In a critical advisory issued by the Cybersecurity and Infrastructure Security Agency (CISA), newly discovered vulnerabilities in...
Vulnerability Report
The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has issued a warning for organizations and government entities:...
A critical vulnerability—CVE-2025-54594 (CVSS 9.1)—has been identified in the React Native Bottom Tabs project, exposing the repository...
Adobe has released urgent patches for two critical vulnerabilities affecting Adobe Experience Manager (AEM) Forms on JEE,...
The Imperva Threat Research team sounded the alarm on a coordinated exploitation campaign targeting outdated instances of...
Rockwell Automation has issued a security advisory addressing three memory abuse vulnerabilities in its Arena Simulation software,...
Trend Micro has issued an urgent advisory for two critical command injection vulnerabilities affecting its Apex One...
If you are using the iOS version of Proton Authenticator, it is imperative that you visit the...
A critical SQL injection vulnerability has been discovered in ADOdb, a widely used PHP database abstraction library....
Google has released the August 2025 Android Security Bulletin, addressing multiple critical and high-severity vulnerabilities affecting Android...
NVIDIA has released urgent software updates to address a set of critical vulnerabilities discovered in its popular...
Huntress has issued a critical alert about what appears to be a zero-day vulnerability in SonicWall Secure...
MediaTek, one of the world’s leading chipset manufacturers, has published its latest Product Security Bulletin, revealing several...
A study from the New Jersey Institute of Technology has exposed a massive web of hidden vulnerabilities...
A recent vulnerability note issued by CERT/CC disclosured three critical security flaws in Partner Software’s flagship platforms—Partner...
A critical vulnerability has been uncovered in the @nestjs/devtools-integration package—a component of the popular NestJS framework for...
Cursor, an AI-powered code editor that promises to “understand your codebase and help you code faster,” has...
The Squid Project has issued an urgent advisory for CVE-2025-54574 (CVSS 9.3), a heap buffer overflow bug...
In a recently disclosed advisory, HashiCorp has patched a critical vulnerability—CVE-2025-6000—in Vault, its industry-standard secrets management solution....
The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has issued an urgent advisory about a critical vulnerability—CVE-2025-8286—impacting...
A critical vulnerability in the popular OAuth2-Proxy open-source authentication tool has been discovered, allowing attackers to bypass...
Critical Flaw in Wix’s New AI Platform Base44 Allowed Unauthorized Access to Private Enterprise Apps
Critical Flaw in Wix’s New AI Platform Base44 Allowed Unauthorized Access to Private Enterprise Apps
In a significant finding that highlights the risks associated with emerging AI development platforms, Wiz Research has...