Read Latest

Articles

Practical cybersecurity intelligence for defenders.

🔴
CVE & Security Advisories
Latest vulnerability advisories from CISA, NVD, and security feeds →
All Cyber News Supply Chain Security Threat Intelligence Vulnerability Management
Vulnerability Management

Ghost CMS SQL Injection Flaw Exploited in Large-Scale ClickFix Campaign

The vulnerability, tracked as CVE-2026-26980, affects Ghost CMS versions 3.24.0 through 6.19.0 and enables unauthenticated attackers to extract sensitive database content, including administrative API keys.

Read Full Article
Vulnerability Management

Microsoft Patches SharePoint RCE Flaw CVE-2026-45659 Across Server Versions

Microsoft has rolled out updates to fix a remote code execution vulnerability impacting SharePoint that could be exploited by bad actors in attacks without requiring any specialized conditions to be met. The vulnerability, tracked as CVE-2026-45659, carries a CVSS score of 8.8. It has been assigned an important severity.

Read Full Article
📘
Vulnerability Management

Microsoft Patches Defender Privilege Escalation Zero-Day CVE-2026-41091

Microsoft has patched CVE-2026-41091, a privilege escalation vulnerability affecting Microsoft Defender that was actively exploited in the wild to gain SYSTEM privileges on Windows systems.

Read Full Article