FileZen CVE-2026-25108 Actively Exploited Command Injection Vulnerability
CISA has officially confirmed that a serious security flaw in FileZen, a popular file transfer product, is being actively exploited by […]
Vulnerability
CVE-2025-40551: SolarWinds Web Help Desk Vulnerability Actively Exploited
CISA has added a critical SolarWinds Web Help Desk vulnerability to its Known Exploited Vulnerabilities (KEV) Catalog, confirming that the
SmarterMail Servers Exposed to Remote Code Execution: CVE-2026-24423
SmarterTools has released urgent security updates for its SmarterMail email server software, fixing multiple serious vulnerabilities, including a critical unauthenticated
CVE-2025-56005: Python PLY Bug Allows Remote Code Execution
A critical remote code execution (RCE) vulnerability has been discovered in Python PLY (Python Lex-Yacc), a well-known parsing library that
CVE-2026-23550: WordPress Plugin Under Active Exploitation
A critical WordPress security vulnerability has been discovered in the popular Modular DS plugin, and it is already being actively
Microsoft Fixes 114 Windows Bugs: January 2026 Patch Tuesday
Microsoft has released its first Patch Tuesday update of 2026, fixing a total of 114 security vulnerabilities in Windows. Importantly,
Cisco ISE Vulnerability With Public PoC: CVE-2026-20029
Cisco has released security updates to fix a medium-severity vulnerability in its Identity Services Engine (Cisco ISE) and ISE Passive
European Space Agency Hit by Cyber Breach & 200GB Data Leak
The European Space Agency (ESA) has confirmed that it is investigating a cybersecurity incident after reports emerged that hackers gained
Apache NuttX RTOS: Filesystem Vulnerabilities Found and Fixed
The Apache Software Foundation has released important security updates for Apache NuttX RTOS, a widely used real-time operating system designed
Critical LangChain Vulnerability (CVE-2025-68664) Puts LLM Apps at Risk
A critical security vulnerability in LangChain Core has been discovered that could allow attackers to steal sensitive secrets, manipulate large
Severe MongoDB RCE Vulnerability Tracked as CVE-2025-14847
MongoDB has issued an urgent security warning asking administrators and IT teams to immediately patch a newly discovered, high-severity vulnerability
CVE-2025-68613: Critical n8n Bug Enables Arbitrary Code Execution
A critical security flaw in n8n, a popular workflow automation platform, has been disclosed, putting thousands of organizations at serious
HPE OneView Hit by CVE-2025-37164 With CVSS 10.0 Severity
Hewlett Packard Enterprise (HPE) has fixed a critical security vulnerability in its HPE OneView software that could allow attackers to
Attackers Target Fortinet FortiGate Via SAML SSO Authentication Bypass
Fortinet FortiGate devices are currently under active cyberattacks, with threat actors exploiting newly disclosed critical vulnerabilities related to SAML Single
Microsoft Patch Tuesday: 56 Bugs Fixed, Including Two Zero-Days
Microsoft has released its final security update of 2025, delivering patches for 56 security flaws across the Windows ecosystem. This