Technology ❯ Cybersecurity ❯ Incident Response

Vulnerability Management

Patch Management Security Patches Citrix NetScaler Qualys Solutions Firmware Updates Threat Detection Hotfix Deployment Container Security CVE-2025-11953 Security Updates

Hackers Exploit Critical Ninja Forms File Uploads Flaw to Seize WordPress Sites

Unpatched sites face fast takeover because attackers can plant PHP files through a path traversal gap.

CISA Orders Rapid Fix for Actively Exploited Fortinet EMS Zero-Day

Citrix Patches Critical NetScaler Memory-Leak Flaw and Session Mixup Bug

Attackers Exploit Critical Langflow RCE Within 20 Hours of Disclosure

Qualys Discloses 'CrackArmor' Flaws in Linux AppArmor Exposing Root and Container Escapes

New Analysis Disputes Claims of Pre-Disclosure Telnet Blocking

Active Attacks Hit SolarWinds Web Help Desk, Abusing Zoho ManageEngine and Velociraptor

CISA Flags SmarterMail RCE as Ransomware Target, Sets Feb. 26 Patch Deadline

CISA Says VMware ESXi Escape Flaw Now Used in Ransomware Attacks

Public Exploits Detail n8n Sandbox Escape That Lets Workflow Users Take Over Servers

Hackers Actively Exploit 'Metro4Shell' CVE-2025-11953 in React Native Metro Servers

OpenSSL Patches 12 Flaws Found by AISLE in Coordinated January Update

Active Attacks Target Critical Vulnerability in Legacy D-Link DSL Routers

CISA Orders Federal Agencies to Patch Actively Exploited MongoDB ‘MongoBleed’ Flaw

React2Shell Attacks Intensify as React Issues Second Round of Emergency Patches

WordPress King Addons Flaw Actively Exploited to Create Admin Accounts

‘HashJack’ Exposes AI Browser Weakness as Microsoft and Perplexity Patch, Google Declines

Fortinet Confirms Critical FortiWeb Zero-Day Is Being Exploited as CISA Sets Nov. 21 Patch Deadline

Active Exploits Target Gladinet CentreStack and TrioFox Zero-Day That Can Lead to RCE

Nx npm Packages Compromised in 'S1ngularity' Attack With Second-Wave Exploitation Emerging