CVE-2024-38197: Microsoft Teams Bug Allows Message Spoofing and Hidden Edits
Microsoft Teams, one of the world’s most widely used collaboration platforms, has recently come under scrutiny after cybersecurity researchers discovered […]
Web Security
CVE-2025-5397: Hackers Exploit Jobmonster WordPress Theme to Gain Admin Access
A high-risk security flaw has been discovered in the Jobmonster Job Board WordPress Theme, one of the most popular themes
Hackers Exploit YouTube: Massive Ghost Network Spreads Malware Through Popular Videos
A massive cyber campaign called the “YouTube Ghost Network” has been exposed, revealing how cybercriminals used over 3,000 YouTube videos
Oracle E-Business Suite Bug CVE-2025-61884 Allows Data Theft Without Login
Oracle has issued a security alert about a newly discovered vulnerability in its widely used Oracle E-Business Suite (EBS). The
CVE-2025-11371 Under Attack: Gladinet and TrioFox Servers Exploited in the Wild
Cybersecurity firm Huntress has issued a critical security warning after detecting active exploitation of a zero-day vulnerability affecting Gladinet CentreStack
SolarWinds Patches Critical CVE-2025-26399 Remote Code Execution Flaw
SolarWinds has released an urgent hotfix to address a critical security vulnerability in its Web Help Desk software. The flaw,
Google Patches Chrome Zero-Day CVE-2025-10585 Exploited in Active Attacks
Google has released an update for its Chrome browser to patch four security flaws, including a critical zero-day vulnerability already
Plex Data Breach 2025: Users Told to Reset Passwords After Hacking Attack
Plex, one of the most popular media streaming platforms, has issued a warning to its global users after discovering a
CVE-2025-49870: WordPress Paid Membership Plugin Users at Risk from SQL Injection
A new high-risk security flaw has been discovered in the WordPress Paid Membership Subscriptions plugin, a tool widely used to
PaperCut Exploited by Hackers Using Remote Code Execution: CISA
The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has issued a new warning about a serious vulnerability in PaperCut NG/MF
CVE-2025-24000: Post SMTP Vulnerability & Admin Takeover of WordPress Sites
A security vulnerability in the popular Post SMTP plugin for WordPress has left over 200,000 websites exposed to potential hijacking
CVE-2025-53770: SharePoint Zero-Day Exploited in Ongoing Attacks, Patch Released
Microsoft has released urgent security patches for two critical vulnerabilities in SharePoint Server, one of which is currently being actively
CVE-2025-6558: Google Urgently Fixes Actively Exploited Chrome Zero-Day
Google has released a critical security update for its Chrome browser to fix a serious vulnerability known as CVE-2025-6558, which
CVE-2025-6463: Critical Forminator Plugin Flaw Puts 600,000 WordPress Sites at Risk
A serious vulnerability in the popular Forminator plugin for WordPress has exposed over 600,000 websites to the risk of complete
CVE-2025-6554: Google Patches Actively Exploited Chrome Zero-Day
Google has released a critical security update to patch a zero-day vulnerability in its Chrome browser, tracked as CVE-2025-6554. This