A sophisticated supply-chain attack targeting WordPress plugin giant Awesome Motive has injected malicious JavaScript into CDN-served files...
Vulnerability
A high-severity sandbox escape vulnerability tracked as CVE-2026-48124 (GHSA-pc9j-3qc2-95wv) has been disclosed in Cursor Desktop, the widely adopted AI-powered...
A critical unauthenticated SQL injection vulnerability (CVE-2026-48114) has been publicly disclosed in Metacat versions 2.x through 2.19.1,...
Zoom has issued urgent security patches addressing three high-severity vulnerabilities across its Workplace mobile apps and Contact...
A critical sandbox escape vulnerability has been disclosed in the widely used Node.js sandboxing library vm2, tracked as CVE-2026-47210 (GHSA-6j2x-vhqr-qr7q),...
A critical post-authentication remote code execution vulnerability in ChromaDB tracked as CVE-2026-45833 allows any authenticated user with UPDATE_COLLECTION permission to...
Oracle PeopleSoft Enterprise PeopleTools has been hit by a CVSS 9.8-rated critical zero-day vulnerability (CVE-2026-35273) that allows...
A critical unauthenticated remote code execution vulnerability has been discovered in Splunk Enterprise’s PostgreSQL Sidecar Service, earning...
An advanced cyber extortion campaign has been actively targeting the global higher education sector. Attributed to the...
In an era where the smartphone has become the de facto office for millions of corporate employees,...
