Splunk has released a series of security advisories addressing six vulnerabilities in Splunk Enterprise and Splunk Cloud...
XSS
Two vulnerabilities were found in WordPress Core, affecting all versions up to and including 6.8.2. Both flaws...
DNN Software has issued a security advisory warning of a critical stored cross-site scripting (XSS) vulnerability in...
The CERT Coordination Center (CERT/CC) has issued a vulnerability note warning of a cross-site scripting (XSS) flaw...
The Astro project has disclosed a high-severity vulnerability in its Cloudflare adapter, tracked as CVE-2025-58179 (CVSS 7.2)....
The FreePBX project has issued an important security advisory addressing two vulnerabilities that pose significant risks to...
GitLab has announced the release of versions 18.2.2, 18.1.4, and 18.0.6 for both the Community Edition (CE)...
A recent vulnerability note issued by CERT/CC disclosured three critical security flaws in Partner Software’s flagship platforms—Partner...
SonicWall has released a security updates for its Secure Mobile Access (SMA) 100 series appliances, addressing three...
GitLab has released security updates for Community Edition (CE) and Enterprise Edition (EE), fixing multiple vulnerabilities—including high-severity...
Grafana Labs has released important security patches for multiple versions of its observability platform, addressing two significant...
Security researcher Vagebondcur has uncovered four vulnerabilities in the Nexxt Solutions NCM-X1800 mesh router, including unauthenticated telnet...
JScript, a dynamic scripting language developed by Microsoft and compatible with JavaScript, has been embedded within Windows...
GitLab has released security updates for its Community Edition (CE) and Enterprise Edition (EE), addressing multiple vulnerabilities...
Zoom has rolled out a security update patching six newly disclosed vulnerabilities affecting its Workplace, Rooms, and...
The Frappe Framework, a widely used full-stack application platform that powers ERPNext, has been found vulnerable to...
In its latest vulnerability disclosure, JPCERT/CC has sounded the alarm on multiple critical security flaws affecting a...
The open-source Git service Gogs, known for its simplicity and ease of deployment, disclosures two severe security...
Two high-severity vulnerabilities have been disclosed in widely used Ubiquiti software components—UCRM Client Signup Plugin and the...
GitLab has issued urgent security updates for its Community Edition (CE) and Enterprise Edition (EE), addressing a...
The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has added two new vulnerabilities to its Known Exploited...
CERT Polska has sounded the alarm after uncovering a spear phishing campaign that targeted Polish organizations using...