MetInfo CMS flaw CVE-2026-29014 exploited after April 7 patch, enabling remote code execution and targeting 2,000 instances.

"A buffer overflow vulnerability in the User-ID Authentication Portal (aka Captive Portal) service of Palo Alto Networks ...

Critical flaws affecting core components and extensions in PostgreSQL and MariaDB could allow remote code execution. The bugs ...

A critical vulnerability in the popular Node.js sandboxing library vm2 allows escaping the sandbox and executing arbitrary ...

Security researchers warn that a vulnerability in the widely used Gemini CLI could allow remote code execution in CI/CD ...

The now‑patched flaw allowed authenticated users to execute arbitrary code via crafted git push requests, affecting ...

GitHub has patched a high-severity remote code execution vulnerability that allowed anyone with push access to a private ...

The Ruby vulnerability is not easy to exploit, but allows an attacker to read sensitive data, start code, and install backdoors.

Incomplete patch for a Windows SmartScreen and Windows Shell security prompts bypass created a new bug enabling zero-click ...

The update was announced to all admins via email; they should apply it promptly. Code injection is a risk. As announced on Monday, the n8n team has now released three new versions for its popular ...

Hackers started exploiting a critical vulnerability in the Marimo open-source reactive Python notebook platform just 10 hours after its public disclosure. The flaw allows remote code execution without ...

Just like GPS killed the need to memorize maps, AI has turned elite hacking into a "point-and-click" tool that anyone can use ...