CVE-2025-8088, a WinRAR vulnerability patched in July 2025, has been widely exploited by state-sponsored threat actors and cybercriminals.
Google confirms nation-state and cybercrime groups exploit a patched WinRAR flaw to gain persistence and deploy malware via ...
A flaw in the binary-parser npm package before version 2.3.0 lets attackers execute arbitrary JavaScript via unsanitized parser input.
A critical-severity vulnerability in the vm2 Node.js sandbox library, tracked as CVE-2026-22709, allows escaping the sandbox and executing arbitrary code on the underlying host system.
Exploit code has been published for CVE-2025-64155, a critical command injection vulnerability affecting Fortinet FortiSIEM ...
To exploit the vulnerability, an attacker would need either system access or be able to convince a user to open a malicious ...
January 2026 was a wake-up month for enterprise security teams. In a single week, CERT-In released three high-severity ...
Just yesterday, we noted the growing threat of ransomware. Now, Jamf Threat Labs is warning that North Korean threat actors ...
Technical details and a public exploit have been published for a critical vulnerability affecting Fortinet's Security ...
The patched issues span core standard library components including archive/zip and net/http, as well as security-sensitive ...
Vulnerabilities in Anthropic MCP server could be exploited via prompt injections to execute arbitrary code and read/delete arbitrary files.
7d
Anthropic’s official Git MCP server hit by chained flaws that enable file access and code execution
Anthropic’s official Git MCP server hit by chained flaws that enable file access and code execution - SiliconANGLE ...
Some results have been hidden because they may be inaccessible to you
Show inaccessible results