12 matches found
PT-2025-48787
Name of the Vulnerable Software and Affected Versions Akamai affected versions not specified Description A flaw exists in Akamai that allows for HTTP request smuggling due to an invalid chunked body size. This issue, identified as a discrepancy between the chunk size and chunk data, enabled...
PT-2025-48242
Name of the Vulnerable Software and Affected Versions EverShop version 2.0.1 Description An unauthenticated user can upload files and create directories using the /api/images endpoint. Recommendations Restrict access to the /api/images endpoint to authenticated users only...
PT-2025-48290
Name of the Vulnerable Software and Affected Versions cups affected versions not specified Description A local denial-of-service condition exists due to issues with updating the cupsd.conf file. Recommendations At the moment, there is no information about a newer version that contains a fix for...
PT-2025-45568
Actively exploited CVE : CVE-2025-50287...
PT-2025-39356
🔵 Mangati NovoSGA, Cross-Site Scripting XSS, CVE-2025-40456 Low https://t.co/9VmFT9GHUe...
PT-2025-37004
Actively exploited CVE : CVE-2024-01987...
CISA Under Trump
Jen Easterly is out as the Director of CISA. Read her final interview: There's a lot of unfinished business. We have made an impact through our ransomware vulnerability warning pilot and our pre-ransomware notification initiative, and I'm really proud of that, because we work on preventing somebo...
How Project 2025 Would Put US Elections at Risk
Experts say the “nonsensical” policy proposal, which largely aligns with Donald Trump’s agenda, would weaken the US agency tasked with protecting election integrity, critical infrastructure, and more...
Heritage Foundation data breach containing personal data is available online
The Heritage Foundation this month denied that it had suffered an earlier system breach and the subsequent leaking of internal data. But the organization had to admit that cybercriminals gained access to an archive of Heritages affiliated media site, The Daily Signal, dating back to 2022. That...
J.D. Vance Left His Venmo Public. Here’s What It Shows
The Republican VP nominee's Venmo network reveals connections ranging from the architects of Project 2025 to enemies of Donald Trump—and the populist's close ties to the very elites he rails against...
Spyware Users Exposed in Major Data Breach
Plus: The Heritage Foundation gets hacked over Project 2025, a car dealership software provider seems to have paid $25 million to a ransomware gang, and authorities disrupt a Russian bot farm...
SiegedSec Hacks Heritage Foundation; Leaks Data Over “Project 2025”
Hacktivist group "SiegedSec" claims responsibility for a data breach at the Heritage Foundation, stealing details of a potentially…...