CVE News

SAP Patches Critical Vulnerabilities in Commerce, NetWeaver, and BusinessObjects Components

CVE News

SAP Patches Critical Vulnerabilities in Commerce, NetWeaver, and BusinessObjects Components

SAP has released security updates addressing multiple vulnerabilities across its software portfolio, including SAP Commerce, SAP NetWeaver,...

Critical PipeCD Vulnerability (CVE-2024-53351): Authorization Bypass Exposes Deployment Pipelines

CVE News

Critical PipeCD Vulnerability (CVE-2024-53351): Authorization Bypass Exposes Deployment Pipelines

A critical authorization bypass vulnerability (CVE-2024-53351) has been discovered in PipeCD v0.49, allowing attackers to access service...

High-Severity SQL Injection Vulnerability in Flickr Set Slideshows (CVE-2025-30590)

CVE News

High-Severity SQL Injection Vulnerability in Flickr Set Slideshows (CVE-2025-30590)

A critical SQL injection vulnerability (CVE-2025-30590) has been discovered in the Dourou Flickr set slideshows plugin, affecting...

Critical FortiOS and FortiProxy RCE Vulnerability (CVE-2023-25610): Patch Now to Prevent Remote Exploitation

CVE News

Critical FortiOS and FortiProxy RCE Vulnerability (CVE-2023-25610): Patch Now to Prevent Remote Exploitation

Summary: Fortinet has disclosed a critical buffer underwrite vulnerability (CVE-2023-25610) affecting multiple versions of FortiOS and FortiProxy,...

Critical Next.js Vulnerability (CVE-2025-29927) Exposes Websites to Authorization Bypass Attacks

CVE News

Critical Next.js Vulnerability (CVE-2025-29927) Exposes Websites to Authorization Bypass Attacks

A severe security flaw in Next.js, tracked as CVE-2025-29927, allows attackers to bypass authentication and authorization checks...

Critical Microsoft Windows Vulnerabilities Patched: NCSC-2025-0078 Advisory

CVE News
Exploitation

Critical Microsoft Windows Vulnerabilities Patched: NCSC-2025-0078 Advisory

Microsoft has recently addressed a series of critical vulnerabilities in its Windows operating system, as highlighted in...

Microsoft Azure Vulnerabilities Patched: Key Details for Security Teams

Blue-Team
CVE News

Microsoft Azure Vulnerabilities Patched: Key Details for Security Teams

Microsoft has recently addressed several critical vulnerabilities in its Azure platform, as reported by the Dutch National...

Fortinet Patches Critical Vulnerabilities in FortiOS, FortiProxy, FortiPAM, FortiSRA, and FortiWeb: NCSC-2025-0082 Exploited in Ransomware Attacks

CVE News
Exploitation

Fortinet Patches Critical Vulnerabilities in FortiOS, FortiProxy, FortiPAM, FortiSRA, and FortiWeb: NCSC-2025-0082 Exploited in Ransomware Attacks

Fortinet has recently addressed a critical vulnerability affecting multiple products, including FortiOS, FortiProxy, FortiPAM, FortiSRA, and FortiWeb....

Ivanti Secure Access Client Vulnerability Patched: NCSC-2025-0085 Explained

Blue-Team
CVE News

Ivanti Secure Access Client Vulnerability Patched: NCSC-2025-0085 Explained

On March 12, 2025, Ivanti announced the resolution of a critical vulnerability in its Ivanti Secure Access...

Critical Vulnerability Patched in Apache Tomcat: CVE-2025-24813 Allows Remote Code Execution

CVE News
Exploitation

Critical Vulnerability Patched in Apache Tomcat: CVE-2025-24813 Allows Remote Code Execution

Apache Tomcat, a widely used open-source Java servlet container, has recently addressed a critical vulnerability that could...

Synology Patches Critical LDAP Vulnerability in DiskStation Manager (CVE-2024-10444)

CVE News
Exploitation

Synology Patches Critical LDAP Vulnerability in DiskStation Manager (CVE-2024-10444)

Synology has recently addressed a critical vulnerability in its DiskStation Manager (DSM) software, specifically within its LDAP...

