Exploitation
- APPLICATIONS
Gladinet’s Triofox and CentreStack Under Active Exploitation via Critical RCE Vulnerability
Apr 15, 2025Ravie LakshmananVulnerability / Endpoint Security A recently disclosed security flaw in Gladinet CentreStack also impacts its Triofox remote…
Read More » - APPLICATIONS
OttoKit WordPress Plugin Admin Creation Vulnerability Under Active Exploitation
Apr 11, 2025Ravie LakshmananWebsite Security / Vulnerability A newly disclosed high-severity security flaw impacting OttoKit (formerly SureTriggers) has come under…
Read More » - APPLICATIONS
CISA Adds CrushFTP Vulnerability to KEV Catalog Following Confirmed Active Exploitation
Apr 08, 2025Ravie LakshmananCyber Attack / Vulnerability A recently disclosed critical security flaw impacting CrushFTP has been added by the…
Read More » - APPLICATIONS
CISA Adds NAKIVO Vulnerability to KEV Catalog Amid Active Exploitation
Mar 20, 2025Ravie LakshmananCybersecurity / Vulnerability The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has added a high-severity security flaw…
Read More » - APPLICATIONS
CISA Warns of Active Exploitation in GitHub Action Supply Chain Compromise
Mar 19, 2025Ravie LakshmananVulnerability / DevSecOps The U.S. Cybersecurity and Infrastructure Security Agency (CISA) on Tuesday added a vulnerability linked…
Read More » - APPLICATIONS
Meta Warns of FreeType Vulnerability (CVE-2025-27363) With Active Exploitation Risk
Mar 13, 2025Ravie LakshmananOpen Source / Vulnerability Meta has warned that a security vulnerability impacting the FreeType open-source font rendering…
Read More » - APPLICATIONS
CISA Adds Microsoft and Zimbra Flaws to KEV Catalog Amid Active Exploitation
Feb 26, 2025Ravie LakshmananEnterprise Security / Vulnerability The U.S. Cybersecurity and Infrastructure Security Agency (CISA) on Tuesday placed two security…
Read More » - APPLICATIONS
Microsoft’s Patch Tuesday Fixes 63 Flaws, Including Two Under Active Exploitation
Feb 12, 2025Ravie LakshmananPatch Tuesday / Vulnerability Microsoft on Tuesday released fixes for 63 security flaws impacting its software products,…
Read More » - APPLICATIONS
Zyxel CPE Devices Face Active Exploitation Due to Unpatched CVE-2024-40891 Vulnerability
Jan 29, 2025Ravie LakshmananVulnerability / Network Security Cybersecurity researchers are warning that a critical zero-day vulnerability impacting Zyxel CPE Series…
Read More » - APPLICATIONS
SonicWall Urges Immediate Patch for Critical CVE-2025-23006 Flaw Amid Likely Exploitation
Jan 23, 2025Ravie LakshmananVulnerability / Network Security SonicWall is alerting customers of a critical security flaw impacting its Secure Mobile…
Read More »
