CVE Alert: CVE-2025-25761
Vulnerability Summary: CVE-2025-25761 HkCms v2.3.2.240702 was discovered to contain an arbitrary file write vulnerability in the component Appcenter.php. Affected Endpoints:...
CVE Alert: CVE-2025-1756
Vulnerability Summary: CVE-2025-1756 mongosh may be susceptible to local privilege escalation under certain conditions potentially enabling unauthorized actions on a...
CVE Alert: CVE-2025-1755
Vulnerability Summary: CVE-2025-1755 MongoDB Compass may be susceptible to local privilege escalation under certain conditions potentially enabling unauthorized actions on...
CVE Alert: CVE-2024-9285
Vulnerability Summary: CVE-2024-9285 A vulnerability was found in Tu Yafeng Via Browser up to 5.9.0 on Android. It has been...
CVE Alert: CVE-2025-27157
Vulnerability Summary: CVE-2025-27157 Mastodon is a self-hosted, federated microblogging platform. Starting in version 4.2.0 and prior to versions 4.2.16 and...
CVE Alert: CVE-2025-25333
Vulnerability Summary: CVE-2025-25333 An issue in IKEA CN iOS 4.13.0 allows attackers to access sensitive user information via supplying a...
CVE Alert: CVE-2025-23687
Vulnerability Summary: CVE-2025-23687 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in simonhunter Woo Store Mode allows...
CVE Alert: CVE-2025-1745
Vulnerability Summary: CVE-2025-1745 A vulnerability has been found in LinZhaoguan pb-cms 2.0 and classified as problematic. This vulnerability affects unknown...
CVE Alert: CVE-2025-1743
Vulnerability Summary: CVE-2025-1743 A vulnerability, which was classified as critical, was found in zyx0814 Pichome 2.1.0. This affects an unknown...
CVE Alert: CVE-2025-24832
Vulnerability Summary: CVE-2025-24832 Arbitrary file overwrite during home directory recovery due to improper symbolic link handling. The following products are...
CVE Alert: CVE-2025-27399
Vulnerability Summary: CVE-2025-27399 Mastodon is a self-hosted, federated microblogging platform. In versions prior to 4.1.23, 4.2.16, and 4.3.4, when the...
CVE Alert: CVE-2025-1742
Vulnerability Summary: CVE-2025-1742 A vulnerability, which was classified as problematic, has been found in pihome-shc PiHome 2.0. Affected by this...
Fortifying Your Digital Frontier With Web Application Security
In an era where businesses are increasingly reliant on web applications, ensuring their security has become paramount. Web application security...
FBI Confirms Lazarus Group as Bybit Hackers Behind Major Crypto Heist
The FBI has confirmed that the notorious Lazarus Group from North Korea was responsible for the recent massive cryptocurrency heist...
OpenSSF Unveils Comprehensive Security Framework for Open Source Software
The OpenSSF has reached a remarkable milestone with the launch of its new security framework aimed at enhancing the security...
DragonForce Ransomware Targets Saudi Firm, Stealing 6TB of Data
A significant ransomware incident was reported as DragonForce launched an attack on a prominent Saudi firm, leading to the theft...
Chinese Cyber Espionage Surges 150%: Insights from CrowdStrike
In 2024, Chinese cyber espionage operations have risen dramatically, with a reported 150% increase according to CrowdStrike's latest findings. Recent...
Rising Software Vulnerabilities: Average Patch Time Nears Nine Months
In an alarming trend, the average time to fix software vulnerabilities has now reached nearly nine months, according to Veracode’s...
Winos 4.0 Malware: Email Impersonation Attack Targets Taiwan’s Organizations
The Winos 4.0 malware campaign is a significant threat to Taiwan, leveraging email impersonation tactics to target organizations effectively. A...
Spyzie – 518,643 breached accounts
HIBP In February 2025, the spyware service Spyzie suffered a data breach along with sibling spyware services, Spyic and Cocospy....
Orange Romania – 556,557 breached accounts
HIBP In February 2025, the Romanian arm of telecommunications company Orange suffered a data breach which was subsequently published to...
CISA: CISA Adds One Known Exploited Vulnerability to Catalog
CISA Adds One Known Exploited Vulnerability to Catalog CISA has added one new vulnerability to its Known Exploited Vulnerabilities Catalog, based...
CISA: CISA Adds One Known Exploited Vulnerability to Catalog
CISA Adds One Known Exploited Vulnerability to Catalog CISA has added one new vulnerability to its Known Exploited Vulnerabilities Catalog, based...
CISA: CISA Adds One Known Exploited Vulnerability to Catalog
CISA Adds One Known Exploited Vulnerability to Catalog CISA has added one new vulnerability to its Known Exploited Vulnerabilities Catalog, based...
