SolarWinds Patches Critical CVE-2025-26399 Remote Code Execution Flaw
SolarWinds has released an urgent hotfix to address a critical security vulnerability in its Web Help Desk software. The flaw, […]
Web Security
Google Patches Chrome Zero-Day CVE-2025-10585 Exploited in Active Attacks
Google has released an update for its Chrome browser to patch four security flaws, including a critical zero-day vulnerability already
Plex Data Breach 2025: Users Told to Reset Passwords After Hacking Attack
Plex, one of the most popular media streaming platforms, has issued a warning to its global users after discovering a
CVE-2025-49870: WordPress Paid Membership Plugin Users at Risk from SQL Injection
A new high-risk security flaw has been discovered in the WordPress Paid Membership Subscriptions plugin, a tool widely used to
PaperCut Exploited by Hackers Using Remote Code Execution: CISA
The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has issued a new warning about a serious vulnerability in PaperCut NG/MF
CVE-2025-24000: Post SMTP Vulnerability & Admin Takeover of WordPress Sites
A security vulnerability in the popular Post SMTP plugin for WordPress has left over 200,000 websites exposed to potential hijacking
CVE-2025-53770: SharePoint Zero-Day Exploited in Ongoing Attacks, Patch Released
Microsoft has released urgent security patches for two critical vulnerabilities in SharePoint Server, one of which is currently being actively
CVE-2025-6558: Google Urgently Fixes Actively Exploited Chrome Zero-Day
Google has released a critical security update for its Chrome browser to fix a serious vulnerability known as CVE-2025-6558, which
CVE-2025-6463: Critical Forminator Plugin Flaw Puts 600,000 WordPress Sites at Risk
A serious vulnerability in the popular Forminator plugin for WordPress has exposed over 600,000 websites to the risk of complete
CVE-2025-6554: Google Patches Actively Exploited Chrome Zero-Day
Google has released a critical security update to patch a zero-day vulnerability in its Chrome browser, tracked as CVE-2025-6554. This
Hackers Breach 70+ Microsoft Exchange Servers: Outlook Login Pages Infected
Hackers are exploiting vulnerable Microsoft Exchange servers with stealthy keyloggers to steal login credentials, compromising over 70 systems in at
DevOps Alert: Grafana Exploit Exposes Over 46,000 Servers to Account Takeover
A newly discovered vulnerability in Grafana, the popular open-source analytics and monitoring tool, is putting thousands of organizations at serious
CVE-2025-5419: Critical Zero-Day Chrome Flaw Under Active Attack
Google has released an emergency security update for its Chrome browser to fix a high-risk zero-day vulnerability that is already
CVE-2025-47577: Critical File Upload Vulnerability Found in Wishlist WordPress Plugin
A severe flaw has been discovered in the TI WooCommerce Wishlist plugin, which is used by more than 100,000 WordPress
Fake VPN and Browser Installers Drop Winos 4.0 Malware in Stealth Attacks
Researchers from Rapid7 have revealed an ongoing malware campaign that tricks users into installing Winos 4.0, a powerful and stealthy