CVE-2026-23111: Linux nf_tables Flaw Enables Root Exploits
CVE-2026-23111: Linux nf_tables Flaw Enables Root Exploits Pierluigi Paganini June 09, 2026 A Linux kernel nf_tables bug lets local users...
flaw
Everest Forms Pro WordPress Flaw is Handing Attackers Admin Access
Everest Forms Pro WordPress Flaw is Handing Attackers Admin Access Pierluigi Paganini June 08, 2026 Hackers exploit CVE-2026-3300 in Everest...
Meta AI Recovery Tool Flaw Exposed 20,000+ Instagram Accounts
Meta AI Recovery Tool Flaw Exposed 20,000+ Instagram Accounts Pierluigi Paganini June 08, 2026 A flaw in Meta’s AI-powered Instagram...
U.S. CISA adds SolarWinds Serv-U flaw to its Known Exploited Vulnerabilities catalog
U.S. CISA adds SolarWinds Serv-U flaw to its Known Exploited Vulnerabilities catalog Pierluigi Paganini June 06, 2026 U.S. Cybersecurity and...
Cisco Catalyst SD-WAN Manager CVE-2026-20245 Flaw Actively Exploited – No Patch Available
Ravie LakshmananJun 06, 2026Vulnerability / Network Security Cisco has warned that a high-severity security flaw impacting Catalyst SD-WAN Manager has...
Hackers Exploit Critical Everest Forms Pro WordPress Plugin Flaw to Take Over Sites
Threat actors are actively exploiting a critical security flaw in Everest Forms Pro, a WordPress plugin with about 4,000 active...
Claude Code GitHub Action Flaw Let One Malicious Issue Hijack Repositories
Swati KhandelwalJun 04, 2026Vulnerability / AI Security A security researcher found a flaw in Anthropic's Claude Code GitHub Action that...
Google Patches Actively Exploited Android Flaw Affecting Millions of Devices
Google Patches Actively Exploited Android Flaw Affecting Millions of Devices Pierluigi Paganini June 03, 2026 Google fixed 124 Android flaws,...
U.S. CISA adds Oracle WebLogic flaw to its Known Exploited Vulnerabilities catalog
U.S. CISA adds Oracle WebLogic flaw to its Known Exploited Vulnerabilities catalog Pierluigi Paganini June 02, 2026 U.S. Cybersecurity and...
CVE-2026-8732: The WP Maps Pro Flaw That Lets Anyone Create a WordPress Admin Without a Password
CVE-2026-8732: The WP Maps Pro Flaw That Lets Anyone Create a WordPress Admin Without a Password Pierluigi Paganini June 01,...
U.S. CISA adds Palo Alto Networks PAN-OS flaw to its Known Exploited Vulnerabilities catalog
U.S. CISA adds Palo Alto Networks PAN-OS flaw to its Known Exploited Vulnerabilities catalog Pierluigi Paganini June 01, 2026 U.S....
Microsoft SharePoint Has a New RCE Flaw. If You Haven’t Patched Yet, Go Do That.
Microsoft SharePoint Has a New RCE Flaw. If You Haven’t Patched Yet, Go Do That. Pierluigi Paganini May 27, 2026...
Gitea Vulnerability Exposes Private Container Images without Authentication
Ravie LakshmananMay 27, 2026Vulnerability / Software Security Cybersecurity researchers have disclosed a security flaw in Gitea, an open-source, self-hosted platform...
KnowledgeDeliver LMS Flaw Exploited to Deploy Godzilla and Cobalt Strike
Ravie LakshmananMay 26, 2026Vulnerability / Threat Intelligence A now-patched high-severity security flaw affecting Digital Knowledge KnowledgeDeliver, a Learning Management System...
Ghost CMS flaw abused to push ClickFix attacks on hundreds of sites
Ghost CMS flaw abused to push ClickFix attacks on hundreds of sites Pierluigi Paganini May 25, 2026 Threat actors are...