IBM InfoSphere Information Server Vulnerability (CVE-2024-51459) Patched: Medium Risk, High Impact

CVE News
Exploitation

IBM InfoSphere Information Server Vulnerability (CVE-2024-51459) Patched: Medium Risk, High Impact

IBM has recently addressed a critical vulnerability in its IBM InfoSphere Information Server 11.7, as detailed in...

Critical Vulnerability Patched in Veeam Backup & Replication: CVE-2025-23120

Blue-Team
CVE News

Critical Vulnerability Patched in Veeam Backup & Replication: CVE-2025-23120

A critical vulnerability (CVE-2025-23120) in Veeam Backup & Replication has been addressed by the vendor. The flaw,...

Active Exploitation of Critical Vulnerability in Palo Alto PAN-OS: CVE-2024-3400

CVE News
Exploitation

Active Exploitation of Critical Vulnerability in Palo Alto PAN-OS: CVE-2024-3400

The Dutch National Cyber Security Centre (NCSC) has recently observed active exploitation of a critical vulnerability in...

Critical Vulnerabilities in FortiOS and FortiProxy Lead to Ransomware Attacks: NCSC Warns of Exploitation

CVE News
Exploitation

Critical Vulnerabilities in FortiOS and FortiProxy Lead to Ransomware Attacks: NCSC Warns of Exploitation

The National Cyber Security Centre (NCSC) has reported a significant surge in ransomware attacks targeting critical vulnerabilities...

CVE-2025-2691: High-Severity SSRF Vulnerability in Nossrf Package

Blue-Team
CVE News
Exploitation
Red-Team
Threat Intelligence

CVE-2025-2691: High-Severity SSRF Vulnerability in Nossrf Package

A critical Server-Side Request Forgery (SSRF) vulnerability (CVE-2025-2691) has been identified in the nossrf package, affecting versions...

Posts pagination

Previous 1 2 3 4

CVE News

SAP Patches Critical Vulnerabilities in Commerce, NetWeaver, and BusinessObjects Components

Critical PipeCD Vulnerability (CVE-2024-53351): Authorization Bypass Exposes Deployment Pipelines

High-Severity SQL Injection Vulnerability in Flickr Set Slideshows (CVE-2025-30590)

Critical FortiOS and FortiProxy RCE Vulnerability (CVE-2023-25610): Patch Now to Prevent Remote Exploitation

Critical Next.js Vulnerability (CVE-2025-29927) Exposes Websites to Authorization Bypass Attacks

Critical Microsoft Windows Vulnerabilities Patched: NCSC-2025-0078 Advisory

Fortinet Patches Critical Vulnerabilities in FortiOS, FortiProxy, FortiPAM, FortiSRA, and FortiWeb: NCSC-2025-0082 Exploited in Ransomware Attacks

Ivanti Secure Access Client Vulnerability Patched: NCSC-2025-0085 Explained

Critical Vulnerability Patched in Apache Tomcat: CVE-2025-24813 Allows Remote Code Execution

Synology Patches Critical LDAP Vulnerability in DiskStation Manager (CVE-2024-10444)

IBM InfoSphere Information Server Vulnerability (CVE-2024-51459) Patched: Medium Risk, High Impact

Critical Vulnerability Patched in Veeam Backup & Replication: CVE-2025-23120

Active Exploitation of Critical Vulnerability in Palo Alto PAN-OS: CVE-2024-3400

Critical Vulnerabilities in FortiOS and FortiProxy Lead to Ransomware Attacks: NCSC Warns of Exploitation

CVE-2025-2691: High-Severity SSRF Vulnerability in Nossrf Package

You may have missed

YesWiki Path Traversal Vulnerability (CVE-2025-31131): Technical Analysis and Mitigation

Critical SQL Injection Vulnerability in Next-Cart Store to WooCommerce Migration Plugin (CVE-2025-30807)

WpTravelly Plugin Vulnerability Exposes WordPress Sites to Object Injection Attacks

Critical SQL Injection Vulnerability in WooCommerce Order Splitter Plugin (CVE-2025-31089)