The code injection flaw is similar to a prior vulnerability that was immediately flagged in January.
Browsing: Flaw
Ravie LakshmananApr 09, 2026Vulnerability / Mobile Security Details have emerged about a now-patched security vulnerability in a widely used third-party…
A critical vulnerability in the Ninja Forms File Uploads premium add-on for WordPress allows uploading arbitrary files without authentication, which…
Summary Flatpak 1.16.4 fixes a sandbox escape allowing host file access and code execution. Also blocks arbitrary file deletion and…
Fortinet released an emergency hotfix after security researchers discovered the vulnerability being exploited as a zero-day.
Fortinet has released an emergency weekend security update for a new critical FortiClient Enterprise Management Server (EMS) vulnerability that is…
The company revised a security advisory as newly disclosed information heightens the potential impact.
A high-severity vulnerability in StrongSwan’s EAP-TTLS AVP parser could be exploited remotely, without authentication, to take VPN services offline. An…
UPDATEA storm is brewing over a purported critical Telegram Messenger flaw that allows for full system hijack, with full details…
A previously unknown vulnerability in OpenAI ChatGPT allowed sensitive conversation data to be exfiltrated without user knowledge or consent, according…