Mitigation

New Phishing Tactic Exploits Firebase to Steal Credentials

Threat Intelligence

New Phishing Tactic Exploits Firebase to Steal Credentials

Check Point Research has uncovered a sophisticated phishing campaign leveraging Google Firebase to host fraudulent pages mimicking...

CVE-2025-2683: Critical SQL Injection in PHPGurukul Bank Locker Management System

CVE News

CVE-2025-2683: Critical SQL Injection in PHPGurukul Bank Locker Management System

Summary A critical SQL injection vulnerability (CVE-2025-2683) has been discovered in PHPGurukul’s Bank Locker Management System version...

Critical Unrestricted File Upload Vulnerability in PHPGurukul eLearning System (CVE-2025-2687)

CVE News

Critical Unrestricted File Upload Vulnerability in PHPGurukul eLearning System (CVE-2025-2687)

A critical vulnerability (CVE-2025-2687) has been discovered in PHPGurukul eLearning System 1.0, affecting its Image Handler component....

ManageEngine ADSelfService Plus Session Hijacking Vulnerability Patched (CVE-2025-1723)

Blue-Team
CVE News

ManageEngine ADSelfService Plus Session Hijacking Vulnerability Patched (CVE-2025-1723)

Zoho Corporation has addressed a medium-severity authentication vulnerability (CVE-2025-1723) in ManageEngine ADSelfService Plus versions 6510 and earlier....

IBM Storage Products Patched for Critical Authentication Bypass and RCE Vulnerabilities

CVE News

IBM Storage Products Patched for Critical Authentication Bypass and RCE Vulnerabilities

Summary: IBM has addressed critical security vulnerabilities in its enterprise storage products, including authentication bypass (CVE-2025-0159) and...

High-Severity SQL Injection Vulnerability in Flickr Set Slideshows (CVE-2025-30590)

CVE News

High-Severity SQL Injection Vulnerability in Flickr Set Slideshows (CVE-2025-30590)

A critical SQL injection vulnerability (CVE-2025-30590) has been discovered in the Dourou Flickr set slideshows plugin, affecting...

Hidden Threats in Microsoft 365 Backups: How Malware Lurks and Risks Reinfection

News

Hidden Threats in Microsoft 365 Backups: How Malware Lurks and Risks Reinfection

A recent study by Acronis Threat Research Unit reveals critical security gaps in Microsoft 365 backup data,...

Critical Microsoft Windows Vulnerabilities Patched: NCSC-2025-0078 Advisory

CVE News
Exploitation

Critical Microsoft Windows Vulnerabilities Patched: NCSC-2025-0078 Advisory

Microsoft has recently addressed a series of critical vulnerabilities in its Windows operating system, as highlighted in...

Microsoft Azure Vulnerabilities Patched: Key Details for Security Teams

Blue-Team
CVE News

Microsoft Azure Vulnerabilities Patched: Key Details for Security Teams

Microsoft has recently addressed several critical vulnerabilities in its Azure platform, as reported by the Dutch National...

Fortinet Patches Critical Vulnerabilities in FortiOS, FortiProxy, FortiPAM, FortiSRA, and FortiWeb: NCSC-2025-0082 Exploited in Ransomware Attacks

CVE News
Exploitation

Fortinet Patches Critical Vulnerabilities in FortiOS, FortiProxy, FortiPAM, FortiSRA, and FortiWeb: NCSC-2025-0082 Exploited in Ransomware Attacks

Fortinet has recently addressed a critical vulnerability affecting multiple products, including FortiOS, FortiProxy, FortiPAM, FortiSRA, and FortiWeb....

Adobe Acrobat Reader Vulnerabilities Patched: Critical Arbitrary Code Execution Flaws Addressed

Exploitation
Red-Team

Adobe Acrobat Reader Vulnerabilities Patched: Critical Arbitrary Code Execution Flaws Addressed

Adobe has recently addressed critical vulnerabilities in Adobe Acrobat Reader, as highlighted in the NCSC-2025-0084 advisory. These...

Ivanti Secure Access Client Vulnerability Patched: NCSC-2025-0085 Explained

Blue-Team
CVE News

Ivanti Secure Access Client Vulnerability Patched: NCSC-2025-0085 Explained

On March 12, 2025, Ivanti announced the resolution of a critical vulnerability in its Ivanti Secure Access...

Autodesk AutoCAD Vulnerabilities Patched: Key Details and Remediation Steps

Exploitation
Threat Intelligence

Autodesk AutoCAD Vulnerabilities Patched: Key Details and Remediation Steps

Autodesk has recently addressed multiple vulnerabilities in its AutoCAD software, a critical tool used by architects, engineers,...

