Vulnerability

Critical Vulnerability in Next.js Framework Exposes Websites to Cache Poisoning and XSS AttacksCritical Vulnerability in Next.js Framework Exposes Websites to Cache Poisoning and XSS Attacks

Critical Vulnerability in Next.js Framework Exposes Websites to Cache Poisoning and XSS Attacks

A new report has put the spotlight on potential security vulnerabilities within the popular open-source framework Next.js, demonstrating how improper…

2 months ago
SonicWall Arbitrary OS Commands Execution Vulnerability Exploited in AttacksSonicWall Arbitrary OS Commands Execution Vulnerability Exploited in Attacks

SonicWall Arbitrary OS Commands Execution Vulnerability Exploited in Attacks

 A critical vulnerability in SonicWall's SMA1000 series tracked as CVE-2025-23006, has come under active exploitation by threat actors. SonicWall's PSIRT (Product…

2 months ago
Rails Apps Arbitrary File Write Vulnerability Let Attackers Execute Code RemotelyRails Apps Arbitrary File Write Vulnerability Let Attackers Execute Code Remotely

Rails Apps Arbitrary File Write Vulnerability Let Attackers Execute Code Remotely

A newly exposed vulnerability in Ruby on Rails applications allows attackers to achieve Remote Code Execution (RCE) through a flaw…

2 months ago
Open-Source ClamAV Releases Security Update for Buffer Overflow Vulnerability – Patch NowOpen-Source ClamAV Releases Security Update for Buffer Overflow Vulnerability – Patch Now

Open-Source ClamAV Releases Security Update for Buffer Overflow Vulnerability – Patch Now

ClamAV, a widely used open-source antivirus software, has released security patch updates to address a critical buffer overflow vulnerability (CVE-2025-20128).…

2 months ago
WordPress Plugin Vulnerability Exposes 23k+ Websites to HackingWordPress Plugin Vulnerability Exposes 23k+ Websites to Hacking

WordPress Plugin Vulnerability Exposes 23k+ Websites to Hacking

Researchers from Patchstack have warned that over 23,000 real estate websites using the popular RealHomes WordPress theme and its bundled…

2 months ago
Cisco Warns of Meeting Management API Privilege Escalation VulnerabilityCisco Warns of Meeting Management API Privilege Escalation Vulnerability

Cisco Warns of Meeting Management API Privilege Escalation Vulnerability

Cisco has issued a critical advisory regarding a privilege escalation vulnerability in its Meeting Management REST API. The flaw tracked…

2 months ago
SQL Injection Vulnerability in Microsoft’s DevBlogs Lets Hackers Injecting Malicious SQLSQL Injection Vulnerability in Microsoft’s DevBlogs Lets Hackers Injecting Malicious SQL

SQL Injection Vulnerability in Microsoft’s DevBlogs Lets Hackers Injecting Malicious SQL

In a recent discovery, a security researcher uncovered a critical SQL injection vulnerability on Microsoft’s DevBlogs website (accessible at https://devblogs.microsoft.com). This…

2 months ago
Security Researchers Discover Critical RCE Vulnerability, Earned $40,000 BountySecurity Researchers Discover Critical RCE Vulnerability, Earned $40,000 Bounty

Security Researchers Discover Critical RCE Vulnerability, Earned $40,000 Bounty

Cybersecurity researchers Abdullah Nawaf and Orwa Atyat, successfully escalated a limited path traversal vulnerability into a full-blown remote code execution…

2 months ago
PoC Exploit Released for TP-Link Code Execution Vulnerability(CVE-2024-54887)PoC Exploit Released for TP-Link Code Execution Vulnerability(CVE-2024-54887)

PoC Exploit Released for TP-Link Code Execution Vulnerability(CVE-2024-54887)

A security researcher, exploring reverse engineering and exploit development, has successfully identified a critical vulnerability in the TP-Link TL-WR940N router,…

2 months ago
Brave Browser Vulnerability Allows Malicious Website Appears as Trusted OneBrave Browser Vulnerability Allows Malicious Website Appears as Trusted One

Brave Browser Vulnerability Allows Malicious Website Appears as Trusted One

A security vulnerability has been identified in Brave Browser, potentially allowing malicious websites to masquerade as trusted ones during file…

2 months ago