 10.0 flaw in Budibase allows unauthenticated visitors of any published app to read every document in backing database collections and...

  • SecurityJun 27, 2026

    CVE-2026-54352: Budibase Zip Upload Path Traversal Enables Remote Code Execution (CVSS 9.6)

    A critical path traversal vulnerability in Budibase's zip upload endpoint allows attackers to write arbitrary files outside the intended temp directory,...

  • NewsJun 26, 2026

    CISA Adds Exploited PTC Windchill RCE Flaw to KEV as Web Shell Attacks Continue

    CISA has added CVE-2026-12569, a critical remote code execution vulnerability in PTC Windchill PDMlink and FlexPLM, to its Known Exploited Vulnerabilities...

  • NewsJun 26, 2026

    First-Ever Exploitation of PTC Windchill Vulnerability Discovered in the Wild

    CISA has added CVE-2026-12569, a remote code execution flaw in PTC Windchill, to its Known Exploited Vulnerabilities catalog after confirming active...

  • NewsJun 25, 2026

    25-Year-Old Vulnerability Patched in Curl

    Curl 8.21.0 patches 18 vulnerabilities including a 25-year-old mTLS connection reuse flaw (CVE-2026-8932) that could allow authentication bypass. With...

  • NewsJun 25, 2026

    Mandiant Reveals How Cisco SD-WAN Zero-Day CVE-2026-20245 Gained Root Access

    Mandiant's post-incident analysis exposes a sophisticated multi-stage attack chain that exploited CVE-2026-20245 to plant a hidden root account on Cisco...

  • SecurityJun 25, 2026

    CVE-2026-12569: PTC Windchill and FlexPLM Remote Code Execution Vulnerability

    A critical unauthenticated RCE vulnerability in PTC Windchill and FlexPLM (CVSS 9.3) has been added to CISA's Known Exploited Vulnerabilities catalog,...

  • NewsJun 24, 2026

    CVE-2026-20230: Cisco Unified CM WebDialer SSRF Now Exploited in the Wild

    Cisco Unified Communications Manager and SME are under active attack via CVE-2026-20230, a high-severity SSRF flaw in the WebDialer component that can...

  • NewsJun 23, 2026

    29-Year-Old Squid Proxy Bug 'Squidbleed' Can Leak Cleartext HTTP Requests

    A heap over-read vulnerability introduced in a 1997 FTP parser change allows a malicious co-user of a shared Squid proxy to read other users' cleartext...

  • NewsJun 23, 2026

    Eight-Year-Old Samsung KNOX Flaw Exposed Millions of Galaxy Devices to Kernel Attacks

    A high-severity use-after-free vulnerability lurking in Samsung's KNOX security framework for eight years left Galaxy devices from the S9 through S25...

  • NewsJun 22, 2026

    FFmpeg Fixes PixelSmash Flaw in Widely Used Video Decoder

    FFmpeg has patched a critical vulnerability dubbed PixelSmash that could enable remote code execution on Jellyfin servers and denial-of-service conditions...

  • NewsJun 22, 2026

    Microsoft Fixes AutoGen Studio Flaw That Enabled Code Execution

    Microsoft has patched the AutoJack vulnerability chain in AutoGen Studio, its AI agent prototyping interface, which allowed attackers to manipulate agents...

  • NewsJun 22, 2026

    New Exploit Bypasses Apple's Boot Defenses, Affects Millions of iPhones

    The Usbliter8 exploit targets a hardware-level flaw in Apple A12 and A13 SecureROM boot chains that cannot be patched via software updates, leaving...

  • NewsJun 22, 2026

    Researchers Detail DifyTap Flaws in Dify That Could Expose AI Chats Across Tenants

    Four vulnerabilities dubbed DifyTap were disclosed in the open-source AI workflow platform Dify, enabling attackers to silently read AI conversations from...

  • NewsJun 21, 2026

    Hackers Exploit Gravity SMTP WordPress Plugin Bug to Expose API Keys

    Active exploitation of CVE-2026-4020 in the Gravity SMTP WordPress plugin has generated over 17 million malicious requests, allowing unauthenticated...

  • NewsJun 19, 2026

    Splunk Enterprise Vulnerability Exploited in Attacks Days After Disclosure

    CVE-2026-20253, a critical unauthenticated remote code execution flaw in Splunk Enterprise, is being actively exploited in the wild just days after public...

  • SecurityJun 19, 2026

    CVE-2026-54414: FileRise Path Traversal Enables Arbitrary File Write and Admin Takeover

    A critical path traversal vulnerability in FileRise before 3.16.0 allows unauthenticated attackers to write arbitrary files and completely compromise...

  • SecurityJun 19, 2026

    CVE-2026-7515: BetterDocs Pro WordPress Plugin — Unauthenticated Local File Inclusion

    A critical Local File Inclusion vulnerability in the BetterDocs Pro WordPress plugin (up to v3.8.0) allows unauthenticated attackers to include and...

  • NewsJun 18, 2026

    F5 Patches Two Critical NGINX Open Source Flaws Enabling Remote Code Execution

    F5 has released emergency security updates for two critical vulnerabilities in NGINX Open Source, including a CVSS 9.2 use-after-free flaw in the HTTP/3...

  • NewsJun 18, 2026

    FIFA Bug Exposes World Cup Streams to Remote Takeover

    A security researcher discovered that FIFA's unenforced Microsoft Entra access controls could have allowed an attacker to hijack live World Cup broadcast...

  • NewsJun 17, 2026

    Attackers Hit Pair of Critical Fortinet Vulnerabilities the Vendor Disclosed in April

    Multiple threat intelligence firms have confirmed active exploitation of two critical vulnerabilities in Fortinet's FortiSandbox product — security flaws...

  • NewsJun 17, 2026

    CISA Warns of Actively Exploited Joomla JCE Flaw Allowing PHP Code Execution

    CISA has added a maximum-severity vulnerability in the Joomla Content Editor (JCE) plugin to its Known Exploited Vulnerabilities catalog, warning that the...

  • NewsJun 17, 2026

    Microsoft Working on Defender Patch for RoguePlanet Zero-Day

    Microsoft has confirmed it is developing a security patch for the RoguePlanet zero-day vulnerability in Windows Defender, disclosed publicly last week,...

  • NewsJun 17, 2026

    The Top 10 Attack Surface Exposures in 2026

    A comprehensive breakdown of the most dangerous attack surface exposures organizations face in 2026 — from exposed admin panels and credential reuse to...

  • SecurityJun 17, 2026

    CVE-2026-49772: The Events Calendar Blind SQL Injection (CVSS 9.3)

    A critical blind SQL injection vulnerability in The Events Calendar WordPress plugin by StellarWP affects versions 6.15.12 through 6.16.2, allowing...

  • SecurityJun 17, 2026

    CVE-2026-49774: RD Station WordPress Plugin Remote Code Injection (CVSS 9.9)

    A critical code injection vulnerability in the RD Station WordPress plugin allows unauthenticated remote code execution through Remote File Inclusion,...

  • SecurityJun 17, 2026

    CVE-2026-52715: GEO my WordPress Unauthenticated SQL Injection (CVSS 9.3)

    A critical unauthenticated SQL injection vulnerability in GEO my WordPress versions 4.5.5 and earlier allows attackers to extract database contents...

  • NewsJun 16, 2026

    CISA Warns of Another Actively Exploited cPanel Plugin Flaw

    CISA has added CVE-2026-54420, an actively exploited vulnerability in the LiteSpeed cPanel user-end plugin, to its Known Exploited Vulnerabilities catalog...

  • SecurityJun 16, 2026

    CVE-2026-39574: Critical SQL Injection in InPost Gallery WordPress Plugin

    A critical unauthenticated SQL injection vulnerability (CVSS 9.3) in the InPost Gallery WordPress plugin allows attackers to extract sensitive database...

  • SecurityJun 16, 2026

    CVE-2026-6933: Unauthenticated RCE in Premmerce Dev Tools WordPress Plugin

    A high-severity unauthenticated remote code execution vulnerability (CVSS 8.8) in Premmerce Dev Tools for WordPress allows attackers to execute arbitrary...

  • NewsJun 15, 2026

    LiteLLM Vulnerability Chain Lets Low-Privilege Users Take Over AI Gateway Servers

    Researchers at Obsidian Security disclosed a chain of three vulnerabilities in the widely deployed LiteLLM open-source AI gateway that allows a default...

  • NewsJun 15, 2026

    SearchLeak: New Attack Turned Microsoft 365 Copilot into 1-Click Data Theft Tool

    Researchers disclosed SearchLeak, a critical vulnerability chain in Microsoft 365 Copilot Enterprise that allows attackers to steal sensitive data from a...

  • NewsJun 15, 2026

    Palo Alto Warns of Active Exploitation of PAN-OS GlobalProtect VPN Flaw

    Palo Alto Networks has confirmed active exploitation of CVE-2026-0257, an authentication bypass vulnerability in PAN-OS GlobalProtect portals carrying a...

  • SecurityJun 15, 2026

    CVE-2026-20262: Cisco Catalyst SD-WAN Manager Path Traversal Vulnerability

    Cisco Catalyst SD-WAN Manager contains a directory path traversal vulnerability allowing an authenticated remote attacker to create or overwrite any file...

  • NewsJun 14, 2026

    Check Point VPN Zero-Day Exploited Since Early May by Qilin Ransomware

    A critical zero-day vulnerability in Check Point's VPN products has been under active exploitation since at least early May 2026, with a Qilin ransomware...

  • NewsJun 14, 2026

    Google Confirms ShinyHunters Exploited Oracle PeopleSoft Zero-Day CVE-2026-35273

    Google's Threat Intelligence Group confirmed in-the-wild exploitation of Oracle PeopleSoft zero-day CVE-2026-35273 by ShinyHunters, even as Oracle...

  • SecurityJun 14, 2026

    CVE-2026-5513: Bookly WordPress Plugin Stored XSS via Cookie

    The Bookly scheduling plugin for WordPress contains a stored cross-site scripting vulnerability in versions up to 27.2, allowing unauthenticated attackers...

  • NewsJun 13, 2026

    Critical Splunk Enterprise Flaw Lets Attackers Run Code Without Authentication

    Splunk patches CVE-2026-20253, a CVSS 9.8 critical vulnerability enabling unauthenticated file operations and remote code execution in Splunk Enterprise.

  • SecurityJun 13, 2026

    CVE-2026-11849: IRM-IEI Remote Management Hardcoded Credentials

    A critical CVSS 9.8 hardcoded credentials vulnerability in IEI Integration Corp's IRM-IEI Remote Management software allows unauthenticated remote...

  • SecurityJun 13, 2026

    CVE-2026-44990: sanitize-html XMP Element XSS Bypass (CVSS 9.3)

    sanitize-html versions prior to 2.17.4 allow attacker-controlled content inside a disallowed xmp element to render as live HTML, enabling stored XSS.

  • NewsJun 12, 2026

    LangGraph Flaw Chain Exposes Self-Hosted AI Agents to Remote Code Execution

    Security researchers have disclosed three now-patched vulnerabilities in LangGraph — including a critical chain that enables remote code execution on...

