OpenPLC ScadaBR XSS Exploit CVE-2021-26829: CISA Issues Warning
CISA has added a newly confirmed, actively exploited vulnerability in OpenPLC ScadaBR to its Known Exploited Vulnerabilities (KEV) catalog. This […]
Vulnerability
ASUS Fixes Critical AiCloud Router Flaw CVE-2025-59366
ASUS has released an urgent security update to fix nine major vulnerabilities, including a critical authentication bypass flaw that affects
Grafana Fixes High-Risk CVE-2025-41115 Vulnerability in SCIM Module
Grafana has released an urgent set of security patches to fix a critical vulnerability rated CVSS 10.0, the highest severity
Microsoft Issues Urgent Fix for Actively Exploited Windows Zero-Day
Microsoft has released its latest Patch Tuesday update, addressing 63 security vulnerabilities across its products. Among them is a Windows
CVE-2025-12480: Triofox Users Warned of Active Exploits
Cybersecurity researchers have uncovered an active exploitation campaign targeting a critical vulnerability in Gladinet’s Triofox, a popular enterprise file-sharing and
CVE-2024-38197: Microsoft Teams Bug Allows Message Spoofing and Hidden Edits
Microsoft Teams, one of the world’s most widely used collaboration platforms, has recently come under scrutiny after cybersecurity researchers discovered
CVE-2025-5397: Hackers Exploit Jobmonster WordPress Theme to Gain Admin Access
A high-risk security flaw has been discovered in the Jobmonster Job Board WordPress Theme, one of the most popular themes
CISA Warns of Active Exploits Targeting Dassault and XWiki Systems
Cybersecurity agencies have issued warning about active exploitation of multiple severe vulnerabilities in Dassault Systèmes DELMIA Apriso and XWiki. The
CISA Warns of Actively Exploited Adobe AEM Vulnerability (CVE-2025-54253)
CISA has issued a serious warning about a newly discovered security flaw in Adobe Experience Manager (AEM). The vulnerability, tracked
Oracle E-Business Suite Bug CVE-2025-61884 Allows Data Theft Without Login
Oracle has issued a security alert about a newly discovered vulnerability in its widely used Oracle E-Business Suite (EBS). The
Meteobridge Security Flaw CVE-2025-4008 Under Active Attack, Patch Now
CISA has flagged a new high-severity vulnerability in Meteobridge devices that is currently being exploited in real-world attacks. The flaw,
Cisco Fixes SNMP Vulnerability CVE-2025-20352 Affecting IOS XE and Meraki Switches
Cisco has issued an urgent security warning about a serious vulnerability in IOS and IOS XE software that attackers are
SolarWinds Patches Critical CVE-2025-26399 Remote Code Execution Flaw
SolarWinds has released an urgent hotfix to address a critical security vulnerability in its Web Help Desk software. The flaw,
Fortra Patches Critical CVSS 10.0 Flaw in GoAnywhere MFT (CVE-2025-10035)
Fortra, the company behind the widely used GoAnywhere Managed File Transfer (MFT) software, has released a critical security patch to
CVE-2025-43300: Apple Issues Backported Fix After Spyware Exploitation
Apple has backported fixes for a major vulnerability that was actively exploited in sophisticated spyware attacks. The flaw, identified as