CVE ID :CVE-2026-34659 Published : May 12, 2026, 7:16 p.m. | 36 minutes ago Description :Adobe Connect versions 2025.9.15, 2025.8.157 and earlier are affected by a Deserialization of Untrusted Data vulnerability that could result in arbitrary code execution in the context…
CVE ID :CVE-2026-7790 Published : May 11, 2026, 7:16 p.m. | 28 minutes ago Description :Uncontrolled Resource Consumption vulnerability in ninenines cowlib (cow_http_te module) allows Excessive Allocation. The chunked transfer-encoding parser in cow_http_te accepts an unbounded number of hex digits in…
CVE ID :CVE-2026-45223 Published : May 11, 2026, 7:16 p.m. | 28 minutes ago Description :Crabbox before 0.9.0 contains an authentication bypass vulnerability in the coordinator user-token verification path where the verifyUserToken() function fails to reject payloads containing an admin claim,…
CVE ID :CVE-2026-42864 Published : May 11, 2026, 7:16 p.m. | 28 minutes ago Description :FireFighter is an incident management application. Prior to 0.0.54, the POST /api/v2/firefighter/raid/jira_bot endpoint (CreateJiraBotView) is reachable without authentication (permission_classes = [permissions.AllowAny]). Its attachments payload is fetched…
Checkmarx has confirmed that a modified version of the Jenkins AST plugin was published to the Jenkins Marketplace. “If you are using Checkmarx Jenkins AST plugin, you need to ensure that you are using the version 2.0.13-829.vc72453fa_1c16 that was published…
CVE ID :CVE-2026-4892 Published : May 11, 2026, 6:16 p.m. | 1 hour, 28 minutes ago Description :A heap-based out-of-bounds write vulnerability in the DHCPv6 implementation of dnsmasq allows local attackers to execute arbitrary code with root privileges via a crafted DHCPv6…
India's DPDPA implementation clock is ticking. Six months in, many organizations still misunderstand what operational readiness actually requires - and the gap is cultural as much as technical.
Attackers are abusing Google Ads and legitimate Claude.ai shared chats in an active malvertising campaign. Users searching for “Claude mac download” may come across sponsored search results that list claude.ai as the target website, but lead to instructions that install…
German authorities have shut down a relaunch version of the criminal marketplace ‘Crimenetwork’ that generated more than 3.6 million euros, and arrested its operator. […] To Read More Visit Read More
CVE ID :CVE-2022-50944 Published : May 10, 2026, 1:16 p.m. | 4 hours, 3 minutes ago Description :Aero CMS 0.0.1 contains a PHP code injection vulnerability that allows authenticated attackers to execute arbitrary PHP code by uploading malicious files through the image…