  • SecurityJun 12, 2026

    CVE-2026-10087: GitLab EE Stored XSS via Developer Role

    GitLab EE versions 17.1 through 19.x are affected by a stored cross-site scripting vulnerability (CVSS 8.7) that allows an authenticated developer to...

  • SecurityJun 12, 2026

    CVE-2026-47365: WordPress Toolkit Argument Injection in cPanel & WHM

    A critical CVSS 9.9 argument injection vulnerability in WordPress Toolkit before 6.11.0 allows remote authenticated users to bypass cross-tenant...

  • SecurityJun 12, 2026

    CVE-2026-47367: UID Enterprise Agent Command Injection via Improper Input Validation

    A critical CVSS 9.9 command injection vulnerability in UID Enterprise Agent allows a low-privileged network attacker to execute arbitrary commands on the...

  • SecurityJun 12, 2026

    CVE-2026-47369: UniFi OS Privilege Escalation via Improper Input Validation

    A critical CVSS 9.9 privilege escalation vulnerability in Ubiquiti UniFi OS allows a low-privileged network attacker to escalate privileges within UniFi...

  • SecurityJun 12, 2026

    CVE-2026-47370: UniFi OS Command Injection via Improper Input Validation

    A critical CVSS 9.9 command injection vulnerability in Ubiquiti UniFi OS allows a low-privileged network attacker to execute arbitrary commands within...

  • NewsJun 11, 2026

    Microsoft Patches Exploited Exchange Server Vulnerability CVE-2026-42897

    Microsoft has released a patch for CVE-2026-42897, an Exchange Server zero-day that has been under active exploitation since at least May 14, 2026. The...

  • NewsJun 11, 2026

    Oracle Mitigates PeopleSoft Zero-Day Exploited in Data Theft Attacks

    Oracle has issued an emergency mitigation for CVE-2026-35273, a critical unauthenticated RCE flaw in PeopleSoft Suite being actively exploited by the...

  • SecurityJun 11, 2026

    CVE-2025-6254: WordPress Doctreat Core Plugin Privilege Escalation (CVSS 9.8)

    A critical unauthenticated privilege escalation vulnerability in the Doctreat Core WordPress plugin allows attackers to register with elevated roles,...

  • SecurityJun 11, 2026

    CVE-2026-53469: migration-planner Missing Authorization on Bulk Delete

    A critical missing authorization vulnerability (CVSS 9.1) in Red Hat's migration-planner allows any authenticated user to send a DELETE request to...

  • SecurityJun 11, 2026

    CVE-2026-53470: migration-planner IDOR Exposes Cross-Tenant S3 Pre-Signed URLs

    A critical improper access control vulnerability (CVSS 9.6) in Red Hat's migration-planner allows an authenticated attacker to bypass ownership checks and...

  • SecurityJun 11, 2026

    CVE-2026-53471: migration-planner JWT Source ID Claim Not Validated in Agent API

    A critical improper authentication vulnerability (CVSS 9.6) in Red Hat's migration-planner agent-API middleware allows authenticated agents to update...

  • NewsJun 10, 2026

    Microsoft Patches Record 206 Flaws Including Three Zero-Days and Critical RCE Bugs

    Microsoft's June 2026 Patch Tuesday is the largest single release on record, fixing 206 vulnerabilities across its software portfolio — including three...

  • NewsJun 10, 2026

    Path Traversal Flaw in AI Dev Platform Langflow Exploited in Attacks

    Attackers are actively exploiting CVE-2026-5027, a high-severity path traversal vulnerability in Langflow, to write arbitrary files on exposed servers....

  • NewsJun 10, 2026

    Six Proto6 Vulnerabilities in protobuf.js Expose Node.js Apps to RCE and DoS

    Six critical flaws in protobuf.js — the JavaScript/TypeScript Protocol Buffers library — can lead to remote code execution and denial-of-service in...

  • NewsJun 10, 2026

    Unpatched Langflow Flaw CVE-2026-5027 Exploited for Unauthenticated RCE

    A high-severity path traversal flaw (CVE-2026-5027, CVSS 8.8) in the AI application builder Langflow is being actively exploited with no patch available....

  • SecurityJun 10, 2026

    CVE-2026-47928: Adobe ColdFusion Critical RCE — CVSS 9.6

    Adobe ColdFusion 2023.19 and 2025.8 are affected by a critical improper input validation flaw enabling unauthenticated remote code execution with scope change.

  • NewsJun 9, 2026

    CISA Gives Feds 3 Days to Patch Check Point VPN Bug Exploited as Zero-Day

    CISA ordered federal agencies to patch a critical Check Point Remote Access VPN flaw within 3 days after Qilin ransomware affiliates were confirmed...

  • NewsJun 9, 2026

    New Veeam Vulnerability Exposes Backup Servers to RCE Attacks

    Veeam patched a critical CVE-2026-44963 flaw in Backup and Replication allowing remote code execution on domain-joined servers. CVSS 9.4 — patch immediately.

  • NewsJun 9, 2026

    Veeam Backup and Replication RCE Flaw Lets Domain Users Run Remote Code

    A critical CVE-2026-44963 flaw in Veeam Backup and Replication lets low-privilege domain users achieve remote code execution on backup servers. CVSS 9.4 —...

  • NewsJun 7, 2026

    CISA: Hackers Now Exploit SolarWinds Serv-U Flaw to Crash Servers

    CISA added a high-severity SolarWinds Serv-U flaw to its KEV catalog after confirming attackers are actively exploiting it to crash file transfer servers.

  • NewsJun 6, 2026

    Cisco Catalyst SD-WAN Manager CVE-2026-20245 Flaw Actively Exploited – No Patch Available

    Cisco has disclosed active exploitation of CVE-2026-20245, a high-severity vulnerability in Catalyst SD-WAN Manager with a CVSS score of 7.8. No patch is…

  • NewsJun 5, 2026

    Cisco Warns of Unpatched SD-WAN Zero-Day Exploited in Attacks

    Cisco has issued an emergency warning about an actively exploited, unpatched zero-day in Cisco Catalyst SD-WAN Manager (CVE-2026-20245) that enables root…

  • SecurityJun 5, 2026

    CVE-2026-35906: T3 Technology CPE Unauthenticated Root RCE via Debug CGI

    An undocumented debug CGI endpoint in T3 Technology CPE devices (T625Pro v1.0.07, T6825G v1.0.03) allows unauthenticated remote attackers to execute arbitrary…

  • SecurityJun 5, 2026

    CVE-2026-49777: CVSS 10 Flaw in WooCommerce Product Slider Pro Enables Malware Implantation

    A maximum-severity input validation vulnerability in Product Slider Pro for WooCommerce allows attackers to implant malicious software. Affects all versions…

  • SecurityJun 5, 2026

    CVE-2026-50208: TLS Bypass and Hard-Coded DES Keys Enable MITM Attacks

    A critical CVSS 9.4 vulnerability disables TLS certificate validation via TrustAllCerts routines and combines this with hard-coded DES symmetric encryption…

  • SecurityJun 5, 2026

    CVE-2026-50211: Leftover Engineering Diagnostics Grant Malicious Apps NVRAM Write Access

    A critical CVSS 9.8 vulnerability exposes factory-level diagnostic interfaces left in retail firmware builds, allowing malicious applications to gain write…

  • SecurityJun 5, 2026

    CVE-2026-6274: Critical Authentication Bypass in DTS Redline WR3200 Router

    A critical authentication bypass vulnerability in the DTS Electronics Redline WR3200 router allows unauthenticated attackers to access functionality protected…

  • NewsJun 4, 2026

    CISA Adds Exploited Magento RCE Flaw CVE-2026-45247 to KEV Catalog

    CISA has added a critical remote code execution vulnerability in the Mirasvit Cache Warmer Magento extension to its Known Exploited Vulnerabilities catalog…

  • NewsJun 3, 2026

    Acer Working to Patch Max Severity Zero-Days in Wave 7 Routers

    Acer is scrambling to address two maximum-severity zero-day vulnerabilities discovered in its Wave 7 mesh router lineup. Both flaws carry a CVSS score of 10.0…

  • NewsJun 3, 2026

    Autonomous AI Tool Finds 2-Year-Old RCE Flaw in Redis (CVE-2026-23479)

    Redis has patched a use-after-free vulnerability in its blocking-client code that allows authenticated users to execute arbitrary OS commands on the database…

  • NewsJun 3, 2026

    Critical Kirki Flaw Exploited to Hijack WordPress Admin Accounts

    Hackers are actively exploiting a critical privilege escalation vulnerability (CVE-2026-8206) in the widely-used Kirki Customizer Framework plugin for…

  • NewsJun 3, 2026

    VS Code Zero-Day Lets Hackers Steal GitHub Tokens in One Click

    A security researcher has released exploit code for a Visual Studio Code zero-day vulnerability that allows attackers to steal GitHub authentication tokens by…

  • SecurityJun 3, 2026

    CVE-2022-0492: Linux Kernel Improper Authentication Vulnerability

    A Linux kernel vulnerability in the cgroups v1 release_agent feature allows local attackers to escalate privileges and escape containers. Added to CISA KEV…

  • NewsJun 2, 2026

    Critical Vulnerability in HP VoIP Phones Enables Enterprise Network Breaches

    A stack-based buffer overflow flaw in HP OfficeConnect VoIP phones can be exploited remotely to achieve code execution, potentially allowing attackers to…

  • NewsJun 2, 2026

    One Line of Code Put Billions of Microsoft Android App Downloads at Risk

    A single development-mode setting left in production code bypassed Android protections designed to prevent unauthorized apps from accessing Microsoft account…

  • SecurityJun 2, 2026

    CVE-2018-25427: Arm Whois 3.11 Stack-Based Buffer Overflow RCE

    A critical stack-based buffer overflow vulnerability in Arm Whois 3.11 (CVSS 9.8) allows remote attackers to execute arbitrary code by supplying oversized…

  • NewsJun 1, 2026

    Critical Windows Netlogon RCE Flaw Now Exploited in Attacks

    Belgium's national cybersecurity authority (CCB) has issued an urgent warning that threat actors are actively exploiting a recently patched critical Windows…

  • SecurityJun 1, 2026

    CVE-2026-10184: SourceCodester Hospital Records SQL Injection via Delete

    A SQL injection vulnerability in SourceCodester Hospitals Patient Records Management System 1.0 allows remote attackers to extract database contents by…

  • SecurityJun 1, 2026

    CVE-2026-10185: SourceCodester Hospital Records SQL Injection via Save

    A SQL injection vulnerability in SourceCodester Hospitals Patient Records Management System 1.0 enables remote attackers to extract database contents by…

  • SecurityJun 1, 2026

    CVE-2026-10187: Totolink N300RH Stack Buffer Overflow in WiFi Config

    A critical-severity stack buffer overflow in the Totolink N300RH wireless router allows remote attackers to execute arbitrary code via a crafted KeyStr…

  • SecurityJun 1, 2026

    CVE-2026-48188: OTRS Database Layer SQL Injection — Authentication Bypass

    A critical SQL injection vulnerability (CVSS 9.1) in OTRS and ((OTRS)) Community Edition allows unauthenticated attackers to bypass authentication entirely…

  • SecurityJun 1, 2026

    CVE-2026-49489: OpenCATS ATS SQL Injection via sortDirection Parameter

    A SQL injection vulnerability in OpenCATS through 0.9.7.4 allows authenticated attackers to extract database contents by injecting malicious SQL via the…

  • NewsMay 31, 2026

    WP Maps Pro Bug Exploited to Create Admin Accounts on WordPress Sites

    Hackers are actively exploiting a critical vulnerability in the WP Maps Pro WordPress plugin that allows unauthenticated attackers to create rogue…

  • SecurityMay 31, 2026

    CVE-2018-25405: Multiple SQL Injections in eNdonesia Portal 8.7

    Multiple unauthenticated SQL injection vulnerabilities in eNdonesia Portal 8.7 allow attackers to extract sensitive database contents via the artid, cid,...

