A critical CVSS 9.2 flaw in AdonisJS bodyparser lets attackers write arbitrary files via path traversal when uploads are ...

GCC banks that bring the same strategic focus to APIs and their security will not only reduce cyber risk but also accelerate ...

Tens of thousands of internet-exposed MongoDB databases are at risk as attackers actively target a critical vulnerability in ...

In its writeup, BleepingComputer confirms that there are roughly 87,000 potentially vulnerable instances exposed on the ...

Weirdly, a public exploit and technical details are available online, showing how attackers can trigger the vulnerability and remotely extract secrets, credentials, and other sensitive data.

Security researchers uncovered a range of cyber issues targeting AI systems that users and developers should be aware of — ...

A severe vulnerability affecting multiple MongoDB versions, dubbed MongoBleed (CVE-2025-14847), is being actively exploited ...

CVE-2025-55182 (also referred to as React2Shell and includes CVE-2025-66478, which was merged into it) is a critical pre-authentication remote code execution (RCE) vulnerability affecting React Server ...

Apple today released iOS 26.2, iPadOS 26.2, and macOS 26.2, all of which introduce new features, bug fixes, and security improvements. Apple says that the updates address over 20 vulnerabilities, ...

Google has published the December 2025 Security Bulletin, revealing a long list of severe vulnerabilities in Android. These issues are expected to be patched with device-specific security updates ...

Users of Dell systems are currently at considerable risk: a “high impact” vulnerability (CVE-2025-46430) has been identified in Dell’s Display and Peripherals Manager (DDPM). According to Dell, ...

What we know so far: AMD has revealed that its Zen 5 processors are affected by a critical security vulnerability that compromises the reliability of their hardware-based random number generator, ...