CVEFeed Newsroom – Latest Cybersecurity Updates
The "Cyber Newsroom Feed" module is a live feed of the latest cyber news enriched with CVE and vulnerability data. The feed is updated every 5 minutes and includes the latest news from the cyber security industry. The feed is designed to provide users with a comprehensive overview of the latest cyber security news and trends.
-
TheCyberThrone
CVE-2026-40933 — Flowise: Authenticated RCE via MCP stdio Adapter
June 1, 2026OverviewCVE-2026-40933 is a critical command injection vulnerability in Flowise, the drag-and-drop UI platform for building customized LLM flows. The vulnerability exists in the Model Cont ...
-
The Hacker News
⚡ Weekly Recap: New Linux Flaw, PAN-OS Exploit, AI-Powered Attacks, OAuth Phishing and More
Monday hit like a cron job with anger issues. A busted auth path here, a repo-side faceplant there, some "patched-ish" thing already getting chewed on in the wild, and then the usual bonus round: pois ...
-
cert.pl
Vulnerability in KS-SOMED software
Vulnerability in KS-SOMED software CVE ID CVE-2026-42251 Publication date 01 June 2026 Vendor KAMSOFT Product KS-SOMED Vulnerable versions KS-SOMED with modules: KSPLUPDFTP.exe all through 30.00.00.05 ...
-
security.nl
Belgische overheid waarschuwt voor misbruik van kritiek Windows-lek
Aanvallers maken actief misbruik van een kritieke kwetsbaarheid in Windows die remote code execution mogelijk maakt. Daarvoor waarschuwt de Belgische overheid. Op 12 mei kwam Microsoft met beveiliging ...
-
CybersecurityNews
Critical Plesk Vulnerability Let Users Execute Arbitrary Commands on the Server
A newly disclosed critical vulnerability in Plesk, tracked as CVE-2026-44962, is raising serious security concerns after researchers confirmed it can allow authenticated users to execute arbitrary ope ...
-
security.nl
Fortinet ziet grootschalig misbruik van Citrix NetScaler-lek
Aanvallers maken op grote schaal misbruik van een kritieke kwetsbaarheid in Citrix NetScaler, zo meldt Fortinet op basis van eigen cijfers. Door onvoldoende invoervalidatie kan een 'Out-of-bounds Read ...
-
cert.pl
Vulnerabilities in SOPlanning software
Vulnerabilities in SOPlanning software CVE ID CVE-2026-40543 Publication date 01 June 2026 Vendor SOPlanning Product SOPlanning Vulnerable versions All through 1.55 Vulnerability type (CWE) Missing Au ...
-
The Hacker News
Critical WP Maps Pro Flaw Actively Exploited to Create Admin Accounts
Threat actors are attempting to actively exploit a critical security flaw impacting WP Maps Pro, a WordPress plugin that has had over 15,000 sales on the Envato Market, to create malicious administrat ...
-
The Cyber Express
New ChatGPhish Technique Uses Prompt Injection to Manipulate ChatGPT Responses
Security researchers have unveiled ChatGPhish, a newly documented vulnerability concept that demonstrates how browser-based prompt injection can influence ChatGPT page summaries and potentially expose ...
-
security.nl
Palo Alto Networks meldt actief misbruik van beveiligingslek in firewalls
Een beveiligingslek in de firewalls van Palo Alto Networks wordt actief misbruikt bij aanvallen, zo laat de leverancier zelf weten. Via de kwetsbaarheid kan een aanvaller de authenticatie omzeilen en ...