Coverage
Vulnerabilities
754 articles on vulnerability disclosures and exploits
Advertisement
n8n RCE via CVE-2025-68613 — CISA Flags Active Exploitation
CISA adds CVE-2025-68613 to its KEV catalog after reports of active exploitation against n8n workflow automation instances. Patch now to prevent RCE.
IoT Default Credentials: Preventing Unauthorized Admin Access
The SANS ISC highlights the persistent threat of IoT devices compromised by default admin credentials. Learn critical steps to secure your smart devices.
CVE-2024-21410: Protect Microsoft Exchange from NTLM Relay Attacks
Deep dive into CVE-2024-21410, a critical privilege escalation vulnerability in Microsoft Exchange. Learn how to detect exploits and implement EPA mitigations.
CVE-2025-68613: n8n Improper Code Control — Actively Exploited
CISA adds CVE-2025-68613, an n8n vulnerability involving improper control of dynamically-managed code, to its KEV Catalog due to active exploitation. Immediate patching
Elementor Ally Plugin SQLi: Unauthenticated Data Theft Risk
An unauthenticated SQL injection vulnerability in the Elementor Ally WordPress plugin affects over 400,000 sites, risking sensitive data exposure.
n8n RCE Vulnerabilities CVE-2026-27577 and CVE-2026-27493 - Patch Now
Critical vulnerabilities in the n8n workflow automation platform allow unauthenticated remote code execution and sandbox escapes. Update instances immediately.
CVE-2026-0866: Mitigating Zombie Zip File Evasion Techniques
Technical analysis of CVE-2026-0866 'Zombie Zip' exploitation. Learn how archive header discrepancies bypass security scanners and how to defend your perimeter.
Vulnerability Management Optimization in the Agentic Era
Analyze the shift from periodic scanning to continuous telemetry and AI-driven agentic remediation to scale vulnerability management programs effectively.
Fortinet, Ivanti, and Intel Patch High-Severity RCE Vulnerabilities
Fortinet, Ivanti, and Intel have issued patches for high-severity vulnerabilities in FortiClient, ICS gateways, and various hardware drivers.
Microsoft March Patch Tuesday: 84 Flaws Fixed Including Public Zero-Days
Microsoft releases March security updates for 84 vulnerabilities, including 8 Critical flaws and 2 public zero-days. Patch now to prevent RCE and privilege escalation.
March 2026 Patch Tuesday: 8 Critical RCE Flaws and 82 CVEs Fixed
Microsoft addresses 82 vulnerabilities in the March 2026 Patch Tuesday update, including 8 critical RCE flaws and 2 public disclosures across Windows and Office.
ICS Patch Tuesday: Siemens, Schneider, Moxa Fix Critical Flaws
Industrial leaders Siemens, Schneider Electric, Moxa, and Mitsubishi Electric address over 40 vulnerabilities in critical ICS hardware and software components.