Adobe ColdFusion vulnerability fixed: Adobe shipped a patch for a critical Apache Tika flaw bundled with the platform. The issue is tracked as CVE-2022-33980. The update blocks potential …
Latest in Application Security
-
- Cybersecurity NewsAi and Machine LearningApplication Security
LLM Security Threats Rise As Attackers Target AI Models Worldwide
by Penelope Iroko 3 minutes readLLM security threats are rising as adversaries increasingly target AI models and adjacent systems. Organizations accelerating generative AI adoption face an expanded attack surface that mixes traditional IT …
- Cybersecurity NewsApplication Security
Trend Micro Vulnerability Exposes Apex Central To Critical Code Execution
by Penelope Iroko 3 minutes readThe Trend Micro vulnerability in Apex Central has been patched, closing a critical code execution pathway on enterprise management servers. Organizations should update without delay. The flaw targets …
- Cybersecurity NewsApplication Security
New ZombieAgent Exploit Exposes Critical ChatGPT Security Vulnerability
by Penelope Iroko 3 minutes readChatGPT security vulnerability research has revealed a ZombieAgent exploit that enabled researchers to steer agent behavior through persistent prompt manipulation across tasks. The controlled demonstration shows how natural-language …
- Cybersecurity NewsApplication Security
VMware Zero-Day Exploit Code Released For Critical vCenter Server Vulnerabilities
by Penelope Iroko 3 minutes readVMware zero-day exploit code is now public for two critical vCenter Server vulnerabilities, driving urgent patching and tighter access controls. Tracked as CVE-2024-38812 and CVE-2024-38813, the bugs enable …
- Cybersecurity NewsApplication Security
Critical jsPDF Vulnerability CVE-2024-21484 Exposes Applications To Security Risks
by Penelope Iroko 3 minutes readThe jsPDF vulnerability tracked as CVE-2024-21484 has been patched, closing a critical flaw that exposed PDF generation workflows to attack. Project maintainers urged immediate upgrades. The weakness impacts …
- Cybersecurity NewsApplication Security
n8n RCE Vulnerability Reaches Maximum CVSS 10.0 Severity Score
by Penelope Iroko 3 minutes readThe n8n RCE vulnerability received a maximum CVSS 10.0 rating, enabling authenticated remote code execution on both self-hosted and n8n Cloud instances. The vendor shipped a fix in …
- Application SecurityCybersecurity News
Chrome WebView Vulnerability Enables Hackers To Bypass Critical Security Restrictions
by CSC Newsby CSC News 3 minutes readThe Chrome WebView vulnerability prompted an emergency update from Google to block security policy bypass in embedded browsing contexts. The flaw is tracked as CVE-2026-0628. Google is delivering …
- Application SecurityCybersecurity News
Google Warns Hackers Exploiting React2Shell Vulnerability To Spread Malware
by Penelope Iroko 3 minutes readThe React2Shell vulnerability is being actively exploited to seize control of internet-facing servers running React Server Components and some Next.js deployments, according to Google’s Threat Intelligence Group (GTIG). …
- Cybersecurity NewsApplication SecurityVulnerabilities & Exploits
Unpatched Gogs Zero-Day Vulnerability Exploited For Months In Wild Attacks
by CSC Newsby CSC News 3 minutes readThe Gogs Zero-Day Vulnerability is being exploited in real-world attacks against internet-exposed self-hosted Git servers, and it remains unpatched. Security teams should restrict exposure, apply compensating controls, and …
Newer Posts
