A recent security audit has revealed critical vulnerabilities in Moodle, the widely adopted open-source learning management system...
CVSS
A recently patched high-severity vulnerability in Google Cloud Platform’s Cloud Composer service, dubbed ConfusedComposer, could have allowed...
The 2025 Verizon Data Breach Investigations Report (DBIR) highlights a concerning 34% year-over-year increase in vulnerability exploitation,...
A critical zero-day remote code execution (RCE) vulnerability in Active! Mail, a widely used Japanese webmail client,...
A critical buffer overflow vulnerability in Symantec pcAnywhere, identified as CVE-2011-3478, allows unauthenticated attackers to execute arbitrary...
Traditional vulnerability management often focuses on individual CVEs, leading to fragmented remediation efforts. Rapid7’s Remediation Hub introduces...
A high-severity SQL injection vulnerability (CVE-2025-32956) has been identified in the ManageWiki MediaWiki extension, affecting versions prior...
A critical buffer overflow vulnerability (CVE-2025-3854) has been identified in H3C GR-3000AX routers running firmware versions up...
A critical vulnerability in the Greenshift WordPress plugin (CVE-2025-3616) allows authenticated attackers to upload arbitrary files, potentially...
A critical remote code execution (RCE) vulnerability, designated as CVE-2025-29659, has been identified in the Yi IoT...
A critical remote code execution (RCE) vulnerability (CVE-2025-29660) has been identified in the Yi IoT XY-3820 firmware...
Microsoft has confirmed that a recent wave of Entra ID (formerly Azure AD) account lockouts stemmed from...
A newly disclosed vulnerability in Soffid Console (CVE-2025-32408) exposes systems to remote code execution through insecure Java...
