A critical vulnerability in SolarWinds Web Help Desk is facing exploitation activity, about a week after the security flaw ...

A high-severity OpenClaw flaw allows one-click remote code execution via token theft and WebSocket hijacking; patched in ...

Researchers disclose rapid exploit chain that let attackers run code via a single malicious web page Security issues continue ...

Multiple critical vulnerabilities in the popular n8n open-source workflow automation platform allow escaping the confines of ...

OpenSSL updates released on Tuesday patch a dozen vulnerabilities, including a high-severity remote code execution flaw.

CERT-In warns Microsoft Edge users to urgently update their browser after a high-severity flaw exposes devices to remote ...

Zerodium has announced today an increased interest in exploits for the WordPress content management system that achieve remote code execution. The exploit acquisition platform is now enticing exploit ...

A vulnerability was discovered in Elementor, starting with version 3.6.0, that allows an attacker to upload arbitrary code and stage a full site takeover. The flaw was introduced through a lack of ...

Researchers found four vulnerabilities in vRealize Log Insight that were relatively non-threatening on their own but lead to significant compromise when used together. VMware published patches last ...

Cloud cybersecurity startup Orca Security Ltd. today detailed the discovery of a previously unknown vulnerability in Microsoft Corp.’s Azure that allowed hackers to undertake remote code execution.

The US coffee giant runs a bug bounty platform on HackerOne. A new vulnerability report submitted by Kamil "ko2sec" Onur Özkaleli, first submitted on November 5 and made public on December 9, ...