Zyxel, a communications company, has released an advisory warning users of a critical input validation vulnerability impacting many of its…
Apache just patched a critical vulnerability (christened CVE-2024-38856) in OFBiz, their open-source ERP system. Discovered by SonicWall Capture Labs, this…
GeoServer, an open-source tool used to share and modify geospatial data, is under attack. CVE-2024-36401, which impacts the GeoTools plugin,…
Linux users beware! OpenSSH flaw, a networking utility installed on every Unix and Linux system by default, is affected by…
The well-known open-source scripting language PHP (Hypertext Preprocessor) just had a critical RCE flaw patched and disclosed. Found and reported…
It's been a calm year so far for patches! January saw no zero days, February only saw two, and March…
VMWare's latest advisory reveals four new vulnerabilities affecting its ESXi, Workstation, Fusion, and Cloud Foundation products. Each vulnerability has been…
If you're using a version of Fortra's GoAnywhere MFT that's lower than 7.4.1, you'll likely be shocked to know that…
The second week of the new year has arrived, and with it comes 2024's first Microsoft Patch Tuesday. This time…
A new remote code execution vulnerability has been found in Confluence Data Center and Server. CVE-2023-22522, exploited using template injection,…