A critical-severity vulnerability in the popular Alone – Charity Multipurpose Non-profit WordPress Theme has left thousands of...
Vulnerability Report
The CERT Coordination Center (CERT/CC) has issued a vulnerability note concerning a flaw in the TP-Link Archer...
BeyondTrust, a global leader in intelligent identity and access security, has issued two advisories addressing two local...
SonicWall, a prominent provider of cybersecurity solutions, has disclosed a critical vulnerability—CVE-2025-40600—affecting the SSL VPN interface of...
Google has announced a Stable Channel update for Chrome Desktop, pushing version 138.0.7204.183/.184 to users on Windows...
Microsoft Threat Intelligence has unveiled a critical macOS vulnerability that exploits Spotlight plugins to bypass the system’s...
A newly discovered vulnerability in Python’s tarfile module, identified as CVE-2025-8194, threatens to hang applications that process...
A newly disclosed critical vulnerability in Node-SAML, a widely used SAML 2.0 authentication provider for Node.js, could...
A critical command injection vulnerability has been disclosed in the widely used GitHub Action tj-actions/branch-names, affecting over...
Salesforce has released a security advisory addressing eight serious vulnerabilities affecting multiple versions of Tableau Server, the...
The CERT Coordination Center (CERT/CC) has issued a Vulnerability Note detailing a critical privilege escalation flaw affecting...
A critical vulnerability has been discovered in the popular open-source Node.js library Node-SAML, used to implement SAML...
NVIDIA has released software security updates for its GPU Display Drivers and vGPU software across Windows, Linux,...
Axios, the popular promise-based HTTP client for Node.js and browsers, has been found vulnerable through a critical...
A vulnerability in the popular Post SMTP WordPress plugin—installed on over 400,000 websites—has been disclosed by Patchstack,...
High-Severity SQL Injection (CVE-2025-52914) in Mitel MiCollab Allows Data Access, Command Execution
High-Severity SQL Injection (CVE-2025-52914) in Mitel MiCollab Allows Data Access, Command Execution
Mitel has released a security advisory addressing a high-severity SQL injection vulnerability in its MiCollab platform—an issue...
Amazon Web Services (AWS) has released a security patch for a high-severity local privilege escalation vulnerability (CVE-2025-8069)...
SonicWall has released a security updates for its Secure Mobile Access (SMA) 100 series appliances, addressing three...
In a recent security advisory coordinated by CERT@VDE, Weidmueller has disclosed multiple critical vulnerabilities affecting its IE-SR-2TX...
TP-Link has issued a security advisory warning users of two critical operating system command injection vulnerabilities affecting...
Synology has issued a security update to patch three significant vulnerabilities affecting the BeeDrive desktop application for...
A newly disclosed vulnerability in ASUSTOR’s Windows-based applications—ASUSTOR Backup Plan (ABP) and ASUSTOR EZSync (AES)—could allow local...