A critical vulnerability (CVE-2015-2079) in Usermin, a web-based administration tool, allows authenticated attackers to execute arbitrary code...
Vulnerability Management
The Cybersecurity and Infrastructure Security Agency (CISA) has updated its Known Exploited Vulnerabilities (KEV) Catalog with three...
A newly disclosed vulnerability in Apple’s iOS operating system (CVE-2025-24091) allows malicious applications to trigger an irreversible...
Security researchers at Shelltrail have identified three critical vulnerabilities in the IXON VPN client that could allow...
A critical path traversal vulnerability (CVE-2025-26692) affecting SIOS Technology’s Quick Agent (V2 and V3) has been disclosed,...
A critical buffer overflow vulnerability (CVE-2025-3991) has been identified in TOTOLINK N150RT routers running firmware version 3.4.0-B20190525....
North Dakota has enacted significant regulatory changes with HB 1127, signed into law on April 11, 2025....
A high-severity remote code execution (RCE) vulnerability (CVE-2025-3642) has been identified in Moodle’s EQUELLA repository integration, posing...
A high-severity vulnerability (CVE-2025-3935) affecting ScreenConnect versions 25.2.3 and earlier has been disclosed, involving ASP.NET ViewState code...
A widespread phishing campaign targeting WooCommerce store owners has been identified, leveraging fabricated security vulnerability alerts to...
A high-severity Cross-Site Request Forgery (CSRF) vulnerability has been identified in Moodle’s Brickfield tool, tracked as CVE-2025-3638....
Organizations continue to face significant challenges in reducing vulnerability remediation times, with many struggling to prioritize exposures...
Virgin Media is rolling out free router upgrades to customers using older Hub models (Hub 1-3) to...
Security researchers have identified a Chrome extension leveraging an AI agent orchestration protocol to perform actions without...
The SANS Internet Storm Center (ISC) Stormcast for April 25, 2025, highlights critical cybersecurity developments, including SMS...
A critical vulnerability (CVE-2025-46616) has been identified in Quantum StorNext Web GUI API versions prior to 7.2.4,...
A critical SQL injection vulnerability (CVE-2025-46248) has been identified in M A Vinoth Kumar’s Frontend Dashboard, affecting...
A critical vulnerability (CVE-2025-2185) in ALBEDO Telecom’s Net.Time PTP/NTP clock devices could allow attackers to intercept unencrypted...
Credential theft remains one of the most pervasive threats in cybersecurity, with Dark Reading reporting 11.3 million...
Microsoft has addressed a known issue causing false 0x80070643 installation failure errors during the deployment of April...
