CVEFeed Newsroom – Latest Cybersecurity Updates
The "Cyber Newsroom Feed" module is a live feed of the latest cyber news enriched with CVE and vulnerability data. The feed is updated every 5 minutes and includes the latest news from the cyber security industry. The feed is designed to provide users with a comprehensive overview of the latest cyber security news and trends.
-
The Cyber Express
Fortinet Silent Patch Raises Concern Among Security Researchers
Fortinet may have silently patched an exploited zero-day vulnerability more than two weeks before officially disclosing the vulnerability. CVE-2025-64446 in Fortinet’s FortiWeb web application firewal ...
-
BleepingComputer
Fortinet warns of new FortiWeb zero-day exploited in attacks
Today, Fortinet released security updates to patch a new FortiWeb zero-day vulnerability that threat actors are actively exploiting in attacks. Tracked as CVE-2025-58034, this web application firewall ...
-
The Register
Google Chrome bug exploited as an 0-day - patch now or risk full system compromise
Google pushed an emergency patch on Monday for a high-severity Chrome bug that attackers have already found and exploited in the wild. The vulnerability, tracked as CVE-2025-13223, is a type confusion ...
-
The Hacker News
Meta Expands WhatsApp Security Research with New Proxy Tool and $4M in Bounties This Year
Nov 18, 2025Ravie LakshmananBug Bounty / Data Privacy Meta on Tuesday said it has made available a tool called WhatsApp Research Proxy to some of its long-time bug bounty researchers to help improve ...
-
cert.pl
Vulnerability in Times Software E-Payroll software
Vulnerability in Times Software E-Payroll software CVE ID CVE-2025-9977 Publication date 18 November 2025 Vendor Times Software Product E-Payroll Vulnerable versions All through 20250121.0 (and potent ...
-
TheCyberThrone
Breaking Down CVE-2025-13223: The Latest Chrome Zero-Day Threat
November 18, 2025Google Chrome users worldwide are facing another urgent security challenge as Google patches CVE-2025-13223—a critical zero-day vulnerability exploited in the wild this November. This ...
-
Help Net Security
Google patches yet another exploited Chrome zero-day (CVE-2025-13223)
Google has shipped an emergency fix for a Chrome vulnerability (CVE-2025-13223) reported as actively exploited in the wild by its Threat Analysis Group (TAG). About CVE-2025-13223 CVE-2025-13223 is a ...
-
cert.pl
Vulnerabilities in Windu CMS software
Vulnerabilities in Windu CMS software CVE ID CVE-2025-59110 Publication date 18 November 2025 Vendor JCD Product Windu CMS Vulnerable versions 4.1 Vulnerability type (CWE) Cross-Site Request Forgery ( ...
-
BleepingComputer
Google fixes new Chrome zero-day flaw exploited in attacks
Google has released an emergency security update to fix the seventh Chrome zero-day vulnerability exploited in attacks this year. "Google is aware that an exploit for CVE-2025-13223 exists in the wild ...
-
CybersecurityNews
W3 Total Cache Command Injection Vulnerability Exposes 1 Million WordPress Sites to RCE Attacks
A critical command injection vulnerability has been discovered in the W3 Total Cache plugin, one of WordPress’s most popular caching solutions used by approximately 1 million websites. The vulnerabili ...