Attackers have hijacked the update mechanism of Notepad++, one of the world’s most popular open-source text editors, delivering malware to targeted users over a period…
Browsing: RCE
Three critical-severity vulnerabilities in the GutenKit and Hunk Companion WordPress plugins have been exploited in a new campaign. According to…
A zero-day that Microsoft patched in July remained active long after the fix. China-based attackers weaponized the SharePoint “ToolShell” flaw…
In April 2025, SAP patched a critical vulnerability in NetWeaver AS Java Visual Composer. The flaw, tracked as CVE-2025-31324, allows…
Microsoft has released an out-of-band security update to address ToolShell, a critical SharePoint vulnerability that’s already being exploited in the…
A critical vulnerability in Microsoft SharePoint is under active attack, putting thousands of on-premise servers at risk. The flaw, tracked…
Two newly disclosed Linux vulnerabilities could let attackers chain their way to full root access, even from an ordinary SSH…
Two serious security vulnerabilities have been discovered in TheGem, a premium WordPress theme used by more than 82,000 websites worldwide.…
While reports suggest that the latest version of Samsung MagicINFO 9 Server (21.1050.0) addresses the high-severity vulnerability tracked as CVE-2024-7399,…
A critical security vulnerability has been discovered in the Commvault Command Center, that could enable malicious actors to remotely to…