Technology ❯ Cybersecurity ❯ Incident Response ❯ Vulnerability Management

Patch Management

Unpatched Gogs Zero-Day Lets Low-Privilege Users Execute Code on Exposed Servers

Exploit code was published on May 28 and many default-configured, internet-facing instances remain exposed, raising immediate risk to hosted repositories and credentials.

3 ARTICLES

last mo.

Active Attacks Hit SolarWinds Web Help Desk, Abusing Zoho ManageEngine and Velociraptor

5 ARTICLES

4mo ago

Public Exploits Detail n8n Sandbox Escape That Lets Workflow Users Take Over Servers

11 ARTICLES

6mo ago

CISA Orders Federal Agencies to Patch Actively Exploited MongoDB ‘MongoBleed’ Flaw

11 ARTICLES

6mo ago

React2Shell Attacks Intensify as React Issues Second Round of Emergency Patches

12 ARTICLES

6mo ago

React2Shell Exploited at Scale as CISA Sets Dec. 26 Patch Deadline and Breaches Mount

3 ARTICLES

6mo ago

WordPress King Addons Flaw Actively Exploited to Create Admin Accounts

8 ARTICLES

7mo ago

Fortinet Confirms Critical FortiWeb Zero-Day Is Being Exploited as CISA Sets Nov. 21 Patch Deadline

4 ARTICLES

8mo ago

Active Exploits Target Gladinet CentreStack and TrioFox Zero-Day That Can Lead to RCE

5 ARTICLES

10mo ago

HTTP/2 MadeYouReset Flaw Exposes Servers to DoS Attacks

13 ARTICLES

10mo ago

WinRAR Issues Patch for Zero-Day Exploited by Two Russia-Aligned Groups

Patch Management

Unpatched Gogs Zero-Day Lets Low-Privilege Users Execute Code on Exposed Servers

Nine-Year Linux Kernel Flaw Lets Local Users Steal SSH Keys and Gain Root

Google Patches Critical Android Zero-Click Flaw in Wireless ADB

Google Strikes Pentagon Deal To Run Gemini on Classified Networks

Google Patches Antigravity Flaw That Let Prompt Injection Break the Sandbox

Microsoft Defender Zero-Days Are Being Exploited as Two Remain Unpatched

Hackers Exploit Critical Ninja Forms File Uploads Flaw to Seize WordPress Sites

Active Attacks Hit SolarWinds Web Help Desk, Abusing Zoho ManageEngine and Velociraptor

Public Exploits Detail n8n Sandbox Escape That Lets Workflow Users Take Over Servers

CISA Orders Federal Agencies to Patch Actively Exploited MongoDB ‘MongoBleed’ Flaw

Never miss stories about

Patch Management

React2Shell Attacks Intensify as React Issues Second Round of Emergency Patches

React2Shell Exploited at Scale as CISA Sets Dec. 26 Patch Deadline and Breaches Mount

WordPress King Addons Flaw Actively Exploited to Create Admin Accounts

Fortinet Confirms Critical FortiWeb Zero-Day Is Being Exploited as CISA Sets Nov. 21 Patch Deadline

Active Exploits Target Gladinet CentreStack and TrioFox Zero-Day That Can Lead to RCE

HTTP/2 MadeYouReset Flaw Exposes Servers to DoS Attacks

WinRAR Issues Patch for Zero-Day Exploited by Two Russia-Aligned Groups

Never miss stories about

Patch Management