Open WebUI, an open-source, self-hosted web interface for interacting with local or remote AI language models, carried a high ...
The bug allows attacker-controlled model servers to inject code, steal session tokens, and, in some cases, escalate to remote ...
A critical CVSS 9.2 flaw in AdonisJS bodyparser lets attackers write arbitrary files via path traversal when uploads are ...
Threat actors are exploiting a recently discovered command injection vulnerability that affects multiple D-Link DSL gateway ...
The Kimwolf botnet, an Android variant of the Aisuru malware, has grown to more than two million hosts, most of them infected ...
The National Computer Emergency Response Team (PKCERT) issued 53 cybersecurity advisories in 2025, warning users and ...
The flaw is tracked as CVE-2025-54957 and its existence came to light in October 2025 after it was discovered by Google ...
The operators behind the highly adaptable RondoDox botnet campaign that kicked off in late March have proven to be ready to embrace the latest attack trends. Most recently, in December they began ...
A new PHALT#BLYX campaign targets European hotels using fake Booking.com emails, ClickFix lures, PowerShell, and MSBuild to ...
Artificial intelligence promised a leap in productivity this year, particularly as agentic systems began creeping into ...
Threat actors are using the social engineering technique to deploy the DCRat remote access Trojan against targets in the ...
Some results have been hidden because they may be inaccessible to you
Show inaccessible results
Feedback