Critical Vulnerability Patched in Apache Tomcat: CVE-2025-24813 Allows Remote Code Execution

CVE News
Exploitation

Critical Vulnerability Patched in Apache Tomcat: CVE-2025-24813 Allows Remote Code Execution

Apache Tomcat, a widely used open-source Java servlet container, has recently addressed a critical vulnerability that could...

Synology Patches Critical Vulnerability in Replication Service and Unified Controller (NCSC-2025-0090)

Exploitation
Red-Team

Synology Patches Critical Vulnerability in Replication Service and Unified Controller (NCSC-2025-0090)

Synology has recently addressed a critical vulnerability in its Synology Replication Service and Synology Unified Controller, which...

Synology Patches Critical LDAP Vulnerability in DiskStation Manager (CVE-2024-10444)

CVE News
Exploitation

Synology Patches Critical LDAP Vulnerability in DiskStation Manager (CVE-2024-10444)

Synology has recently addressed a critical vulnerability in its DiskStation Manager (DSM) software, specifically within its LDAP...

Critical Vulnerability Patched in Veeam Backup & Replication: CVE-2025-23120

Blue-Team
CVE News

Critical Vulnerability Patched in Veeam Backup & Replication: CVE-2025-23120

A critical vulnerability (CVE-2025-23120) in Veeam Backup & Replication has been addressed by the vendor. The flaw,...

Active Exploitation of Critical Vulnerability in Palo Alto PAN-OS: CVE-2024-3400

CVE News
Exploitation

Active Exploitation of Critical Vulnerability in Palo Alto PAN-OS: CVE-2024-3400

The Dutch National Cyber Security Centre (NCSC) has recently observed active exploitation of a critical vulnerability in...

NCSC.nl Warns of Cl0p Ransomware Campaigns Targeting File Transfer Systems

Exploitation
Threat Intelligence

NCSC.nl Warns of Cl0p Ransomware Campaigns Targeting File Transfer Systems

The Nationaal Cyber Security Centrum (NCSC) of the Netherlands has issued a warning regarding a series of cyberattacks...

Critical Vulnerabilities in FortiOS and FortiProxy Lead to Ransomware Attacks: NCSC Warns of Exploitation

CVE News
Exploitation

Critical Vulnerabilities in FortiOS and FortiProxy Lead to Ransomware Attacks: NCSC Warns of Exploitation

The National Cyber Security Centre (NCSC) has reported a significant surge in ransomware attacks targeting critical vulnerabilities...

Posts pagination

Previous 1 2 3 4 Next

Mitigation

New Phishing Tactic Exploits Firebase to Steal Credentials

CVE-2025-2683: Critical SQL Injection in PHPGurukul Bank Locker Management System

Critical Unrestricted File Upload Vulnerability in PHPGurukul eLearning System (CVE-2025-2687)

ManageEngine ADSelfService Plus Session Hijacking Vulnerability Patched (CVE-2025-1723)

IBM Storage Products Patched for Critical Authentication Bypass and RCE Vulnerabilities

High-Severity SQL Injection Vulnerability in Flickr Set Slideshows (CVE-2025-30590)

Critical Microsoft Windows Vulnerabilities Patched: NCSC-2025-0078 Advisory

Fortinet Patches Critical Vulnerabilities in FortiOS, FortiProxy, FortiPAM, FortiSRA, and FortiWeb: NCSC-2025-0082 Exploited in Ransomware Attacks

Adobe Acrobat Reader Vulnerabilities Patched: Critical Arbitrary Code Execution Flaws Addressed

Ivanti Secure Access Client Vulnerability Patched: NCSC-2025-0085 Explained

Autodesk AutoCAD Vulnerabilities Patched: Key Details and Remediation Steps

Critical Vulnerability Patched in Apache Tomcat: CVE-2025-24813 Allows Remote Code Execution

Synology Patches Critical Vulnerability in Replication Service and Unified Controller (NCSC-2025-0090)

Synology Patches Critical LDAP Vulnerability in DiskStation Manager (CVE-2024-10444)

Critical Vulnerability Patched in Veeam Backup & Replication: CVE-2025-23120

Active Exploitation of Critical Vulnerability in Palo Alto PAN-OS: CVE-2024-3400

NCSC.nl Warns of Cl0p Ransomware Campaigns Targeting File Transfer Systems

Critical Vulnerabilities in FortiOS and FortiProxy Lead to Ransomware Attacks: NCSC Warns of Exploitation

You may have missed

YesWiki Path Traversal Vulnerability (CVE-2025-31131): Technical Analysis and Mitigation

Critical SQL Injection Vulnerability in Next-Cart Store to WooCommerce Migration Plugin (CVE-2025-30807)

WpTravelly Plugin Vulnerability Exposes WordPress Sites to Object Injection Attacks

Critical SQL Injection Vulnerability in WooCommerce Order Splitter Plugin (CVE-2025-31089)