CVE Alert: CVE-2025-6926
Vulnerability Summary: CVE-2025-6926 Improper Authentication vulnerability in Wikimedia Foundation Mediawiki - CentralAuth Extension allows : Bypass Authentication.This issue affects Mediawiki...
CVE Alert: CVE-2025-45809
Vulnerability Summary: CVE-2025-45809 BerriAI litellm v1.65.4 was discovered to contain a SQL injection vulnerability via the /key/block endpoint. Affected Endpoints:...
CVE Alert: CVE-2025-23968
Vulnerability Summary: CVE-2025-23968 Unrestricted Upload of File with Dangerous Type vulnerability in WPCenter AiBud WP allows Upload a Web Shell...
CVE Alert: CVE-2025-49005
Vulnerability Summary: CVE-2025-49005 Next.js is a React framework for building full-stack web applications. In Next.js App Router from 15.3.0 to...
CVE Alert: CVE-2025-53369
Vulnerability Summary: CVE-2025-53369 Short Description is a MediaWiki extension that provides local short description support. In version 4.0.0, short descriptions...
CVE Alert: CVE-2025-5322
Vulnerability Summary: CVE-2025-5322 The VikRentCar Car Rental Management System plugin for WordPress is vulnerable to arbitrary file uploads due to...
CVE Alert: CVE-2025-49826
Vulnerability Summary: CVE-2025-49826 Next.js is a React framework for building full-stack web applications. From versions 15.0.4-canary.51 to before 15.1.8, a...
CVE Alert: CVE-2025-53368
Vulnerability Summary: CVE-2025-53368 Citizen is a MediaWiki skin that makes extensions part of the cohesive experience. From versions 1.9.4 to...
Coming To Postgresql: On Disk Database Encryption
Transparent Data Encryption (TDE) is a popular approach to encrypting data at the storage layer, beefing up database security. While...
Wayback Gives X11 Desktops A Fighting Chance In A Wayland World
A new project addresses one of the biggest differences between how X11 and Wayland work, and that could be a...
Chatgpt Creates Phisher’s Paradise By Recommending The Wrong Urls For Majorcompanies
AI-powered chatbots often deliver incorrect information when asked to name the address for major companies’ websites, and threat intelligence business...
Cisco Scores A Perfect 10 Sadly For A Critical Flaw In Its Comms Platform
If you're running the Engineering-Special (ES) builds of Cisco Unified Communications Manager or its Session Management Edition, you need to...
Us Imposes Sanctions On Second Russian Bulletproof Hosting Vehicle This Year
The US Treasury has sanctioned Aeza Group, a Russian bulletproof hosting (BPH) provider, and four of its cronies for enabling...
Uk Eyes New Laws As Cable Sabotage Blurs Line Between War And Peace
Cyberattacks and undersea cable sabotage are blurring the line between war and peace and exposing holes in UK law, a...
Call Center Staffers Explain To Researchers How Their Ai Assistants Aren’t Veryhelpful
ai-pocalypse Recent research details how customer service reps at a Chinese utility's call center often struggled when trying to use...
Trump’s One Big Beautiful Bill Bankrolls $85m Space Shuttle Shuffle
Lurking in the text contained within the One Big Beautiful Bill, which was passed by the US Senate yesterday, is...
Australian Airline Qantas Reveals Data Theft Impacting Six Million Customers
Australian airline Qantas on Wednesday revealed it fell victim to a cyberattack that saw information describing six million customers stolen.“On...
Scattered Spider Crime Spree Takes Flight As Focus Turns To Aviation Sector
Just a few weeks after warning about Scattered Spider's tactics shifting toward the insurance industry, the same experts now say...
International Criminal Court Swats Away ‘sophisticated And Targeted’ Cyberattack
The International Criminal Court (ICC) says a "sophisticated" cyberattack targeted the institution, the second such incident in two years.It said...
Us Shuts Down A String Of North Korean It Worker Scams
The US Department of Justice has announced a major disruption of multiple North Korean fake IT worker scams.The feds say...
Let’s Encrypt Rolls Out Free Security Certs For Ip Addresses
Let's Encrypt, a certificate authority (CA) known for its free TLS/SSL certificates, has begun issuing digital certificates for IP addresses.It's...
British It Worker Sentenced To Seven Months After Trashing Company Network
A judge has sentenced a disgruntled IT worker to more than seven months in prison after he wreaked havoc on...
23andme’s New Owner Says Your Dna Is Safe This Time
The medical research nonprofit vying to buy 23andMe is informing existing customers that it plans to complete the deal on...
Us Imposes Sanctions On Second Russian Bulletproof Hosting Vehicle This Year
The US Treasury has sanctioned Aeza Group, a Russian bulletproof hosting (BPH) provider, and four of its cronies for enabling...