  • SecurityMay 31, 2026

    CVE-2018-25406: SQL Injection Across eNdonesia Portal 8.7 Modules

    Multiple unauthenticated SQL injection vulnerabilities in eNdonesia Portal 8.7 expose the publisher, artikel, and info modules to database extraction...

  • SecurityMay 31, 2026

    CVE-2018-25411: SQL Injection in MGB OpenSource Guestbook 0.7.0.2

    An unauthenticated SQL injection vulnerability in MGB OpenSource Guestbook 0.7.0.2 allows attackers to extract sensitive database contents via the 'id'...

  • SecurityMay 31, 2026

    CVE-2018-25412: Arbitrary File Upload RCE in Delta Sql 1.8.2

    A critical unauthenticated arbitrary file upload vulnerability in Delta Sql 1.8.2 allows attackers to upload malicious PHP files and achieve remote code...

  • SecurityMay 31, 2026

    CVE-2026-10178: SQL Injection in Online Music Site 1.0 Admin Panel

    A remotely exploitable SQL injection vulnerability has been disclosed in code-projects Online Music Site 1.0, affecting the Administrator PHP AdminEditAlbum…

  • SecurityMay 30, 2026

    CVE-2018-25391: HaPe PKH 1.1 Unauthenticated Record Deletion via Missing Authorization

    HaPe PKH 1.1, a PHP-based web application, fails to enforce authorization on its record deletion endpoints, allowing unauthenticated attackers to...

  • SecurityMay 30, 2026

    CVE-2026-10042: manga-image-translator RCE via Unsafe Python Deserialization

    A critical CVSS 9.8 remote code execution vulnerability in manga-image-translator allows unauthenticated attackers to execute arbitrary commands by...

  • SecurityMay 30, 2026

    CVE-2026-10110: SQL Injection in Student Details Management System 1.0

    A remotely exploitable SQL injection vulnerability in code-projects Student Details Management System 1.0 allows attackers to manipulate database queries...

  • SecurityMay 30, 2026

    CVE-2026-4290: WP Travel Pro Arbitrary User Deletion via Broken REST API Access Control

    A critical CVSS 9.1 access control flaw in the WP Travel Pro WordPress plugin allows unauthenticated attackers to delete any user account — including...

  • SecurityMay 30, 2026

    CVE-2026-7459: WordPress Simple History Plugin Account Takeover

    A broken authentication check in the Simple History WordPress plugin (versions up to 5.26.0) allows Subscriber-level users to take over any WordPress...

  • SecurityMay 30, 2026

    CVE-2026-7465: RCE in Spectra Gutenberg Blocks WordPress Plugin (CVSS 8.8)

    A high-severity remote code execution vulnerability in the Spectra Gutenberg Blocks plugin for WordPress allows authenticated Contributor-level attackers...

  • NewsMay 29, 2026

    Critical FortiClient EMS Vulnerability Exploited in Fresh Attacks

    Fortinet's April hotfix for the actively exploited CVE-2026-35616 FortiClient EMS flaw is now seeing renewed exploitation, as attackers continue targeting...

  • SecurityMay 29, 2026

    CVE-2026-35676: phpMyFAQ Unauthenticated Password Reset Vulnerability

    phpMyFAQ before 4.1.3 contains a CVSS 8.2 flaw allowing unauthenticated attackers to reset any account password without token validation, enabling full...

  • SecurityMay 29, 2026

    CVE-2026-4408: Samba OS Command Injection via Check Password Script

    A CVSS 9.0 OS command injection flaw in Samba allows remote attackers to execute arbitrary commands on file servers and domain controllers using the %u...

  • NewsMay 28, 2026

    Critical Gogs RCE Vulnerability Lets Any Authenticated User Execute Arbitrary Code

    Rapid7 discloses a critical CVSS 9.4 RCE in Gogs, the popular self-hosted Git service, letting any authenticated user run arbitrary code on the server.

  • NewsMay 28, 2026

    Microsoft Slams Public Zero-Day Disclosures Amid GitHub Researcher Account Removal

    Microsoft condemns uncoordinated public zero-day disclosure, urging the security community to adopt CVD after removing a researcher's GitHub account.

  • NewsMay 28, 2026

    New Gogs Zero-Day Flaw Lets Hackers Get Remote Code Execution

    An unpatched Gogs zero-day lets attackers gain RCE on internet-facing instances of the self-hosted Git service — no patch is currently available.

  • SecurityMay 28, 2026

    CVE-2026-32999: Comet Backup Server Code Execution via Signing Module

    A CVSS 9.0 code execution flaw in Comet Backup's backup agent signing module allows an authenticated tenant administrator to execute arbitrary code on...

  • SecurityMay 28, 2026

    CVE-2026-8398: Daemon Tools Lite Embedded Malicious Code Vulnerability

    CISA adds CVE-2026-8398 to KEV — a high-severity embedded malicious-code flaw in Daemon Tools Lite impacting confidentiality, integrity, and availability.

  • NewsMay 27, 2026

    CISA Gives Feds 4 Days to Patch Actively Exploited cPanel Plugin Flaw

    CISA's emergency directive gives federal agencies four days to patch the actively exploited LiteSpeed cPanel plugin flaw being weaponized in the wild.

  • NewsMay 27, 2026

    CISA Urges Immediate Patching of Exploited LiteSpeed cPanel

    CISA has added a LiteSpeed cPanel plugin zero-day to its Known Exploited Vulnerabilities catalog after active exploitation allowed attackers to execute scripts.

  • NewsMay 27, 2026

    Gitea Vulnerability Exposes Private Container Images without Authentication

    A Gitea flaw lets unauthenticated remote attackers pull private container images from self-hosted deployments with no account or credentials required.

  • NewsMay 27, 2026

    Open Source DockSec Uses AI to Cut Through Vulnerability

    DockSec, an OWASP incubator project, combines multiple container security scanners with AI-generated plain-English remediation guidance and exact Dockerfile.

  • SecurityMay 27, 2026

    CVE-2026-7374: KubeVirt virt-handler Symlink RCE (CVSS 9.9)

    A critical symlink validation flaw in KubeVirt's virt-handler lets authenticated OpenShift users with edit access in a single namespace escalate to arbitrary.

  • NewsMay 26, 2026

    Hackers Exploited KnowledgeDeliver Zero-Day for Web Shell

    A hardcoded machineKey value in KnowledgeDeliver's configuration enabled ViewState deserialization attacks leading to remote code execution and web shell.

  • NewsMay 26, 2026

    KnowledgeDeliver Flaw Exploited as Zero-Day to Install Web

    Attackers exploited a critical zero-day vulnerability in KnowledgeDeliver LMS servers to deploy the Godzilla web shell, giving persistent backdoor access to.

  • NewsMay 26, 2026

    KnowledgeDeliver LMS Flaw Exploited to Deploy Godzilla and Cobalt Strike

    A now-patched high-severity zero-day vulnerability in Digital Knowledge's KnowledgeDeliver LMS, a popular learning management system in Japan, was actively.

  • NewsMay 26, 2026

    Microsoft Patches SharePoint RCE Flaw CVE-2026-45659 Across

    Microsoft has released updates fixing CVE-2026-45659, a CVSS 8.8 remote code execution vulnerability in SharePoint Server that requires no specialized.

  • SecurityMay 26, 2026

    CVE-2026-9525: SQL Injection in itsourcecode Electronic

    A remotely exploitable SQL injection vulnerability in the admin panel of itsourcecode Electronic Judging System 1.0 allows attackers to manipulate database.

  • NewsMay 24, 2026

    Making Vulnerable Drivers Exploitable Without Hardware: The

    A new technical analysis reveals that many Windows kernel-mode drivers can be exploited from user mode without the physical hardware they were designed...

  • NewsMay 23, 2026

    Drupal Core SQL Injection Bug Actively Exploited, Added to CISA KEV

    CISA has added CVE-2026-9082, a SQL injection vulnerability in Drupal Core, to its Known Exploited Vulnerabilities catalog following confirmed in-the-wild...

  • NewsMay 23, 2026

    Drupal: Critical SQL Injection Flaw Now Targeted in Attacks

    Drupal is warning that hackers are actively attempting to exploit a 'highly critical' SQL injection vulnerability, CVE-2026-9082, announced earlier this...

  • NewsMay 23, 2026

    LiteSpeed cPanel Plugin CVE-2026-48172 Exploited to Run

    A maximum-severity vulnerability in the LiteSpeed User-End cPanel Plugin, tracked as CVE-2026-48172 with a CVSS score of 10.0, is under active...

  • NewsMay 23, 2026

    Ubiquiti Patches Three Max-Severity UniFi OS Vulnerabilities

    Ubiquiti has released security updates fixing three CVSS 10.0 vulnerabilities in UniFi OS that allow unauthenticated remote attackers to fully compromise...

  • NewsMay 23, 2026

    'Underminr' Vulnerability Lets Attackers Hide Malicious

    A newly disclosed vulnerability dubbed 'Underminr' affects approximately 88 million domains and enables attackers to bypass DNS filtering tools while...

  • NewsMay 22, 2026

    Microsoft Warns of Two Actively Exploited Defender

    Microsoft has disclosed two Windows Defender vulnerabilities under active exploitation in the wild, including CVE-2026-41091 — a privilege escalation flaw...

  • NewsMay 22, 2026

    Trend Micro Warns of Apex One Zero-Day Exploited in the Wild

    Trend Micro has patched an Apex One zero-day vulnerability actively exploited in attacks targeting Windows systems. The flaw, discovered in the company's...

  • SecurityMay 22, 2026

    CVE-2026-39531: WP Directory Kit Blind SQL Injection (CVSS

    A critical blind SQL injection vulnerability in the WP Directory Kit WordPress plugin allows unauthenticated attackers to exfiltrate the entire WordPress...

  • SecurityMay 22, 2026

    CVE-2026-48207: Apache Fury PyFury Deserialization RCE

    A critical deserialization vulnerability in Apache Fury's Python library PyFury allows attackers to bypass DeserializationPolicy validation hooks via the...

