Coverage
Vulnerabilities
725 articles on vulnerability disclosures and exploits
Advertisement
CVE-2026-8732: WP Maps Pro Admin Creation Vulnerability Exploited
Critical vulnerability [CVE-2026-8732] in WP Maps Pro allows unauthenticated attackers to create admin accounts, leading to WordPress site takeovers. Patch immediately.
CVE-2024-21182: Oracle WebLogic Server Under Active Exploitation
CISA added CVE-2024-21182, an unspecified vulnerability in Oracle WebLogic Server, to its KEV Catalog due to active exploitation. Immediate patching required.
AI Reshapes Vulnerability Disclosure: Urgent Action for Remediation
AI models accelerate vulnerability discovery, challenging traditional disclosure. Urgent action is needed for accelerated remediation, patch management, and
_Sergey_Tarasov_Alamy.png?width=1280&auto=webp&quality=80&disable=upscale)
Palo Alto PAN-OS GlobalProtect VPN: Active Auth Bypass Exploitation
Urgent advisory on the active exploitation of an authentication bypass vulnerability affecting Palo Alto Networks PAN-OS GlobalProtect VPN. Patch immediately.
CVE-2026-41089: Critical Windows Netlogon Vulnerability Under Attack
Attackers are actively targeting CVE-2026-41089, a critical Windows Netlogon RCE vulnerability. Immediate patching and log monitoring are required.
CVE-2020-1472: How Attackers Exploit Windows Netlogon RCE — Patch Now
Threat actors are actively exploiting Zerologon (CVE-2020-1472), a critical Windows Netlogon RCE vulnerability that allows for full domain takeover.
Closing the Window: Why Faster Vulnerability Alerts are Critical
Attackers exploit vulnerabilities faster than ever. Learn why reducing the window of exposure through automated alerts is essential for modern cybersecurity.
PAN-OS Exploitation and Linux Auth Flaws: Weekly Threat Recap
An analysis of active PAN-OS exploitation, a new Linux authentication flaw, and the rise of AI-powered OAuth phishing kits targeting enterprise environments.
WP Maps Pro Flaw Exploited for Admin Account Creation — Patch Now
Attackers are actively exploiting a critical vulnerability in the WP Maps Pro WordPress plugin to create unauthorized administrator accounts on affected sites.
CVE-2024-10642: WP Maps Pro Exploited to Create WordPress Admin Accounts
Attackers are exploiting a critical privilege escalation flaw in the WP Maps Pro WordPress plugin to create rogue admin accounts without authentication.
CVE-2024-5910: Palo Alto GlobalProtect Auth Bypass Exploited - Patch Now
Palo Alto Networks warns that attackers are exploiting CVE-2024-5910, a critical authentication bypass in GlobalProtect gateway. Learn how to secure your PAN-OS.
Flowise RCE via CVE-2024-31621 — Mitigation Guide
Exploit code is public for a critical RCE vulnerability in Flowise. Attackers use malicious chatflow imports to compromise self-hosted servers.