attack_Feed
Vulnerability Alerts

Vulnerability Alerts

CVEs, zero-days, exploits, and security advisories

All FeedsAttack & NewsGov Alerts / ISACVulnerability AlertsPrivacy & GovernanceFraud & Scams
361 articles
EX
VULNExploit-DB3 days ago

[webapps] OpenEMR 7.0.2 - Arbitrary File Read

VULNMandiant5 days ago

Seeking Counsel: Ongoing Targeted Campaign Against US Law Firms

VULNhighFull Disclosure6 days ago

[REVIVE-SA-2026-002] Revive Adserver Vulnerabilities

EX
VULNExploit-DB6 days ago

[webapps] WordPress Contest Gallery 28.1.4 - Unauthenticated Blind SQL Injection

VULNhighZero Day Initiative7 days ago

ZDI-26-330: (Pwn2Own) Microsoft Edge Navigation Handling Universal Cross-Site Scripting Vulnerability

VULNhighZero Day Initiative7 days ago

ZDI-26-329: (Pwn2Own) Microsoft Edge Origin Validation Error Security Bypass Vulnerability

VULNhighZero Day Initiative7 days ago

ZDI-26-328: ASUS Business Manager Service Client-Side Authentication Local Privilege Escalation Vulnerability

VULNhighZero Day Initiative7 days ago

ZDI-26-331: (Pwn2Own) Microsoft Edge Feedback Log File Handling Directory Traversal Remote Code Execution Vulnerability

VULNhighCheck Point Research7 days ago

Impersonation, Click Hijacking, and TDS: Inside a Malware Distribution Ecosystem

VULNhighZero Day Initiative8 days ago

ZDI-26-327: Docker Desktop grpcfuse Kernel Module Uncontrolled Recursion Denial-of-Service Vulnerability

VULNPalo Alto Unit 428 days ago

The npm Threat Landscape: Attack Surface and Mitigations (Updated June 2)

VULNhighPalo Alto Unit 428 days ago

Operation FlutterBridge: macOS Malvertising Campaign Spreads New FlutterShell Backdoor

VULNCheck Point Research9 days ago

1st June – Threat Intelligence Report

VULNhighFull Disclosure10 days ago

CyberDanube Security Research 20260528-0 | Multiple Vulnerabilities in Multiple Vulnerabilities in Mennekes Amtron Series

VULNhighFull Disclosure10 days ago

bmcweb (OpenBMC web server): four vulnerabilities — two unfixed, GHSA without a CVE

EX
VULNExploit-DB10 days ago

[webapps] Drupal Core 10.5.5 - Error-Based SQL Injection

EX
VULNExploit-DB10 days ago

[webapps] WordPress OrderConvo 14 - Path Traversal

EX
VULNExploit-DB12 days ago

[webapps] YAMCS yamcs-core 5.12.7 - No Rate Limiting

EX
VULNExploit-DB12 days ago

[webapps] YAMCS yamcs-core 5.12.7 - User Enumeration

EX
VULNExploit-DB12 days ago

[webapps] YAMCS yamcs-core 5.12.7 - LDAP Injection

EX
VULNExploit-DB12 days ago

[remote] Notepad++ 8.9.6 - Arbitrary Code Execution

EX
VULNExploit-DB13 days ago

[remote] Microsoft - NTLMv2 Hash Capture

EX
VULNExploit-DB13 days ago

[webapps] MikroORM 7.0.13 - SQL Injection

EX
VULNExploit-DB13 days ago

[webapps] Prodigy Commerce 3.3.0 - Local File Inclusion

EX
VULNExploit-DB13 days ago

[webapps] Langflow 1.3.0 - Remote Code Execution

EX
VULNExploit-DB13 days ago

[webapps] Quick Playground for WordPress 1.3.1 - Unauthenticated Remote Code Execution

EX
VULNExploit-DB13 days ago

[local] ImageMagick - Infinite Loop in the MIFF decoder can lead to CPU exhaustion

EX
VULNExploit-DB13 days ago

[local] ZTE Routers - Unauthenticated Denial of Service

EX
VULNExploit-DB13 days ago

[local] ZTE ZXHN H188A V6 - Authentication Bypass

EX
VULNExploit-DB13 days ago

[local] ZTE H298A / H108N - Unauthenticated Credential Exposure