CVEFeed Newsroom – Latest Cybersecurity Updates
The "Cyber Newsroom Feed" module is a live feed of the latest cyber news enriched with CVE and vulnerability data. The feed is updated every 5 minutes and includes the latest news from the cyber security industry. The feed is designed to provide users with a comprehensive overview of the latest cyber security news and trends.
-
Daily CyberSecurity
OpenSSH 10.3 Patches Command Execution and “scp” Privilege Escalation
In the critical infrastructure of the internet, OpenSSH stands as one of the most vital gatekeepers for secure remote access. However, even the most trusted tools require constant refinement. A series ...
-
CybersecurityNews
Hackers Compromised 700+ Next.js Hosts by Exploiting React2Shell Vulnerability
A massive automated credential theft campaign is actively targeting web applications worldwide. Cybersecurity researchers at Cisco Talos have uncovered an operation by a hacker group tracked as UAT-10 ...
-
Daily CyberSecurity
Critical 9.8 CVSS RCE Vulnerabilities Exposed in Progress ShareFile
Image: watchTowr Labs A duo of severe security vulnerabilities has been uncovered in Progress ShareFile, a widely used managed file transfer solution. The flaws, discovered by the research team at wat ...
-
Daily CyberSecurity
Smart Home Alert: Critical Flaws Exposed in TP-Link Tapo Security Cameras
A security advisory from TP-Link have exposured a series of high-severity vulnerabilities—ranging from CVE-2026-34118 to CVE-2026-34124—affecting the Tapo C520WS v2.6 outdoor security camera. With CVS ...
-
TheCyberThrone
Cisco Patches Two Critical and Six High-Severity Vulnerabilities
April 3, 2026Cisco shipped fixes for eight vulnerabilities on Wednesday — two rated critical and six high-severity — spanning multiple products including Integrated Management Controller (IMC), Smart ...
-
Daily CyberSecurity
200,000+ Sites at Risk: Perfmatters Flaw Enables Full WordPress Site Takeover
Researchers expose a critical vulnerability in Perfmatters, a popular performance-optimization WordPress plugin with over 200,000 active installations. The flaw, identified as CVE-2026-4350, carries a ...
-
The Hacker News
Hackers Exploit CVE-2025-55182 to Breach 766 Next.js Hosts, Steal Credentials
A large-scale credential harvesting operation has been observed exploiting the React2Shell vulnerability as an initial infection vector to steal database credentials, SSH private keys, Amazon Web Serv ...
-
Daily CyberSecurity
Joomla! Issues Security Patch: Critical File Deletion and Webservice Flaws Exposed
Joomla! CMS has released a series of critical security updates to address two high-severity vulnerabilities—CVE-2026-23898 and CVE-2026-23899—both carrying a CVSSv4 score of 8.6. These flaws strike at ...
-
The Hacker News
Cisco Patches 9.8 CVSS IMC and SSM Flaws Allowing Remote System Compromise
Cisco has released updates to address a critical security flaw in the Integrated Management Controller (IMC) that, if successfully exploited, could allow an unauthenticated, remote attacker to bypass ...
-
Help Net Security
Software supply chain hacks trigger wave of intrusions, data theft
After linking the Axios npm supply chain attack to North Korean hackers, Google researchers warned that “hundreds of thousands of stolen secrets could potentially be circulating” as a result of this a ...