  • NewsMay 21, 2026

    Drupal Patches Highly Critical Vulnerability Exposing

    Drupal has released an urgent security update for CVE-2026-9082, a highly critical flaw that can be exploited without authentication to achieve...

  • NewsMay 21, 2026

    Google Accidentally Exposed Details of Unfixed Chromium Flaw

    Google accidentally leaked information about an unpatched Chromium vulnerability that allows JavaScript to continue running in the background even after...

  • NewsMay 19, 2026

    SEPPMail Secure E-Mail Gateway Vulnerabilities Enable RCE

    Critical security vulnerabilities in SEPPMail Secure E-Mail Gateway — an enterprise email security appliance — could allow attackers to achieve remote...

  • NewsMay 19, 2026

    Verizon DBIR 2026: Vulnerability Exploitation Overtakes

    Verizon's 2026 Data Breach Investigations Report reveals a landmark shift: vulnerability exploitation has surpassed credential abuse as the leading breach...

  • SecurityMay 19, 2026

    CVE-2026-7301: SGLang ROUTER Socket Exposes Unsafe

    A critical CVSS 9.8 vulnerability in SGLang's multimodal AI runtime scheduler binds its ROUTER socket to 0.0.0.0 by default and passes incoming messages...

  • SecurityMay 19, 2026

    CVE-2026-7302: SGLang Unauthenticated Path Traversal

    A critical CVSS 9.1 path traversal vulnerability in SGLang's multimodal AI runtime allows unauthenticated attackers to write arbitrary files anywhere the...

  • NewsMay 18, 2026

    Microsoft Exchange Zero-Day Under Attack, No Patch Available

    A zero-day XSS vulnerability in Microsoft Exchange Server (CVE-2026-42897) is being actively exploited in the wild, allowing attackers to compromise...

  • SecurityMay 18, 2026

    CVE-2026-8785: SQL Injection in Hospital Management System

    A high-severity SQL injection vulnerability (CVE-2026-8785, CVSS 7.3) has been disclosed in projectworlds Hospital Management System in PHP 1.0, allowing...

  • NewsMay 17, 2026

    Cisco Catalyst SD-WAN Controller Auth Bypass Actively

    Cisco has patched a maximum-severity authentication bypass flaw in its Catalyst SD-WAN Controller that has already been exploited in limited attacks....

  • NewsMay 17, 2026

    NGINX CVE-2026-42945 Exploited in the Wild, Causing Worker

    A heap buffer overflow in NGINX's rewrite module is under active exploitation, days after disclosure. The CVSS 9.2 flaw impacts both NGINX Plus and Open...

  • NewsMay 16, 2026

    Funnel Builder Flaw Under Active Exploitation Enables

    Attackers are actively exploiting a critical vulnerability in the Funnel Builder WordPress plugin to inject malicious JavaScript into WooCommerce checkout...

  • NewsMay 16, 2026

    PoC Code Published for Critical NGINX Vulnerability

    A proof-of-concept exploit has been released for a critical-severity NGINX vulnerability that has existed in the rewrite module for nearly two decades....

  • SecurityMay 16, 2026

    CVE-2020-37228: iDS6 DSSPro Digital Signage CAPTCHA

    A critical CVSS 9.8 vulnerability in iDS6 DSSPro Digital Signage System 6.2 allows attackers to retrieve valid CAPTCHA codes from the login endpoint and...

  • SecurityMay 16, 2026

    CVE-2020-37239: libbabl 0.1.62 Broken Double-Free Detection

    A critical CVSS 9.8 memory safety flaw in libbabl 0.1.62 allows attackers to call babl_free() twice on the same pointer without triggering the library's...

  • SecurityMay 16, 2026

    CVE-2026-45402: Open WebUI File ID Authorization Bypass

    A high-severity authorization bypass in Open WebUI prior to 0.9.5 allows authenticated users to attach arbitrary files to resources they do not own via...

  • SecurityMay 16, 2026

    DAEMON Tools Lite Supply Chain Attack via Trojanized

    A supply chain attack compromised official DAEMON Tools Lite installation packages distributed from daemon-tools.cc between April 8 and May 5, 2026,...

  • NewsMay 15, 2026

    Avada Builder WordPress Plugin Flaws Allow Site Credential

    Two vulnerabilities in the Avada Builder plugin for WordPress, with an estimated one million active installations, allow hackers to read arbitrary files...

  • NewsMay 15, 2026

    Funnel Builder WordPress Plugin Bug Exploited to Steal

    A critical vulnerability in the Funnel Builder plugin for WordPress is being actively exploited to inject malicious JavaScript into WooCommerce checkout...

  • NewsMay 15, 2026

    Microsoft Warns of Exchange Zero-Day Flaw Exploited in Attacks

    Microsoft shared mitigations for a high-severity Exchange Server vulnerability being actively exploited that allows threat actors to execute arbitrary...

  • SecurityMay 15, 2026

    CVE-2026-42457: vCluster Platform Stored XSS via templateRef Name Field

    A stored cross-site scripting vulnerability in vCluster Platform allows attackers to inject and execute arbitrary JavaScript via the name field of a...

  • SecurityMay 15, 2026

    CVE-2026-44212: PrestaShop Stored XSS in Customer Service

    A stored Cross-Site Scripting vulnerability (CVSS 9.3) in PrestaShop's back-office Customer Service view allows unauthenticated attackers to inject...

  • NewsMay 14, 2026

    18-Year-Old NGINX Rewrite Module Flaw Enables

    Researchers have disclosed multiple critical vulnerabilities in NGINX Plus and NGINX Open Source, including a heap buffer overflow in...

  • NewsMay 14, 2026

    18-Year-Old NGINX Vulnerability Allows DoS and Potential RCE

    An autonomous scanning system has uncovered an 18-year-old flaw in the NGINX open-source web server that can be exploited for denial of service and, under...

  • NewsMay 14, 2026

    PraisonAI CVE-2026-44338 Auth Bypass Targeted Within Hours

    Threat actors began exploiting CVE-2026-44338, a missing authentication flaw in the PraisonAI multi-agent orchestration framework, within just four hours...

  • NewsMay 14, 2026

    ThreatsDay Bulletin: PAN-OS RCE, Mythos cURL Bug, AI

    This week's threat roundup covers an actively exploited PAN-OS RCE granting root access, Anthropic's Mythos AI finding a cURL memory safety bug, AI...

  • SecurityMay 14, 2026

    CVE-2026-20182: Cisco Catalyst SD-WAN Controller

    A critical authentication bypass vulnerability in Cisco Catalyst SD-WAN Controller and Manager allows an unauthenticated remote attacker to bypass...

  • NewsMay 13, 2026

    Microsoft May 2026 Patch Tuesday: 137 Flaws Fixed, Zero

    Microsoft's May 2026 Patch Tuesday addresses 137 vulnerabilities including nine critical flaws — but for the first time in two years, not a single...

  • NewsMay 13, 2026

    New Critical Exim Mailer Flaw Allows Remote Code Execution

    A critical vulnerability in certain configurations of the Exim open-source mail transfer agent allows unauthenticated remote attackers to execute...

  • SecurityMay 13, 2026

    CVE-2026-8043: Ivanti Xtraction File Control & HTML

    A critical vulnerability in Ivanti Xtraction before version 2026.2 allows remote authenticated attackers to read sensitive files and write arbitrary HTML...

  • SecurityMay 13, 2026

    CVE-2026-8053: MongoDB Time-Series Out-of-Bounds Write

    An authenticated user with database write privileges can trigger an out-of-bounds memory write in the mongod process via a flaw in MongoDB Server's...

  • NewsMay 11, 2026

    Hackers Used AI to Develop First Known Zero-Day 2FA Bypass

    Google has disclosed a landmark discovery: an unknown threat actor used an AI system to develop a zero-day exploit in the wild — the first confirmed...

  • NewsMay 11, 2026

    Skoda Data Breach Hits Online Shop Customers

    Hackers exploited a vulnerability in Skoda's online shop portal to access customer personal data including names, addresses, email addresses, and phone...

  • NewsMay 10, 2026

    Canvas Login Portals Hacked in Mass ShinyHunters Extortion

    ShinyHunters has struck education technology giant Instructure again, exploiting a fresh vulnerability to deface Canvas login portals across hundreds of...

  • NewsMay 10, 2026

    Critical Apache HTTP/2 Flaw (CVE-2026-23918) Enables DoS

    The Apache Software Foundation has released urgent security updates for the Apache HTTP Server addressing a severe vulnerability in the HTTP/2 protocol...

  • NewsMay 10, 2026

    Exploit Frenzy Threatens Millions via Critical cPanel

    A critical authentication bypass flaw in cPanel/WHM has triggered a wave of exploit activity, with multiple proof-of-concept exploits now public and...

  • NewsMay 10, 2026

    Ivanti EPMM CVE-2026-6973 RCE Under Active Exploitation

    Ivanti has disclosed a high-severity improper input validation vulnerability in Endpoint Manager Mobile (EPMM) that is being actively exploited in the...

  • NewsMay 10, 2026

    Ollama Out-of-Bounds Read Flaw Allows Remote Process Memory

    Researchers have disclosed a critical out-of-bounds read vulnerability in Ollama that enables remote unauthenticated attackers to leak the entire process...

  • NewsMay 10, 2026

    PAN-OS RCE Exploit Under Active Use Enabling Root Access

    Palo Alto Networks has disclosed that CVE-2026-0300, a critical CVSS 9.3 buffer overflow in the PAN-OS User-ID Authentication service, is being actively...

  • NewsMay 8, 2026

    Ivanti Customers Confront Yet Another Actively Exploited

    Attackers are actively exploiting a new zero-day vulnerability in Ivanti Endpoint Manager Mobile (EPMM), the latest in a long series of critical flaws...

  • NewsMay 3, 2026

    CISA Adds Actively Exploited Linux Root Access Bug

    The U.S. Cybersecurity and Infrastructure Security Agency has added CVE-2026-31431, a Linux kernel privilege escalation flaw enabling root access, to its...

  • SecurityMay 3, 2026

    CVE-2026-5324: WordPress Brizy Page Builder Unauthenticated

    The Brizy Page Builder plugin for WordPress contains a critical unauthenticated Stored Cross-Site Scripting flaw in versions up to 2.8.11, enabling...

  • SecurityMay 1, 2026

    CVE-2026-35547: FreeBSD libnv Heap Buffer Overflow Allows

    A critical heap buffer overflow in FreeBSD's libnv library allows an unprivileged program to write outside heap allocation bounds during message header...

  • NewsApr 30, 2026

    AI Finds 38 Security Flaws in Electronic Health Record

    Security researchers using AI-assisted analysis discovered 38 vulnerabilities in OpenEMR, an open-source electronic health record platform used by more...

  • NewsApr 30, 2026

    Critical cPanel and WHM Bug Exploited as Zero-Day, PoC Now

    The critical CVE-2026-41940 authentication bypass vulnerability in cPanel, WHM, and WP Squared is being actively exploited in the wild and has been...

