CVEFeed Newsroom – Latest Cybersecurity Updates
The "Cyber Newsroom Feed" module is a live feed of the latest cyber news enriched with CVE and vulnerability data. The feed is updated every 5 minutes and includes the latest news from the cyber security industry. The feed is designed to provide users with a comprehensive overview of the latest cyber security news and trends.
-
The Hacker News
Meta Expands WhatsApp Security Research with New Proxy Tool and $4M in Bounties This Year
Nov 18, 2025Ravie LakshmananBug Bounty / Data Privacy Meta on Tuesday said it has made available a tool called WhatsApp Research Proxy to some of its long-time bug bounty researchers to help improve ...
-
cert.pl
Vulnerability in Times Software E-Payroll software
Vulnerability in Times Software E-Payroll software CVE ID CVE-2025-9977 Publication date 18 November 2025 Vendor Times Software Product E-Payroll Vulnerable versions All through 20250121.0 (and potent ...
-
TheCyberThrone
Breaking Down CVE-2025-13223: The Latest Chrome Zero-Day Threat
November 18, 2025Google Chrome users worldwide are facing another urgent security challenge as Google patches CVE-2025-13223—a critical zero-day vulnerability exploited in the wild this November. This ...
-
Help Net Security
Google patches yet another exploited Chrome zero-day (CVE-2025-13223)
Google has shipped an emergency fix for a Chrome vulnerability (CVE-2025-13223) reported as actively exploited in the wild by its Threat Analysis Group (TAG). About CVE-2025-13223 CVE-2025-13223 is a ...
-
cert.pl
Vulnerabilities in Windu CMS software
Vulnerabilities in Windu CMS software CVE ID CVE-2025-59110 Publication date 18 November 2025 Vendor JCD Product Windu CMS Vulnerable versions 4.1 Vulnerability type (CWE) Cross-Site Request Forgery ( ...
-
BleepingComputer
Google fixes new Chrome zero-day flaw exploited in attacks
Google has released an emergency security update to fix the seventh Chrome zero-day vulnerability exploited in attacks this year. "Google is aware that an exploit for CVE-2025-13223 exists in the wild ...
-
CybersecurityNews
W3 Total Cache Command Injection Vulnerability Exposes 1 Million WordPress Sites to RCE Attacks
A critical command injection vulnerability has been discovered in the W3 Total Cache plugin, one of WordPress’s most popular caching solutions used by approximately 1 million websites. The vulnerabili ...
-
security.nl
Securitybedrijf meldt toegenomen misbruik van kritiek lek in XWiki
Een kritieke kwetsbaarheid in XWiki wordt sinds een aantal weken door meer aanvallers misbruikt, zo waarschuwt securitybedrijf VulnCheck. Dat kwam eind vorige maand met de melding dat het beveiligings ...
-
security.nl
Google brengt updates uit voor actief aangevallen kwetsbaarheid in Chrome
Google heeft beveiligingsupdates uitgebracht voor een actief aangevallen kwetsbaarheid in Chrome. Het beveiligingslek (CVE-2025-13223) bevindt zich in V8, de JavaScript-engine die Chrome en andere bro ...
-
CybersecurityNews
CISA Warns of Critical Lynx+ Gateway Vulnerability Exposes Data in Cleartext
The Cybersecurity and Infrastructure Security Agency (CISA) has issued a critical warning about a severe vulnerability in Lynx+ Gateway devices that could expose sensitive information in clear text du ...