The explosive, easy-to-trigger vulnerability was exploited within hours of disclosure, exposing the risks of default ...
Singapore’s CSA warns of a CVSS 10.0 SmarterMail vulnerability allowing unauthenticated remote code execution via file upload ...
In HPE's OneView, malicious actors can inject malicious code from the network without authentication. An update is available.
Critical n8n flaw CVE-2025-68613 (CVSS 9.9) lets authenticated users run arbitrary code; versions 0.211.0–1.120.4 affected, ...
VLex's Vincent AI assistant, used by thousands of law firms worldwide, is vulnerable to AI phishing attacks that can steal ...
Apache Commons Text is used for processing character strings in Java apps. A critical vulnerability allows the injection of ...
The flaw could allow attackers to bypass Nuclei’s template signature verification process to inject malicious codes into host systems. A widely popular open-source tool, Nuclei, used for scanning ...
An unauthenticated user can execute the attack, and there’s no mitigation, just a hotfix that should be applied immediately.
GUEST OPINION: Microsoft is publishing a relatively light 54 new vulnerabilities this December 2025 Patch Tuesday, which is significantly lower than we have come to expect over the past couple of ...
A recent study found that more than a third of 1,261 open source libraries had a known vulnerability and about a quarter of the downloads were tainted A study of how 31 popular open source code ...
Results that may be inaccessible to you are currently showing.
Hide inaccessible results
Feedback