  • NewsApr 30, 2026

    Google Fixes CVSS 10 Gemini CLI RCE and Cursor Flaws Enable

    Google has patched a maximum severity vulnerability in its Gemini CLI npm package and GitHub Actions workflow that allowed unprivileged attackers to...

  • NewsApr 29, 2026

    cPanel & WHM Emergency Update Fixes Critical Auth Bypass Bug

    cPanel and WebHost Manager have released an emergency patch for a critical authentication bypass vulnerability that allows attackers to gain control panel...

  • NewsApr 29, 2026

    Critical GitHub Vulnerability Exposed Millions of Repositories

    A critical remote code execution vulnerability, CVE-2026-3854, was found to impact GitHub.com and GitHub Enterprise Server, potentially exposing millions...

  • NewsApr 29, 2026

    GitHub Fixes RCE Flaw That Gave Access to Millions of Private Repos

    GitHub has patched CVE-2026-3854, a critical remote code execution vulnerability exploitable via a single HTTP request that could have granted attackers...

  • SecurityApr 29, 2026

    CVE-2024-1708: ConnectWise ScreenConnect Path Traversal

    ConnectWise ScreenConnect contains a path traversal vulnerability (CVE-2024-1708) that allows attackers to execute remote code or directly access...

  • NewsApr 28, 2026

    Critical Unpatched Flaw Leaves Hugging Face LeRobot Open to Unauthenticated RCE

    Cybersecurity researchers have disclosed CVE-2026-25874, a critical unauthenticated remote code execution vulnerability (CVSS 9.3) in Hugging Face's...

  • NewsApr 28, 2026

    Hackers Are Exploiting a Critical LiteLLM Pre-Auth SQLi Flaw

    Threat actors are actively exploiting CVE-2026-42208, a critical pre-authentication SQL injection vulnerability in the LiteLLM open-source LLM gateway,...

  • NewsApr 28, 2026

    Researchers Discover Critical GitHub CVE-2026-3854 RCE Flaw

    Cybersecurity researchers have disclosed a critical remote code execution vulnerability in GitHub.com and GitHub Enterprise Server that allows an...

  • SecurityApr 28, 2026

    CVE-2026-7224: SQL Injection in Pizzafy Ecommerce System 1.0

    A high-severity SQL injection vulnerability has been discovered in SourceCodester Pizzafy Ecommerce System 1.0, allowing remote attackers to manipulate...

  • NewsApr 27, 2026

    Firefox Vulnerability Allows Tor User Fingerprinting Across

    A high-severity Firefox vulnerability (CVE-2026-6770) exploits the internal ordering of IndexedDB database names to generate a stable 44-bit fingerprint...

  • NewsApr 27, 2026

    Incomplete Windows Patch Opens Door to Zero-Click Attacks

    A Microsoft Windows vulnerability originally patched in a prior Patch Tuesday was incompletely remediated, leaving a residual attack surface that...

  • SecurityApr 27, 2026

    CVE-2026-6785: Memory Safety Bugs in Firefox and Thunderbird Enable Arbitrary Code Execution

    A CVSS 8.1 high-severity collection of memory safety bugs affects Firefox 149, Firefox ESR 140.9, Firefox ESR 115.34, Thunderbird 149, and Thunderbird ESR...

  • SecurityApr 27, 2026

    CVE-2026-7037: Unauthenticated OS Command Injection in Totolink A8000RU

    A critical CVSS 9.8 OS command injection vulnerability in the Totolink A8000RU router allows unauthenticated remote attackers to execute arbitrary...

  • SecurityApr 27, 2026

    CVE-2026-7077: SQL Injection in itsourcecode Courier

    A remotely exploitable SQL injection vulnerability has been disclosed in itsourcecode Courier Management System 1.0, affecting the edit_parcel.php file...

  • NewsApr 26, 2026

    LMDeploy CVE-2026-33626 Flaw Exploited Within 13 Hours of Disclosure

    A high-severity SSRF vulnerability in LMDeploy, a widely used open-source LLM deployment toolkit, was actively exploited in the wild less than 13 hours...

  • NewsApr 26, 2026

    Microsoft Patch Tuesday, March 2026 Edition

    Microsoft patched 77 security vulnerabilities in March 2026 with no actively exploited zero-days, a welcome reprieve following February's five-zero-day...

  • NewsApr 26, 2026

    New 'Pack2TheRoot' Flaw Gives Hackers Root Linux Access

    A newly disclosed vulnerability in the PackageKit daemon, dubbed Pack2TheRoot, allows local Linux users to escalate privileges to root by abusing the...

  • NewsApr 26, 2026

    Over 10,000 Zimbra Servers Vulnerable to Ongoing XSS Attacks

    CISA has confirmed that a cross-site scripting vulnerability in Zimbra Collaboration Suite is being actively exploited in the wild, with over 10,000...

  • NewsApr 26, 2026

    Patch Tuesday, April 2026 Edition

    Microsoft released patches for 167 security vulnerabilities in April 2026, including an actively exploited SharePoint Server zero-day and the publicly...

  • NewsApr 25, 2026

    CISA Adds 4 Exploited Flaws to KEV, Sets May 2026 Federal

    CISA has added four actively exploited vulnerabilities affecting SimpleHelp, Samsung MagicINFO 9 Server, and D-Link DIR-823X routers to its Known...

  • SecurityApr 25, 2026

    CVE-2025-29635: D-Link DIR-823X Command Injection

    A command injection flaw in end-of-life D-Link DIR-823X routers allows authenticated remote attackers to execute arbitrary OS commands. CISA has added...

  • NewsApr 23, 2026

    Hackers Actively Exploiting Breeze Cache File Upload Bug in WordPress Attacks

    Threat actors are mass-exploiting a critical unauthenticated file upload vulnerability in the Breeze Cache WordPress plugin, uploading PHP webshells to...

  • SecurityApr 23, 2026

    CVE-2018-25270: ThinkPHP 5.0.23 Remote Code Execution via Routing Parameter

    ThinkPHP 5.0.23 contains a critical unauthenticated remote code execution vulnerability allowing attackers to invoke arbitrary PHP functions via a crafted...

  • SecurityApr 23, 2026

    CVE-2018-25272: ELBA5 5.8.0 RCE via Default Database

    ELBA5 5.8.0 contains a critical remote code execution vulnerability where default database connector credentials allow attackers to connect to the...

  • NewsApr 22, 2026

    New Mirai Campaign Exploits RCE Flaw in End-of-Life D-Link

    A new Mirai-based malware campaign is actively exploiting CVE-2025-29635, a high-severity command-injection vulnerability in end-of-life D-Link DIR-823X...

  • NewsApr 22, 2026

    Over 1,300 Microsoft SharePoint Servers Vulnerable to Ongoing Spoofing Attacks

    More than 1,300 internet-facing Microsoft SharePoint servers remain unpatched against a spoofing vulnerability exploited as a zero-day, with active...

  • SecurityApr 22, 2026

    CVE-2026-21997: Oracle Life Sciences Empirica Signal

    A high-severity vulnerability in Oracle Life Sciences Empirica Signal versions 9.2.1-9.2.3 allows a low-privileged attacker with network access via HTTP...

  • SecurityApr 22, 2026

    CVE-2026-22753: Spring Security Filter Chain Bypass via PathPattern Matcher

    A high-severity flaw in Spring Security allows security filter chains to silently fail to match requests when PathPatternRequestMatcher.Builder is used to...

  • NewsApr 21, 2026

    Actively Exploited Apache ActiveMQ Flaw Impacts 6,400

    Shadowserver found over 6,400 Apache ActiveMQ servers exposed online and vulnerable to ongoing attacks exploiting a high-severity code injection...

  • SecurityApr 21, 2026

    CVE-2025-2749: Kentico Xperience Path Traversal

    Kentico Xperience contains a path traversal vulnerability allowing an authenticated user's Staging Sync Server to upload arbitrary data to relative path...

  • SecurityApr 21, 2026

    CVE-2026-29646: OpenXiangShan NEMU RISC-V Hypervisor

    A critical privilege escalation flaw in OpenXiangShan NEMU's RISC-V hypervisor extension allows a VS-mode guest write to the supervisor interrupt-enable...

  • SecurityApr 21, 2026

    CVE-2026-5965: NewSoftOA Critical OS Command Injection

    A critical OS command injection vulnerability in NewSoftOA by NewSoft allows unauthenticated local attackers to inject and execute arbitrary OS commands...

  • NewsletterApr 21, 2026

    Apr 21 Digest: Vercel AI Tool Breach, DPRK $290M, ActiveMQ

    Vercel confirms breach through a compromised third-party AI coding tool; North Korean hackers attributed to a $290 million crypto theft; 6,400 Apache...

  • NewsApr 20, 2026

    Anthropic MCP Design Vulnerability Enables RCE, Threatening

    Cybersecurity researchers have discovered a critical by-design weakness in the Model Context Protocol architecture that enables arbitrary command...

  • NewsApr 20, 2026

    SGLang CVE-2026-5760 (CVSS 9.8) Enables RCE via Malicious

    A critical CVSS 9.8 command injection vulnerability in the SGLang AI inference framework allows attackers to achieve remote code execution by supplying a...

  • SecurityApr 20, 2026

    CVE-2026-20122: Cisco Catalyst SD-WAN Manager Incorrect Use

    Cisco Catalyst SD-WAN Manager contains a privileged API misuse vulnerability that allows an attacker to upload a malicious file to the local file system...

  • SecurityApr 20, 2026

    CVE-2026-6595: SQL Injection in ProjectsAndPrograms School

    A medium-severity SQL injection vulnerability has been disclosed in ProjectsAndPrograms School Management System, allowing remote attackers to manipulate...

  • NewsApr 19, 2026

    Actively Exploited nginx-ui Flaw (CVE-2026-33032) Enables

    A critical authentication bypass vulnerability in nginx-ui, a popular open-source web-based Nginx management interface, is being actively exploited to...

  • NewsApr 19, 2026

    Microsoft Drops Its Second-Largest Monthly Patch Batch on Record

    Microsoft's April 2026 Patch Tuesday addressed 169 CVEs — the second-largest monthly update in company history — including one actively exploited...

  • NewsApr 19, 2026

    Microsoft Issues Patches for SharePoint Zero-Day and 168

    Microsoft's April 2026 Patch Tuesday addresses a record 169 security vulnerabilities including a SharePoint zero-day actively exploited in the wild, 8...

  • NewsApr 19, 2026

    ThreatsDay Bulletin: Defender 0-Day, SonicWall Brute-Force

    This week's threat roundup covers an unpatched Microsoft Defender zero-day, active SonicWall brute-force campaigns, a 17-year-old Excel RCE vulnerability...

  • NewsApr 18, 2026

    In Other News: Satellite Cybersecurity Act, $90K Chrome

    This week's cybersecurity roundup covers the proposed Satellite Cybersecurity Act, a $90,000 Chrome heap overflow bug, a 16-year-old hacker arrest,...

