CVEFeed Newsroom – Latest Cybersecurity Updates
The "Cyber Newsroom Feed" module is a live feed of the latest cyber news enriched with CVE and vulnerability data. The feed is updated every 5 minutes and includes the latest news from the cyber security industry. The feed is designed to provide users with a comprehensive overview of the latest cyber security news and trends.
-
TheCyberThrone
CVE-2025-5419 Zero-Day Vulnerability in Chrome’s V8 Engine
CVE-2025-5419 is a critical zero-day vulnerability discovered in Google Chrome’s V8 JavaScript engine, the core component responsible for executing JavaScript code in the browser. This flaw enables ou ...
-
Cyber Security News
Android Security Update – Patch for Vulnerabilities that Allows Privilege Escalation
Google has released a comprehensive security update for Android devices addressing multiple high-severity vulnerabilities that could allow privilege escalation and remote code execution. The update ta ...
-
BleepingComputer
CISA warns of ConnectWise ScreenConnect bug exploited in attacks
CISA is alerting federal agencies in the U.S. of hackers exploiting a recently patched ScreenConnect vulnerability that could lead to executing remote code on the server. The agency is warning that fo ...
-
TheCyberThrone
CISA Adds Five New Vulnerabilities to KEV Catalog
The Cybersecurity and Infrastructure Security Agency (CISA) has expanded its Known Exploited Vulnerabilities (KEV) Catalog, adding five new vulnerabilities that pose a high risk to federal agencies an ...
-
seclists.org
CVE-2025-45542: Time-Based Blind SQL Injection in CloudClassroom PHP Project v1.0
Full Disclosure mailing list archives From: Sanjay Singh <sanjay70023 () gmail com> Date: Fri, 30 May 2025 22:58:18 +0530 Hello Full Disclosure list, I am sharing details of a newly assigned CVE affec ...
-
seclists.org
Local information disclosure in apport and systemd-coredump
Full Disclosure mailing list archives From: Qualys Security Advisory via Fulldisclosure <fulldisclosure () seclists org> Date: Thu, 29 May 2025 17:26:22 +0000 Qualys Security Advisory Local informatio ...
-
The Hacker News
Critical 10-Year-Old Roundcube Webmail Bug Allows Authenticated Users Run Malicious Code
Email Security / Vulnerability Cybersecurity researchers have disclosed details of a critical security flaw in the Roundcube webmail software that has gone unnoticed for a decade and could be exploite ...
-
seclists.org
CVE-2024-47081: Netrc credential leak in PSF requests library
Full Disclosure mailing list archives From: Juho Forsén via Fulldisclosure <fulldisclosure () seclists org> Date: Sat, 31 May 2025 06:30:50 +0000 The PSF requests library (https://github.com/psf/reque ...
-
seclists.org
Exploit CVE-2019-9978: Remote Code Execution in Social Warfare WordPress Plugin (<= 3.5.2)
Full Disclosure mailing list archives Exploit CVE-2019-9978: Remote Code Execution in Social Warfare WordPress Plugin (<= 3.5.2) From: Housma mardini <housma () gmail com> Date: Fri, 30 May 2025 13:31 ...
-
security.nl
Androidlekken kunnen malafide apps ongemerkt meer permissies geven
Verschillende kwetsbaarheden in Android maken het mogelijk voor malafide apps om ongemerkt meer permissies te krijgen. Google heeft updates uitgebracht om de problemen te verhelpen. Tijdens de patchro ...