Vvveb CMS v1.0.8 CRITICAL flaw: Authenticated users can upload + rename files to .php/.htaccess, enabling RCE as www-data. No patch yet — restrict access & monitor for signs of abuse. radar.offseq.com/threat/cve-2026-6257-cwe... #OffSeq #Vulnerabilit...
Zero-click, zero avvisi: così le estensioni di Claude prendono il controllo del tuo PC
📌 Link all'articolo : www.redhotcyber.com/post/zer...
#redhotcyber #news #intelligenzaartificiale #sicurezzainformatica #vulnerabilit #cybersecurity #hacking #malware
Security threat visualization
libexpat (<2.7.2) has a HIGH severity flaw: remote attackers can cause DoS by sending small, crafted XML that triggers huge memory use. Upgrade to 2.7.2+ or add input controls now. 🛡️ radar.offseq.com/threat/cve-2025-59375-cw... #OffSeq #Vulnerabilit...
Security threat visualization
CRITICAL: SUNNET Corporate Training Mgmt System (<10.11) flaw (CVE-2025-54942) lets remote attackers access deployment features unauthenticated. Restrict access, monitor traffic ASAP. radar.offseq.com/threat/cve-2025-54942-cw... #OffSeq #Vulnerabilit...
Security threat visualization
AOMEI Cyber Backup 3.7.0 has a CRITICAL RCE flaw—no authentication on StorageNode (TCP 9075). Remote attackers can get SYSTEM access. Restrict port, monitor activity, and await patch. radar.offseq.com/threat/cve-2025-8610-cwe... #OffSeq #Vulnerabilit...