  • SecurityApr 18, 2026

    CVE-2026-40492: SAIL XWD Codec Heap Buffer Overflow (CVSS

    A critical heap buffer overflow in the SAIL image library's XWD codec arises from a mismatch between pixel depth and bits-per-pixel, enabling arbitrary...

  • SecurityApr 18, 2026

    CVE-2026-40493: SAIL PSD Codec Buffer Overflow via channels

    A critical out-of-bounds write in SAIL's PSD codec occurs when the pixel buffer is allocated using a raw header formula that doesn't account for actual...

  • SecurityApr 18, 2026

    CVE-2026-40494: SAIL TGA Codec RLE Decoder Asymmetric

    A critical heap write-past-end vulnerability in SAIL's TGA codec RLE decoder stems from an asymmetric bounds check that correctly validates run-packets...

  • SecurityApr 18, 2026

    CVE-2026-6518: WordPress CMP Plugin Arbitrary File Upload

    The CMP Coming Soon & Maintenance Plugin for WordPress contains a critical arbitrary file upload flaw that allows subscriber-level authenticated users to...

  • NewsApr 17, 2026

    CISA Flags Apache ActiveMQ Flaw as Actively Exploited in Attacks

    CISA has added a high-severity Apache ActiveMQ vulnerability to its Known Exploited Vulnerabilities catalog after confirming active exploitation in the...

  • SecurityApr 17, 2026

    CVE-2026-40322: SiYuan XSS via Mermaid innerHTML Injection

    SiYuan knowledge management versions 3.6.3 and below render Mermaid diagrams with loose security, allowing attacker-controlled javascript: URLs to execute...

  • NewsApr 11, 2026

    Orthanc DICOM Vulnerabilities Lead to Crashes, RCE

    Multiple vulnerabilities in the widely-used Orthanc open-source DICOM server expose medical imaging systems to denial-of-service, information disclosure,...

  • SecurityApr 10, 2026

    CVE-2025-57735: Apache Airflow JWT Token Not Invalidated on Logout

    A critical CVSS 9.1 vulnerability in Apache Airflow fails to invalidate JWT tokens upon user logout, allowing intercepted tokens to be reused for...

  • SecurityApr 10, 2026

    CVE-2026-34177: Canonical LXD Incomplete VM Restriction

    A critical CVSS 9.1 flaw in Canonical LXD versions 4.12 through 6.7 omits raw.apparmor and raw.qemu.conf from the VM low-level option denylist, allowing...

  • SecurityApr 10, 2026

    CVE-2026-34178: Canonical LXD Backup Import Path

    A critical CVSS 9.1 vulnerability in Canonical LXD before 6.8 allows authenticated attackers to bypass project restrictions during backup import. The...

  • SecurityApr 10, 2026

    CVE-2026-34578: OPNsense LDAP Injection Enables Auth Bypass

    A high-severity LDAP injection vulnerability in OPNsense's authentication connector allows unauthenticated attackers to bypass login controls by injecting...

  • SecurityApr 10, 2026

    CVE-2026-5977: TOTOLINK A7100RU Critical OS Command

    A critical OS command injection vulnerability (CVSS 9.8) in TOTOLINK A7100RU routers allows unauthenticated remote attackers to execute arbitrary system...

  • SecurityApr 10, 2026

    CVE-2026-5978: TOTOLINK A7100RU Critical OS Command

    A second critical OS command injection vulnerability (CVSS 9.8) in TOTOLINK A7100RU routers allows unauthenticated remote attackers to execute arbitrary...

  • SecurityApr 10, 2026

    CVE-2026-6004: SQL Injection in code-projects Simple IT

    A remotely exploitable SQL injection vulnerability has been disclosed in code-projects Simple IT Discussion Forum 1.0, affecting the /delete-category.php...

  • NewsApr 9, 2026

    Adobe Reader Zero-Day Exploited via Malicious PDFs Since

    Threat actors have been exploiting an unpatched zero-day in Adobe Reader since at least November 2025, using specially crafted PDFs to fingerprint victims...

  • NewsApr 9, 2026

    EngageLab SDK Flaw Exposed 50M Android Users, Including 30M

    A now-patched security vulnerability in the widely used EngageLab Android SDK allowed apps on the same device to bypass the Android security sandbox and...

  • NewsApr 9, 2026

    Hackers Exploiting Acrobat Reader Zero-Day Flaw Since

    Attackers have been silently exploiting an unpatched zero-day vulnerability in Adobe Acrobat Reader since at least November 2025, using malicious PDFs to...

  • SecurityApr 9, 2026

    CVE-2026-39888: PraisonAI Sandbox Escape Enables Remote

    A critical sandbox escape vulnerability in PraisonAI's multi-agent framework allows attackers to bypass the Python code execution sandbox, defeating the...

  • SecurityApr 9, 2026

    CVE-2026-39890: PraisonAI YAML Injection Achieves Remote

    A critical code injection vulnerability in PraisonAI's AgentService allows attackers to craft malicious YAML files using dangerous js-yaml tags such as...

  • NewsApr 8, 2026

    13-Year-Old Bug in ActiveMQ Lets Hackers Remotely Execute

    Security researchers discovered a remote code execution vulnerability in Apache ActiveMQ Classic that went undetected for 13 years, allowing attackers to...

  • SecurityApr 8, 2026

    CVE-2021-4473: Tianxin Behavior Management System

    A critical unauthenticated command injection vulnerability in the Tianxin Internet Behavior Management System's Reporter component allows attackers to...

  • SecurityApr 8, 2026

    CVE-2026-22679: Weaver E-cology 10.0 Unauthenticated Remote

    A critical unauthenticated RCE vulnerability in Weaver (Fanwei) E-cology 10.0 allows attackers to execute arbitrary commands by abusing an exposed Dubbo...

  • SecurityApr 8, 2026

    CVE-2026-39397: PayloadCMS Puck Plugin Access Control Bypass

    A critical access control bypass (CVSS 9.4) in the @delmaredigital/payload-puck PayloadCMS plugin exposes all /api/puck/* CRUD endpoints without...

  • SecurityApr 8, 2026

    CVE-2026-5731: Firefox and Thunderbird Critical Memory

    Mozilla has patched critical memory safety bugs in Firefox, Firefox ESR, and Thunderbird that showed evidence of memory corruption. Exploiting these flaws...

  • NewsApr 7, 2026

    Hackers Exploit Critical Flaw in Ninja Forms WordPress

    Attackers are actively exploiting a critical unauthenticated arbitrary file upload vulnerability in the Ninja Forms File Uploads premium add-on for...

  • NewsApr 7, 2026

    Medusa Ransomware Is Fast to Exploit Fresh Vulnerabilities

    SecurityWeek reports that the Medusa ransomware group has developed a dangerous capability: rapidly weaponizing newly disclosed vulnerabilities —...

  • SecurityApr 7, 2026

    CVE-2026-35392: Critical Path Traversal in goshs Go HTTP

    A critical CVSS 9.8 path traversal vulnerability in goshs, a SimpleHTTPServer written in Go, allows unauthenticated attackers to write arbitrary files via...

  • SecurityApr 7, 2026

    CVE-2026-5637: SQL Injection in projectworlds Car Rental

    A remotely exploitable SQL injection vulnerability (CVE-2026-5637) has been disclosed in projectworlds Car Rental System 1.0. The flaw exists in...

  • SecurityApr 6, 2026

    CVE-2019-25662: ResourceSpace 8.6 Unauthenticated SQL

    An unauthenticated SQL injection vulnerability in ResourceSpace 8.6 allows attackers to execute arbitrary database queries via the 'ref' parameter in...

  • SecurityApr 6, 2026

    CVE-2026-5554: SQL Injection in Concert Ticket Reservation

    A remotely exploitable SQL injection vulnerability has been disclosed in code-projects Concert Ticket Reservation System 1.0, affecting the...

  • SecurityApr 6, 2026

    CVE-2026-5555: SQL Injection in Concert Ticket Reservation

    An unauthenticated SQL injection vulnerability has been disclosed in code-projects Concert Ticket Reservation System 1.0, affecting the login.php file via...

  • SecurityApr 6, 2026

    CVE-2026-5575: SQL Injection in SourceCodester Record

    A remotely exploitable SQL injection vulnerability has been disclosed in SourceCodester/jkev Record Management System 1.0, affecting the Login page's...

  • NewsApr 5, 2026

    Fortinet Patches Actively Exploited CVE-2026-35616 in FortiClient EMS

    Fortinet has released emergency out-of-band patches for CVE-2026-35616, a critical pre-authentication API access bypass in FortiClient EMS that enables...

  • NewsApr 5, 2026

    Hackers Exploit React2Shell in Automated Credential Theft

    Threat actors are running a large-scale, automated campaign exploiting React2Shell (CVE-2025-55182) in vulnerable Next.js applications to steal...

  • NewsApr 5, 2026

    New FortiClient EMS Flaw Exploited in Attacks, Emergency

    Fortinet has released an emergency weekend security update for CVE-2026-35616, a critical pre-authentication API access bypass in FortiClient EMS that is...

  • SecurityApr 5, 2026

    CVE-2016-20052: Snews CMS 1.7 Unrestricted File Upload

    Snews CMS 1.7 contains a critical unrestricted file upload vulnerability allowing unauthenticated attackers to upload PHP webshells to the snews_files...

  • SecurityApr 5, 2026

    CVE-2026-5534 — SQL Injection in itsourcecode Online

    A high-severity SQL injection vulnerability in itsourcecode Online Enrollment System 1.0 allows remote unauthenticated attackers to manipulate the USERID...

  • SecurityApr 5, 2026

    CVE-2026-5540 — SQL Injection in code-projects Simple

    A high-severity SQL injection vulnerability in code-projects Simple Laundry System 1.0 allows remote unauthenticated attackers to manipulate the firstName...

  • SecurityApr 5, 2026

    CVE-2026-5551: SQL Injection in itsourcecode Free Hotel

    A remotely exploitable SQL injection vulnerability has been disclosed in itsourcecode Free Hotel Reservation System 1.0, affecting the login page's email...

  • SecurityApr 4, 2026

    CVE-2017-20237: Hirschmann HiVision Auth Bypass Enables

    A critical authentication bypass in Hirschmann Industrial HiVision versions prior to 06.0.07 and 07.0.03 allows unauthenticated remote attackers to...

  • SecurityApr 4, 2026

    CVE-2026-25197: IDOR Flaw Lets Authenticated Users Access

    A critical insecure direct object reference vulnerability allows authenticated users to pivot to any other user's profile by modifying an id parameter in...

  • SecurityApr 4, 2026

    CVE-2026-26477: DokuWiki media_upload_xhr() Denial of Service

    A high-severity denial-of-service vulnerability in DokuWiki v.2025-05-14b 'Librarian' allows remote attackers to crash the application by exploiting the...

  • SecurityApr 4, 2026

    CVE-2026-28766: Gardyn Smart Garden API Exposes All User

    A critical unauthenticated information disclosure vulnerability in the Gardyn smart garden platform exposes all registered user account information via a...

