A critical local privilege escalation (LPE) vulnerability was disclosed affecting Docker Desktop, tracked officially in vulnerability databases...
John
John is an independent cybersecurity researcher covering vulnerabilities, malware campaigns, and emerging threats in the cybersecurity landscape.
A newly disclosed critical vulnerability, tracked officially as CVE-2026-33712 and identified in the GitHub Advisory Database as...
A critical Cross-Site Request Forgery (CSRF) vulnerability impacting Best Practical’s Request Tracker (RT) software. Tracked under CVE-2026-41074...
On May 21, 2026, A critical security flaw was discovered within Microsoft Entra ID (formerly Azure Active...
On May 21, 2026, A highly critical security flaw was discovered affecting Microsoft SharePoint environments. Tracked as...
Two highly critical Remote Code Execution (RCE) flaws, widespread Cross-Site Request Forgery (CSRF) vulnerabilities, and dangerous Insecure...
A roll-out in the ConnectWise Automate™ 2026.5, addressing a severe vulnerability tracked as CVE-2026-9089. Disclosed on May...
A highly critical kernel vulnerability that could allow unprivileged local users to completely compromise affected systems. Tracked...
A disclosure of multiple security vulnerabilities in Apache Fory (specifically within its Python implementation, PyFory), a highly...
A high-severity flaw in Microsoft Defender to its Known Exploited Vulnerabilities (KEV) catalog. Designated as CVE-2026-41091, this...
