Vulnerabilities

K7 Antivirus Vulnerability Lets Attackers Gain SYSTEM-level Privileges

Security researcher Lucas Laise from Quarkslab discovered a serious privilege escalation vulnerability in K7 Ultimate Security, an antivirus software from…

5 months ago

Critical Vulnerability In React and Next.js Allows Remote Attackers To Execute Malicious Code

A critical remote code execution flaw, tracked as CVE-2025-55182 and dubbed React2Shell, affects React Server Components in the React 19…

5 months ago

Hackers Exploit Microsoft Windows LNK Vulnerability In The Wild As A 0-Day Attack

Attackers have abused CVE-2025-9491, a flaw in how Windows displays shortcut file properties, since 2017, to hide malicious commands in…

5 months ago

Critical Longwatch RCE Vulnerability Enables High-Privilege Remote Code Execution

The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has issued a critical alert for a remote code execution (RCE) vulnerability…

5 months ago

Angular Platform Flaw Enables Malicious Code Execution Through Weaponized SVG Animations

Security researchers have uncovered a stored cross-site scripting (XSS) vulnerability in Angular's Template Compiler that lets attackers inject and execute…

5 months ago

Multiple Vulnerabilities In Django Facilitate SQL Injection and Denial-of-Service Attacks

The Django project released security patches on December 2, 2025, addressing two vulnerabilities in versions 5.2.9, 5.1.15, and 4.2.27. Posted…

5 months ago

Chrome 143 Released With Patch For 13 Vulnerabilities Allowing Arbitrary Code Execution

Google has rolled out Chrome 143 to the stable channel for Windows, Mac, and Linux, addressing 13 security vulnerabilities in…

5 months ago

nopCommerce Vulnerability Lets Attackers Access Application Using Captured Cookie

A critical flaw in the popular open-source eCommerce platform nopCommerce exposes users to session hijacking attacks. Security researchers at CERT…

5 months ago

OpenVPN Vulnerabilities Allow Hackers To Trigger DDoS Attacks and Bypass Security Measures

OpenVPN, a popular open-source VPN solution, has patched multiple flaws in its recent releases that expose users to denial-of-service (DoS)…

5 months ago

Critical Apache Struts Vulnerability Lets Hackers Overwhelm System Storage

A new denial-of-service vulnerability in Apache Struts exposes web applications to disk exhaustion attacks, in which hackers flood servers with…

5 months ago
Show more Posts
Show previous Posts