  • SecurityApr 4, 2026

    CVE-2026-3445: ProfilePress WordPress Plugin Allows

    A high-severity authorization flaw in the ProfilePress WordPress plugin (up to v4.16.11) lets unauthenticated or low-privilege users bypass membership...

  • SecurityApr 4, 2026

    CVE-2026-35560: Amazon Athena ODBC Driver Fails Certificate

    Improper certificate validation in Amazon Athena ODBC driver versions prior to 2.1.0.0 allows man-in-the-middle attackers to intercept authentication...

  • SecurityApr 4, 2026

    CVE-2026-4896: WCFM WooCommerce Plugin IDOR Allows

    A high-severity Insecure Direct Object Reference vulnerability in the WCFM Frontend Manager for WooCommerce plugin (up to v6.7.25) lets authenticated...

  • NewsApr 3, 2026

    In Other News: ChatGPT Data Leak, Android Rootkit, Water

    This week's security stories you may have missed: a ChatGPT conversation data leak, a new Android rootkit on Google Play, a municipal water facility taken...

  • SecurityApr 3, 2026

    CVE-2026-33615: Critical Unauthenticated SQL Injection in setinfo Endpoint

    A critical unauthenticated SQL injection vulnerability (CVSS 9.1) in the setinfo endpoint allows remote attackers to corrupt data and cause denial of...

  • NewsApr 2, 2026

    Critical Vulnerability in Claude Code Emerges Days After

    Adversa AI has discovered a critical vulnerability in Anthropic's Claude Code AI coding assistant, disclosed just days after Anthropic accidentally leaked...

  • NewsApr 2, 2026

    Hackers Exploit CVE-2025-55182 to Breach 766 Next.js Hosts

    A large-scale credential harvesting campaign has been observed exploiting the React2Shell vulnerability (CVE-2025-55182) as an initial infection vector,...

  • NewsApr 2, 2026

    New Progress ShareFile Flaws Can Be Chained in Pre-Auth RCE

    Two newly disclosed vulnerabilities in Progress ShareFile can be chained together to enable unauthenticated remote code execution and file exfiltration,...

  • NewsApr 2, 2026

    Over 14,000 F5 BIG-IP APM Instances Still Exposed to RCE

    Internet security watchdog Shadowserver has found over 14,000 BIG-IP APM instances exposed online amid ongoing attacks exploiting a critical-severity...

  • NewsApr 1, 2026

    Google Fixes Fourth Chrome Zero-Day Exploited in Attacks in 2026

    Google has patched the fourth Chrome zero-day vulnerability actively exploited in attacks this year, a use-after-free flaw in the Dawn graphics engine...

  • NewsApr 1, 2026

    Hackers Exploit TrueConf Zero-Day to Push Malicious

    Threat actors have weaponized an unpatched zero-day in TrueConf conference server software to execute arbitrary files on all connected endpoints,...

  • NewsApr 1, 2026

    New Chrome Zero-Day CVE-2026-5281 Under Active Exploitation

    Google has released a Chrome security update patching 21 vulnerabilities including a high-severity use-after-free zero-day in the Dawn graphics engine...

  • SecurityApr 1, 2026

    CVE-2026-5272: Chrome GPU Heap Buffer Overflow Enables

    A high-severity heap buffer overflow in Chrome's GPU component allows remote attackers to execute arbitrary code via a crafted HTML page. Affects all...

  • NewsMar 31, 2026

    CISA Orders Feds to Patch Actively Exploited Citrix Flaw by Thursday

    CISA has issued a mandatory patching directive ordering all U.S. federal agencies to apply Citrix NetScaler security updates by Thursday, March 5, 2026,...

  • NewsMar 31, 2026

    Claude AI Finds Vim and Emacs RCE Bugs That Trigger on File

    Anthropic's Claude AI assistant discovered remote code execution vulnerabilities in both Vim and GNU Emacs text editors using simple security research...

  • NewsMar 31, 2026

    F5 BIG-IP Vulnerability Reclassified from DoS to RCE Under

    CVE-2025-53521, initially disclosed as a high-severity denial-of-service flaw in F5 BIG-IP APM, has been reclassified as a remote code execution...

  • NewsMar 30, 2026

    Critical Citrix NetScaler Memory Flaw Actively Exploited in Attacks

    Hackers are actively exploiting a critical memory overread vulnerability tracked as CVE-2026-3055 in Citrix NetScaler ADC and NetScaler Gateway appliances...

  • NewsMar 30, 2026

    Critical Fortinet FortiClient EMS Flaw Now Exploited in Attacks

    Threat intelligence firm Defused confirms active in-the-wild exploitation of a critical vulnerability in Fortinet's FortiClient EMS platform....

  • NewsMar 30, 2026

    Hackers Now Exploit Critical F5 BIG-IP Flaw in Attacks

    F5 has reclassified a BIG-IP APM vulnerability from denial-of-service to critical remote code execution, warning that attackers are actively exploiting...

  • SecurityMar 30, 2026

    CVE-2026-32973: OpenClaw Exec Allowlist Bypass via Glob

    A critical CVSS 9.8 vulnerability in OpenClaw allows attackers to bypass the exec allowlist by exploiting improper glob pattern normalization where the ?...

  • SecurityMar 30, 2026

    CVE-2026-32975: OpenClaw Zalouser Weak Authorization via Mutable Group Display Names

    A critical CVSS 9.8 authorization bypass in OpenClaw's Zalouser allowlist mode matches mutable group display names instead of stable identifiers, letting...

  • SecurityMar 30, 2026

    CVE-2026-32987: OpenClaw Bootstrap Code Replay Enables

    A critical CVSS 9.8 vulnerability in OpenClaw allows attackers to replay a valid bootstrap setup code multiple times before approval, escalating device...

  • SecurityMar 30, 2026

    CVE-2026-5128: Steam Trader 2.1.1 Unauthenticated Sensitive

    A CVSS 10.0 critical vulnerability in steam-trader 2.1.1 exposes Steam account credentials, identity secrets, and shared secrets to unauthenticated remote...

  • NewsMar 29, 2026

    CISA: New Langflow Flaw Actively Exploited to Hijack AI

    CISA has added CVE-2026-33017, a critical unauthenticated remote code execution vulnerability in the Langflow AI framework, to its Known Exploited...

  • NewsMar 29, 2026

    File Read Flaw in Smart Slider Plugin Impacts 500K

    A vulnerability in the Smart Slider 3 WordPress plugin, active on more than 800,000 websites, allows subscriber-level users to read arbitrary files on the...

  • SecurityMar 29, 2026

    CVE-2016-20049: JAD Java Decompiler Stack-Based Buffer

    JAD 1.5.8e-1kali1 and prior contains a critical stack-based buffer overflow vulnerability allowing attackers to execute arbitrary code by supplying input...

  • SecurityMar 29, 2026

    CVE-2017-20225: TiEmu TI Calculator Emulator Stack Buffer

    TiEmu 2.08 and prior contains a critical stack-based buffer overflow vulnerability that allows attackers to execute arbitrary code by passing oversized...

  • SecurityMar 29, 2026

    CVE-2026-32922: OpenClaw Privilege Escalation via Token

    A critical CVSS 9.9 privilege escalation vulnerability in OpenClaw allows operators with limited pairing scope to mint tokens with unrestricted admin...

  • SecurityMar 29, 2026

    CVE-2026-32924: OpenClaw Authorization Bypass via Feishu

    A critical CVSS 9.8 authorization bypass in OpenClaw allows attackers to circumvent groupAllowFrom and requireMention protections in group chats by...

  • SecurityMar 29, 2026

    CVE-2026-5017: SQL Injection in code-projects Simple Food

    A remotely exploitable SQL injection vulnerability has been disclosed in code-projects Simple Food Order System 1.0, affecting the /all-tickets.php file...

  • SecurityMar 29, 2026

    CVE-2026-5018: SQL Injection in code-projects Simple Food

    A remotely exploitable SQL injection vulnerability exists in code-projects Simple Food Order System 1.0, where the Name parameter in register-router.php...

  • SecurityMar 29, 2026

    CVE-2026-5019: SQL Injection in code-projects Simple Food

    A SQL injection vulnerability has been disclosed in code-projects Simple Food Order System 1.0, where the Status parameter in all-orders.php enables...

  • SecurityMar 29, 2026

    CVE-2026-5033: SQL Injection in code-projects Accounting

    A remotely exploitable SQL injection vulnerability has been disclosed in code-projects Accounting System 1.0, where the cos_id parameter in...

  • SecurityMar 29, 2026

    CVE-2026-5034: SQL Injection in code-projects Accounting

    A remotely exploitable SQL injection vulnerability has been disclosed in code-projects Accounting System 1.0, allowing unauthenticated attackers to...

  • NewsMar 28, 2026

    CISA Adds CVE-2025-53521 to KEV After Active F5 BIG-IP APM

    CISA has added CVE-2025-53521, a critical vulnerability in F5 BIG-IP Access Policy Manager, to its Known Exploited Vulnerabilities catalog after...

  • NewsMar 28, 2026

    Citrix NetScaler CVE-2026-3055 (CVSS 9.3) Under Active

    Security researchers at Defused Cyber and watchTowr have detected active reconnaissance targeting CVE-2026-3055, a critical CVSS 9.3 memory overread flaw...

  • SecurityMar 28, 2026

    CVE-2025-12886: Oxygen Theme SSRF Allows Unauthenticated

    A Server-Side Request Forgery vulnerability in the Oxygen Theme plugin for WordPress (all versions up to 6.0.8) enables unauthenticated attackers to make...

  • SecurityMar 28, 2026

    CVE-2026-27856: Dovecot doveadm Timing Oracle Enables

    A timing oracle vulnerability in Dovecot's doveadm HTTP service allows unauthenticated remote attackers to recover configured credentials through...

  • NewsMar 26, 2026

    PolyShell Attacks Target 56% of All Vulnerable Magento

    Mass exploitation is underway against Magento 2 and Adobe Commerce installations using the 'PolyShell' polyglot file upload vulnerability, with attackers...

  • NewsMar 25, 2026

    PTC Warns of Imminent Threat from Critical Windchill

    PTC is warning customers of an imminent exploit threat against a critical deserialization vulnerability in Windchill and FlexPLM — CVE-2026-4681, CVSS...

  • NewsMar 22, 2026

    CISA Adds Apple DarkSword iOS Exploits, Craft CMS, and Laravel Livewire Flaws to KEV Catalog

    CISA orders federal agencies to patch five actively exploited vulnerabilities by April 3, including three Apple flaws linked to the DarkSword iOS exploit...

  • NewsMar 22, 2026

    Trivy Vulnerability Scanner Breached to Push Infostealer

    The Trivy open-source vulnerability scanner was compromised in a supply chain attack by the threat group TeamPCP, which hijacked 75 release tags and...

  • NewsMar 21, 2026

    Interlock Ransomware Exploited Cisco FMC Zero-Day for 36

    CVE-2026-20131, a maximum-severity CVSS 10.0 insecure deserialization flaw in Cisco Firepower Management Center, was exploited by Interlock ransomware as...

