attack_Feed
Vulnerability Alerts

Vulnerability Alerts

CVEs, zero-days, exploits, and security advisories

All FeedsAttack & NewsGov Alerts / ISACVulnerability AlertsPrivacy & GovernanceFraud & Scams
363 articles
EX
VULNExploit-DB27 days ago

[local] Windows Snipping Tool - NTLMv2 Hash Hijack

EX
VULNExploit-DB28 days ago

[webapps] WordPress Plugin Supsystic Contact Form 1.7.36 - SSTI

EX
VULNExploit-DB28 days ago

[webapps] Apache HertzBeat 1.8.0 - Remote Code Execution

EX
VULNExploit-DB28 days ago

[webapps] ePati Antikor NGFW 2.0.1301 - Authentication Bypass

EX
VULNExploit-DB28 days ago

[webapps] PJPROJECT 2.16 - Heap Bufferoverflow

VULNCheck Point Research28 days ago

Thus Spoke…The Gentlemen

VULNhighGoogle Project Zero29 days ago

A 0-click exploit chain for the Pixel 10: When a Door Closes, a Window Opens

EX
VULNExploit-DB29 days ago

[webapps] Ninja Forms Uploads - Unauthenticated PHP File Upload

EX
VULNExploit-DB29 days ago

[webapps] glances 4.5.2 - command injection

VULNhighZero Day Initiative30 days ago

ZDI-26-309: Microsoft Windows Message Queueing Double Free Local Privilege Escalation Vulnerability

VULNhighZero Day Initiative30 days ago

ZDI-26-317: Siemens Simcenter Femap IPT File Parsing Memory Corruption Remote Code Execution Vulnerability

VULNhighZero Day Initiative30 days ago

ZDI-26-315: Apple macOS USD Out-Of-Bounds Read Information Disclosure Vulnerability

VULNhighZero Day Initiative30 days ago

ZDI-26-314: Apple macOS USD File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability

VULNhighZero Day Initiative30 days ago

ZDI-26-316: Siemens Simcenter Femap IPT File Parsing Memory Corruption Remote Code Execution Vulnerability

VULNhighZero Day Initiative30 days ago

ZDI-26-310: Microsoft Windows splwow64 Race Condition Local Privilege Escalation Vulnerability

VULNhighZero Day Initiative30 days ago

ZDI-26-313: Apple Safari Regular Expression Duplicate Named Groups Heap-based Buffer Overflow Remote Code Execution Vulnerability

VULNhighZero Day Initiative30 days ago

ZDI-26-308: Ivanti Endpoint Manager RemoteControlAuth Exposed Dangerous Method Information Disclosure Vulnerability

VULNhighZero Day Initiative30 days ago

ZDI-26-312: Apple Safari Web Inspector WebCore Style Resolver Use-After-Free Remote Code Execution Vulnerability

VULNhighZero Day Initiative30 days ago

ZDI-26-311: Apple macOS CoreSymbolication Out-Of-Bounds Read Information Disclosure Vulnerability

VULNPalo Alto Unit 42about 1 month ago

Inside AD CS Escalation: Unpacking Advanced Misuse Techniques and Tools

VULNhighMandiantabout 1 month ago

GTIG AI Threat Tracker: Adversaries Leverage AI for Vulnerability Exploitation, Augmented Operations, and Initial Access

VULNCheck Point Researchabout 1 month ago

11th May – Threat Intelligence Report

VULNCheck Point Researchabout 1 month ago

The State of Ransomware – Q1 2026

VULNcriticalPalo Alto Unit 42about 1 month ago

Threat Brief: Exploitation of PAN-OS Captive Portal Zero-Day for Unauthenticated Remote Code Execution

VULNPalo Alto Unit 42about 1 month ago

Copy Fail: What You Need to Know About the Most Severe Linux Threat in Years

VULNCheck Point Researchabout 1 month ago

4th May – Threat Intelligence Report

VULNPalo Alto Unit 42about 1 month ago

Essential Data Sources for Detection Beyond the Endpoint

VULNhighZero Day Initiativeabout 1 month ago

ZDI-26-307: FlowiseAI Flowise Airtable_Agent Code Injection Remote Code Execution Vulnerability

VULNPalo Alto Unit 42about 1 month ago

That AI Extension Helping You Write Emails? It’s Reading Them First

VULNhighwatchTowr Labsabout 1 month ago

The Internet Is Falling Down, Falling Down, Falling Down (cPanel & WHM Authentication Bypass CVE-2026-41940)