CBSE has migrated Class 12 evaluation data from Coempt Edu Teck to government servers in New Delhi after student complaints and security flaws exposed by hacker Nisarga Adhikary.
A security researcher found a flaw in Anthropic's Claude Code GitHub Action that let an attacker take over vulnerable public repositories running it, with nothing more than a single opened GitHub ...
Two months after Rapid7 discovered the hole in the Git service, the project maintainer has yet to patch the bug. A newly discovered and so far unpatched critical vulnerability in the open source Gogs ...
A max-severity vulnerability in the latest Python FastAPI version of the ChromaDB project allows unauthenticated attackers to run arbitrary code on exposed servers. The flaw is tracked as ...
Palo Alto Networks warns that its widely deployed firewalls are under attack with hackers exploiting a critical zero-day vulnerability. Unauthenticated attackers can achieve remote code execution with ...
A critical vulnerability in the Cline Kanban server has been disclosed that allows any website a developer visits to silently exfiltrate workspace data, inject commands into the AI agent's terminal or ...
Ollama accepts requests without authentication, and 300,000 servers are sitting ducks. A new critical vulnerability allows hackers to leak server memory storing API keys, environment variables, system ...
Fortinet customers have been urged to update their FortiClient Enterprise Management Server (EMS) products after the vendor was forced to issue an emergency patch over the weekend. CVE-2026-35616 is a ...
The vulnerabilities can be chained together to bypass authentication and upload arbitrary files to the server. Two critical-severity vulnerabilities in the ShareFile content collaboration and ...
This module exploit an unauthenticated RCE vulnerability which exists in Apache version 2.4.49 (CVE-2021-41773). If files outside of the document root are not ...