Flash Notices (3)

Flash Notice: CVE-2025-23209 - Craft CMS Code Injection Vulnerability Analysis and Mitigation

CVE-2025-23209 is a high-severity code injection vulnerability in Craft CMS that can lead to remote code execution (RCE).

Flash Notice: CVE-2025-24989 - Microsoft Power Pages Improper Access Control Vulnerability

CVE-2025-24989 is a critical improper access control vulnerability in Microsoft Power Pages, a low-code SaaS platform for creating/managing business sites.

Flash Notice: CVE-2025-24472 Actively Exploited - Patch and Manage

CVE-2025-24472 is a high-severity authentication bypass vulnerability affecting Fortinet's FortiOS and FortiProxy products.

Flash Notice: Publicly Disclosed Windows Zero-Days

Microsoft’s latest report from Patch Tuesday highlighted fixes for a significant number of vulnerabilities, two of which are new zero-day vulnerabilities.

Flash Notice: Actively Exploited Windows Zero-Days

Microsoft’s latest report from Patch Tuesday highlights fixes for a significant number of vulnerabilities, two of which are under active exploitation.

Flash Notice: CVE-2025-21298 Zero-Click Vulnerability - Patch and Monitor

CVE-2025-21298 is a critical zero-click vulnerability in Windows Object Linking & Embedding (OLE) tech, which allows for RCE via specially crafted emails.

Flash Notice: CVE-2024-21672 Remote Code Execution Vulnerability - Patch and Monitor

CVE-2024-21672 is a high-severity Remote Code Execution (RCE) vulnerability affecting Atlassian Confluence Data Center and Server.

Flash Notice: CVE-2024-55591 Actively Exploited - Patch and Manage

CVE-2024-55591 is a critical authentication bypass vulnerability being actively exploited in Fortinet's FortiOS and FortiProxy products.

Flash Notice: CVE-2024-50623 Actively Exploited - Patch and Scan

CVE-2024-50623 is a critical vulnerability in Cleo's file transfer products, allowing unauthenticated RCE through unrestricted file upload and download.

Flash Notice: Apache Tomcat and Traffic Control Vulnerability - PATCH NOW!

This week the Apache Software Foundation shipped security updates for the Apache Tomcat web server software and Apache Traffic Control.

Prev 1 2 3 4 5 Next