A critical Apache Shiro LDAP Injection vulnerability has recently emerged. Specifically, security researchers identified a severe...
Vulnerability Report
Google has shipped a major Chrome security update, and it closes 33 distinct vulnerabilities. The Stable channel...
A critical Fortra BoKS vulnerability has put privileged access servers at risk across Linux and UNIX fleets....
Security researchers have disclosed a serious Yarbo robot vulnerability that could hand attackers control over thousands of...
A critical Cloud Foundry UAA vulnerability has emerged, and it lets attackers slip past SAML logins entirely....
NVIDIA has issued an urgent fix for its NeMo Framework, the popular open-source toolkit for building generative...
A fresh MongoDB Server vulnerability cluster has surfaced, and it puts widely used document databases at real...
A dangerous ShapedPlugin supply chain attack is currently threatening WordPress websites. Security researchers at Wordfence discovered this...
The maintainers of Tornado have fixed three Tornado security vulnerabilities in a single update. The popular Python...
A critical Vitest RCE vulnerability has put a hugely popular testing framework in the spotlight. Tracked as...
A critical Haskell TLS vulnerability is putting secure connections at risk across finance and enterprise systems. CERT/CC...
CISA has disclosed seven serious Naxclow IoT vulnerabilities affecting popular smart doorbells and cameras. Together, these flaws...
FreeSWITCH, the popular open-source telecom stack, has just patched two critical security flaws. Both are pre-authentication heap...
A critical phpBB authentication bypass is putting countless online communities at risk right now. The flaw, tracked...
A LiteSpeed cPanel privilege escalation flaw is being exploited in the wild right now. Tracked as CVE-2026-54420,...
A Cisco SD-WAN vulnerability is now under active attack, and Cisco is urging customers to patch fast....
Attackers are already abusing a critical Jenkins RCE vulnerability in the wild. Tracked as CVE-2026-53435, the flaw...
System administrators must immediately patch two critical FreePBX RCE vulnerabilities that expose voice over IP (VoIP) telephony...
A critical security flaw has hit the open-source defensive security community. Recently, full technical details and functional...
A Patched Flaw That Refuses to Die Nearly a year after a fix shipped, the WinRAR vulnerability...
Security researchers recently uncovered a critical risk affecting multiple operating systems. Specifically, outdated and vulnerable UEFI shim...
A serious CodeIgniter vulnerability has put many PHP web applications at risk. Tracked as CVE-2026-48062, the flaw...