CVEFeed Newsroom – Latest Cybersecurity Updates
The "Cyber Newsroom Feed" module is a live feed of the latest cyber news enriched with CVE and vulnerability data. The feed is updated every 5 minutes and includes the latest news from the cyber security industry. The feed is designed to provide users with a comprehensive overview of the latest cyber security news and trends.
-
CybersecurityNews
Critical MCP Toolbox Vulnerability Impacts Enterprise Database onnectors
A newly disclosed vulnerability, tracked as CVE-2026-9739, is raising security concerns across enterprise environments using MCP Toolbox, particularly those that rely on Server-Sent Events (SSE) for d ...
-
TheCyberThrone
CVE-2026-40933 — Flowise: Authenticated RCE via MCP stdio Adapter
June 1, 2026OverviewCVE-2026-40933 is a critical command injection vulnerability in Flowise, the drag-and-drop UI platform for building customized LLM flows. The vulnerability exists in the Model Cont ...
-
The Hacker News
⚡ Weekly Recap: New Linux Flaw, PAN-OS Exploit, AI-Powered Attacks, OAuth Phishing and More
Monday hit like a cron job with anger issues. A busted auth path here, a repo-side faceplant there, some "patched-ish" thing already getting chewed on in the wild, and then the usual bonus round: pois ...
-
cert.pl
Vulnerability in KS-SOMED software
Vulnerability in KS-SOMED software CVE ID CVE-2026-42251 Publication date 01 June 2026 Vendor KAMSOFT Product KS-SOMED Vulnerable versions KS-SOMED with modules: KSPLUPDFTP.exe all through 30.00.00.05 ...
-
security.nl
Belgische overheid waarschuwt voor misbruik van kritiek Windows-lek
Aanvallers maken actief misbruik van een kritieke kwetsbaarheid in Windows die remote code execution mogelijk maakt. Daarvoor waarschuwt de Belgische overheid. Op 12 mei kwam Microsoft met beveiliging ...
-
CybersecurityNews
Critical Plesk Vulnerability Let Users Execute Arbitrary Commands on the Server
A newly disclosed critical vulnerability in Plesk, tracked as CVE-2026-44962, is raising serious security concerns after researchers confirmed it can allow authenticated users to execute arbitrary ope ...
-
security.nl
Fortinet ziet grootschalig misbruik van Citrix NetScaler-lek
Aanvallers maken op grote schaal misbruik van een kritieke kwetsbaarheid in Citrix NetScaler, zo meldt Fortinet op basis van eigen cijfers. Door onvoldoende invoervalidatie kan een 'Out-of-bounds Read ...
-
cert.pl
Vulnerabilities in SOPlanning software
Vulnerabilities in SOPlanning software CVE ID CVE-2026-40543 Publication date 01 June 2026 Vendor SOPlanning Product SOPlanning Vulnerable versions All through 1.55 Vulnerability type (CWE) Missing Au ...
-
The Hacker News
Critical WP Maps Pro Flaw Actively Exploited to Create Admin Accounts
Threat actors are attempting to actively exploit a critical security flaw impacting WP Maps Pro, a WordPress plugin that has had over 15,000 sales on the Envato Market, to create malicious administrat ...
-
The Cyber Express
New ChatGPhish Technique Uses Prompt Injection to Manipulate ChatGPT Responses
Security researchers have unveiled ChatGPhish, a newly documented vulnerability concept that demonstrates how browser-based prompt injection can influence ChatGPT page summaries and potentially expose ...