A critical security vulnerability affecting Oracle E-Business Suite is being actively exploited in the wild, raising … Critical Oracle E-Business Suite Vulnerability Under Active ExploitationRead more
Vulnerability
Cordyceps CI/CD Vulnerability Exposes Microsoft, Google, and Other Major Open-Source Repositories
Cybersecurity researchers have identified a dangerous new class of CI/CD (Continuous Integration and Continuous Deployment) workflow … Cordyceps CI/CD Vulnerability Exposes Microsoft, Google, and Other Major Open-Source RepositoriesRead more
SquidBleed Vulnerability Leaks HTTP Credentials Through Shared Squid Proxies
Security researchers have disclosed a new vulnerability in the Squid web proxy that could allow authorized … SquidBleed Vulnerability Leaks HTTP Credentials Through Shared Squid ProxiesRead more
Gravity SMTP Vulnerability Actively Exploited: 100,000+ WordPress Sites at Risk
A recently patched security flaw in the popular Gravity SMTP WordPress plugin is actively being exploited … Gravity SMTP Vulnerability Actively Exploited: 100,000+ WordPress Sites at RiskRead more
F5 Fixes Two Critical NGINX Vulnerabilities With Potential Remote Code Execution Risk
F5 has released urgent security updates to address two critical vulnerabilities in NGINX Open Source that … F5 Fixes Two Critical NGINX Vulnerabilities With Potential Remote Code Execution RiskRead more
CISA Warns of Actively Exploited Joomla JCE Vulnerability as WordPress Attacks Hit 1M+ Sites
The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has added a critical vulnerability affecting the Joomla … CISA Warns of Actively Exploited Joomla JCE Vulnerability as WordPress Attacks Hit 1M+ SitesRead more
Google Vertex AI SDK Flaw Allowed Attackers to Hijack AI Model Uploads
Security researchers have disclosed a serious vulnerability in Google’s Vertex AI SDK for Python that could … Google Vertex AI SDK Flaw Allowed Attackers to Hijack AI Model UploadsRead more
Palo Alto Networks Confirms Active Exploitation of PAN-OS VPN Vulnerability CVE-2026-0257
Palo Alto Networks has confirmed that threat actors are actively exploiting a recently disclosed authentication bypass … Palo Alto Networks Confirms Active Exploitation of PAN-OS VPN Vulnerability CVE-2026-0257Read more
Critical Splunk Enterprise Vulnerability (CVE-2026-20253) Enables Unauthenticated Remote Code Execution
Splunk has released urgent security updates to address a critical vulnerability in Splunk Enterprise that could … Critical Splunk Enterprise Vulnerability (CVE-2026-20253) Enables Unauthenticated Remote Code ExecutionRead more
Unpatched Langflow Vulnerability Exploited in the Wild, Exposing 7,000+ AI Application Instances
Cybersecurity researchers have warned that a high-severity vulnerability in Langflow, a popular open-source platform used to … Unpatched Langflow Vulnerability Exploited in the Wild, Exposing 7,000+ AI Application InstancesRead more
