CVEFeed Newsroom – Latest Cybersecurity Updates
The "Cyber Newsroom Feed" module is a live feed of the latest cyber news enriched with CVE and vulnerability data. The feed is updated every 5 minutes and includes the latest news from the cyber security industry. The feed is designed to provide users with a comprehensive overview of the latest cyber security news and trends.
-
CybersecurityNews
Critical Cal.com Vulnerability Let Attackers Bypass Authentication and Hijack any User Account
A critical authentication bypass vulnerability in Cal.com’s scheduling platform enables attackers to hijack any user account by exploiting a flaw in the NextAuth JWT callback mechanism. Tracked as CVE ...
-
CybersecurityNews
Firefox 147 Released With Fixes for 16 Vulnerabilities that Enable Arbitrary Code Execution
Mozilla released Firefox 147 on January 13, 2026, addressing 16 security vulnerabilities detailed in the Mozilla Foundation Security Advisory. The update patches critical issues across components such ...
-
CybersecurityNews
Critical WordPress Plugin Vulnerability Exploited in the Wild to Gain Instant Admin Access
A critical unauthenticated privilege escalation vulnerability in the Modular DS WordPress plugin allows attackers to gain instant admin access, with exploitation confirmed in the wild. Affecting over ...
-
CybersecurityNews
HPE Aruba Vulnerabilities Enables Unauthorized Access to Sensitive Information
Hewlett Packard Enterprise (HPE) has disclosed four high-severity vulnerabilities in its Aruba Networking Instant On devices that could allow attackers to access sensitive network information and disr ...
-
security.nl
Firewalls Palo Alto Networks via dos-lek op afstand uit te schakelen
Firewalls van Palo Alto Networks zijn via een denial of service (dos) kwetsbaarheid door ongeauthenticeerde aanvallers op afstand uit te schakelen. Het bedrijf heeft beveiligingsupdates uitgebracht om ...
-
Daily CyberSecurity
Exploited in the Wild: Critical Modular DS Flaw CVE-2026-23550 (CVSS 10) Allows Instant Admin Takeover
A critical privilege escalation vulnerability, tracked as CVE-2026-23550 (CVSS 10), has been discovered in the Modular DS WordPress plugin, actively exposing over 40,000 websites to unauthorized admin ...
-
BleepingComputer
Palo Alto Networks warns of DoS bug letting hackers disable firewalls
Palo Alto Networks patched a high-severity vulnerability that could allow unauthenticated attackers to disable firewall protections in denial-of-service (DoS) attacks. Tracked as CVE-2026-0227, this s ...
-
Daily CyberSecurity
The Orbital Lifeline: Starlink Battles Military-Grade Jamming in Iran
In response to internal domestic upheavals, Iran has effectively severed all connections to the global internet. Observational telemetry indicates that while a negligible minority of government agenci ...
-
The Hacker News
Palo Alto Fixes GlobalProtect DoS Flaw That Can Crash Firewalls Without Login
Jan 15, 2026Ravie LakshmananNetwork Security / Vulnerability Palo Alto Networks has released security updates for a high-severity security flaw impacting GlobalProtect Gateway and Portal, for which ...
-
seclists.org
[REVIVE-SA-2026-001] Revive Adserver Vulnerabilities
Full Disclosure mailing list archives From: Matteo Beccati <php () beccati com> Date: Wed, 14 Jan 2026 13:39:23 +0100 ======================================================================== Revive Ad ...