A critical zero-authentication vulnerability was discovered in the kanban npm package a core component of the Cline AI coding...
Year: 2026
A critical path traversal vulnerability in Wazuh’s cluster synchronization mechanism, tracked as CVE-2026-30893 with a CVSS score of 9.0, allows...
A severe sandbox escape vulnerability in the angular-expressions package now gives attackers a direct path to execute arbitrary code...
SAP released 15 new security notes on May 12, 2026, addressing a broad range of vulnerabilities, including...
Millions of Next.js deployments worldwide are now at heightened risk after a comprehensive proof-of-concept (PoC) collection targeting...
OpenAI’s newly launched Daybreak platform is a major advance in AI-powered cybersecurity, embedding frontier intelligence directly into...
Sandboxie-Plus has released version 1.17.5 (classic build 5.72.5) on May 2, 2026, delivering critical regression fixes, shell...
The Apache CloudStack project has released two emergency LTS security updates, versions 4.20.3.0 and 4.22.0.1, addressing seven CVEs ranging from Moderate...
A critical zero-day authentication bypass vulnerability in cPanel and WHM, tracked as CVE-2026-41940 with a CVSS score of 9.8 (Critical),...
The official JDownloader website was compromised between May 6–7, 2026, with attackers hijacking installer download links to...