A severe security vulnerability has been discovered in CentOS Web Panel (CWP), a widely-used free web hosting control panel that manages over 200,000 server instances worldwide.
The vulnerability, designated as CVE-2025-48703, allows unauthenticated attackers to execute arbitrary commands remotely on affected servers, posing a...
A significant security vulnerability has been discovered in TeamViewer's Remote Management software for Windows systems, enabling attackers with local access to exploit SYSTEM-level privileges for arbitrary file deletion.
The vulnerability , identified as CVE-2025-36537, carries a CVSS 3.1 base score of 7.0, categorizing it...
Zimbra has released critical security patches addressing a severe stored cross-site scripting vulnerability in its Classic Web Client that could allow attackers to execute malicious JavaScript code on user systems.
he company has issued fixes across multiple supported versions, including patches for both the...
A critical directory traversal vulnerability has been discovered in Performave Convoy's LocaleController component, enabling unauthenticated remote attackers to execute arbitrary code on affected servers.
The security vulnerability, tracked as GHSA-43g3-qpwq-hfgg and disclosed by researcher ericwang401 five days ago, impacts all Convoy installations running versions...
Xiaomi has disclosed a critical security vulnerability in its interoperability application that could allow attackers to gain unauthorized access to users' devices.
The vulnerability, identified as CVE-2024-45347 with a severe CVSS score of 9.6, affects millions of Xiaomi device users worldwide and highlights ongoing...
A critical security vulnerability has been discovered in RARLAB's popular WinRAR archiving software that allows remote attackers to execute arbitrary code on affected systems through directory traversal exploitation.
The vulnerability, designated as CVE-2025-6218 with a CVSS score of 7.8, affects WinRAR installations and requires...