  • NewsMar 21, 2026

    Critical Langflow RCE Flaw Exploited Within 20 Hours of Disclosure

    CVE-2026-33017, a CVSS 9.3 unauthenticated remote code execution vulnerability in the Langflow AI platform, was weaponized by threat actors within 20...

  • NewsMar 21, 2026

    Marquis Fintech Breach Exposes 672,000 Banking Customers

    Plano-based fintech vendor Marquis disclosed that a ransomware attack exploiting a SonicWall firewall vulnerability compromised Social Security numbers,...

  • SecurityMar 21, 2026

    CVE-2025-43510: Apple Multiple Products Improper Locking

    Apple watchOS, iOS, iPadOS, macOS, visionOS, and tvOS contain an improper locking vulnerability allowing a malicious app to cause unexpected changes in...

  • SecurityMar 21, 2026

    CVE-2025-54068: Laravel Livewire Code Injection

    A critical code injection vulnerability in Laravel Livewire v3 allows unauthenticated remote attackers to execute arbitrary commands. Over 130,000...

  • SecurityMar 21, 2026

    CVE-2026-22172: OpenClaw Critical Authorization Bypass via WebSocket Scope Elevation

    A critical CVSS 9.9 authorization bypass in OpenClaw allows authenticated users to self-declare elevated scopes over WebSocket connections without...

  • NewsMar 20, 2026

    Oracle Pushes Emergency Fix for Critical Identity Manager

    Oracle has released an out-of-band security update to fix a critical unauthenticated remote code execution vulnerability in Oracle Identity Manager and...

  • SecurityMar 20, 2026

    CVE-2025-32432: Craft CMS Code Injection Vulnerability

    A critical code injection vulnerability in Craft CMS allows unauthenticated remote attackers to execute arbitrary code on affected servers. Added to...

  • NewsMar 19, 2026

    CISA Adds Zimbra XSS and SharePoint RCE to KEV; Cisco FMC

    CISA added actively exploited Zimbra Collaboration Suite and Microsoft SharePoint vulnerabilities to its Known Exploited Vulnerabilities catalog on March...

  • NewsMar 18, 2026

    Critical Unpatched GNU Telnetd Flaw (CVE-2026-32746)

    Researchers have disclosed a critical unauthenticated remote code execution vulnerability in the GNU InetUtils telnet daemon (telnetd). CVE-2026-32746...

  • NewsMar 18, 2026

    Interlock Ransomware Has Been Exploiting Cisco FMC Zero-Day

    The Interlock ransomware gang has been actively exploiting a CVSS 10.0 insecure deserialization flaw in Cisco Secure Firewall Management Center since late...

  • SecurityMar 18, 2026

    CVE-2026-25534: Spinnaker SSRF via URL Validation Bypass

    A critical SSRF vulnerability (CVSS 9.1) in Spinnaker's clouddriver and orca components bypasses the previous CVE-2025-61916 URL validation patch through...

  • SecurityMar 18, 2026

    CVE-2026-25769: Wazuh Critical RCE via Insecure

    A critical remote code execution vulnerability (CVSS 9.1) in Wazuh versions 4.0.0–4.14.2 allows an attacker with access to a worker node to achieve root...

  • SecurityMar 18, 2026

    CVE-2026-25770: Wazuh Privilege Escalation to Root via Cluster Protocol File Write

    A critical privilege escalation vulnerability (CVSS 9.1) in Wazuh versions 3.9.0–4.14.2 allows authenticated cluster nodes to overwrite the manager...

  • SecurityMar 18, 2026

    CVE-2026-3564: ConnectWise ScreenConnect Auth Bypass via Server Cryptographic Material

    A critical authentication bypass vulnerability (CVSS 9.0) in ConnectWise ScreenConnect versions prior to 26.1 allows an actor with access to server-level...

  • SecurityMar 17, 2026

    CVE-2015-20118: Stored XSS in RealtyScript 4.0.2 Admin

    A stored cross-site scripting vulnerability in RealtyScript 4.0.2 allows attackers to inject malicious JavaScript via the location_name parameter in the...

  • SecurityMar 17, 2026

    CVE-2025-62319: Critical SQL Injection in HCL Unica (CVSS

    A critical unauthenticated Boolean-based SQL injection vulnerability (CVSS 9.8) has been disclosed in HCL Unica versions 25.1.1 and below, allowing remote...

  • NewsMar 16, 2026

    CISA Adds Wing FTP Server Flaw to KEV as RCE Chain Exploits

    CISA added CVE-2025-47813 to its Known Exploited Vulnerabilities catalog on March 16, warning that the medium-severity path disclosure flaw is being...

  • SecurityMar 16, 2026

    CVE-2015-20115: RealtyScript 4.0.2 Stored XSS via File

    CVE-2015-20115 is a stored cross-site scripting vulnerability in RealtyScript 4.0.2 that allows authenticated attackers to upload malicious script files...

  • SecurityMar 16, 2026

    CVE-2016-20024: ZKTeco ZKTime.Net Insecure File Permissions

    ZKTeco ZKTime.Net 3.0.1.6 ships with world-writable directory permissions on its installation folder, allowing any local unprivileged user to replace...

  • SecurityMar 16, 2026

    CVE-2016-20026: ZKTeco ZKBioSecurity 3.0 Hardcoded Tomcat

    ZKTeco ZKBioSecurity 3.0 ships a bundled Apache Tomcat server with hardcoded credentials stored in tomcat-users.xml, granting unauthenticated attackers...

  • SecurityMar 16, 2026

    CVE-2016-20030: ZKTeco ZKBioSecurity 3.0 Username

    ZKTeco ZKBioSecurity 3.0 allows unauthenticated attackers to enumerate valid usernames by submitting partial character strings to the...

  • SecurityMar 16, 2026

    CVE-2025-47813: Wing FTP Server Path Disclosure Enables RCE

    CISA has added CVE-2025-47813, a medium-severity information disclosure flaw in Wing FTP Server, to its KEV catalog after confirming active exploitation...

  • NewsMar 12, 2026

    CISA Flags Actively Exploited n8n RCE Bug as 24,700

    CISA added CVE-2025-68613 — a CVSS 9.9 remote code execution flaw in n8n's workflow expression evaluator — to its Known Exploited Vulnerabilities catalog...

  • NewsMar 12, 2026

    CISA Orders Federal Agencies to Patch n8n RCE Flaw

    CISA mandated all federal civilian agencies patch CVE-2025-68613, a CVSS 9.9 remote code execution flaw in the n8n workflow automation platform, after...

  • SecurityMar 10, 2026

    CVE-2026-3038: FreeBSD Kernel Stack Buffer Overflow in Routing Sockets

    A high-severity stack buffer overflow vulnerability in FreeBSD's routing socket subsystem allows an unprivileged local attacker to trigger a kernel panic,...

  • SecurityMar 9, 2026

    CVE-2026-3730: SQL Injection in itsourcecode Free Hotel

    A remotely exploitable SQL injection vulnerability has been disclosed in itsourcecode Free Hotel Reservation System 1.0, affecting the amenities admin...

  • SecurityMar 9, 2026

    CVE-2026-3734: Improper Authorization in SourceCodester

    A remotely exploitable improper authorization vulnerability has been disclosed in SourceCodester Client Database Management System 1.0, allowing...

  • SecurityMar 9, 2026

    CVE-2026-3740: SQL Injection in itsourcecode University

    A high-severity SQL injection vulnerability has been disclosed in itsourcecode University Management System 1.0, allowing remote attackers to execute...

  • SecurityMar 9, 2026

    CVE-2026-3746: SQL Injection in SourceCodester Simple

    A remotely exploitable SQL injection vulnerability has been disclosed in SourceCodester Simple Responsive Tourism Website 1.0, allowing attackers to...

  • SecurityMar 8, 2026

    CVE-2026-29067: ZITADEL Password Reset Poisoned by Host Header Injection

    A high-severity host header injection vulnerability in ZITADEL's login V2 password reset flow allows attackers to redirect reset links to...

  • SecurityMar 8, 2026

    CVE-2026-29192: ZITADEL Stored XSS via Default Redirect URI

    A stored cross-site scripting vulnerability in ZITADEL's login V2 interface allows organization administrators to inject malicious JavaScript via a...

  • SecurityMar 7, 2026

    CVE-2018-25165: SQL Injection Disclosed in Galaxy Forces MMORPG

    A SQL injection vulnerability in Galaxy Forces MMORPG version 0.5.8 has been formally catalogued by NVD, enabling authenticated attackers to extract...

  • SecurityMar 7, 2026

    CVE-2018-25169: Denial of Service Vulnerability Catalogued

    A denial of service vulnerability in AMPPS 2.7, a local web server stack for developers, has been formally assigned CVE-2018-25169 with a CVSS score of...

  • SecurityMar 7, 2026

    CVE-2026-3589: WooCommerce CSRF Flaw Allows Unauthenticated

    A cross-site request forgery vulnerability in WooCommerce versions 5.4.0 through 10.5.2 allows attackers to abuse the Store API's batch endpoint to...

  • SecurityMar 4, 2026

    CISA Issues Emergency Directive as Cisco SD-WAN Zero-Day

    A maximum-severity authentication bypass in Cisco Catalyst SD-WAN (CVE-2026-20127, CVSS 10.0) has been actively exploited by threat actor UAT-8616 since...

  • SecurityMar 4, 2026

    CVE-2026-28775: Unauthenticated Root RCE in IDC SFX

    A critical unauthenticated RCE vulnerability in International Datacasting Corporation's SFX Series satellite receivers allows attackers to execute...

  • SecurityMar 4, 2026

    Mail2Shell: Zero-Click RCE in FreeScout Helpdesk

    A maximum-severity zero-click vulnerability dubbed Mail2Shell allows unauthenticated attackers to compromise FreeScout mail servers by simply sending a...

  • SecurityMar 4, 2026

    CISA Adds Actively Exploited VMware Aria Operations RCE

    CISA has added CVE-2026-22719, a high-severity command injection vulnerability in VMware Aria Operations allowing unauthenticated remote code execution,...

  • NewsMar 3, 2026

    Android March 2026 Security Update Patches 129

    Google's March 2026 Android security bulletin addresses 129 vulnerabilities, including CVE-2026-21385 — an actively exploited zero-day in a Qualcomm...

  • SecurityFeb 20, 2026

    Microsoft February 2026 Patch Tuesday Fixes Six Actively

    Microsoft's February 2026 Patch Tuesday addresses roughly 60 vulnerabilities including six actively exploited zero-days across Windows, Office, and Azure...

  • NewsFeb 8, 2026

    Tirith: New Open-Source Tool Blocks Homoglyph Attacks

    A new cross-platform tool called Tirith hooks into terminal shells to detect and block Unicode homoglyph attacks, pipe-to-shell exploits, and supply chain...

  • NewsFeb 6, 2026

    DKnife: China-Linked AitM Framework Hijacks Router Traffic

    Cisco Talos uncovers a seven-component Linux framework called DKnife that compromises routers to intercept credentials, replace downloads with trojans,...