CVEFeed Newsroom – Latest Cybersecurity Updates
The "Cyber Newsroom Feed" module is a live feed of the latest cyber news enriched with CVE and vulnerability data. The feed is updated every 5 minutes and includes the latest news from the cyber security industry. The feed is designed to provide users with a comprehensive overview of the latest cyber security news and trends.
-
seclists.org
[REVIVE-SA-2025-003] Revive Adserver Vulnerabilities
Full Disclosure mailing list archives From: Matteo Beccati <php () beccati com> Date: Wed, 19 Nov 2025 11:05:36 +0100 ======================================================================== Revive Ad ...
-
BleepingComputer
W3 Total Cache WordPress plugin vulnerable to PHP command injection
A critical flaw in the W3 Total Cache (W3TC) WordPress plugin can be exploited to run PHP commands on the server by posting a comment that contains a malicious payload. The vulnerability, tracked as C ...
-
CybersecurityNews
Hackers Actively Exploiting 7-Zip RCE Vulnerability in the Wild
Hackers have begun actively exploiting a critical remote code execution (RCE) vulnerability in the popular file archiver 7-Zip, putting millions of users at risk of malware infection and system compro ...
-
The Hacker News
Hackers Actively Exploiting 7-Zip Symbolic Link–Based RCE Vulnerability (CVE-2025-11001)
Nov 19, 2025Ravie LakshmananVulnerability / Threat Intelligence A recently disclosed security flaw impacting 7-Zip has come under active exploitation in the wild, according to an advisory issued by ...
-
CybersecurityNews
Massive Hacking Operation WrtHug Compromises Thousands of ASUS Routers Worldwide
A sophisticated cyber campaign known as Operation WrtHug has hijacked tens of thousands of ASUS WRT routers globally, turning them into potential espionage tools for suspected China-linked hackers. Se ...
-
hackread.com
Fortinet Issues Fixes as FortiWeb Takeover Flaw Sees Active Attacks
In worrying news for organisations relying on Fortinet FortiWeb products, the company has released emergency patches for two critical security weaknesses that hackers are already using in real-world a ...
-
Help Net Security
7-Zip vulnerability is being actively exploited, NHS England warns (CVE-2025-11001)
NHS England Digital, the technology arm of the publicly-funded health service for England, has issued a warning about a 7-Zip vulnerability (CVE-2025-11001) being exploited by attackers. “Active explo ...
-
BleepingComputer
New WrtHug campaign hijacks thousands of end-of-life ASUS routers
Thousands of ASUS WRT routers, mostly end-of-life or outdated devices, have been hijacked in a global campaign called Operation WrtHug that exploits six vulnerabilities. Over the past six months, scan ...
-
BleepingComputer
The hidden risks in your DevOps stack data—and how to address them
While DevOps drives innovation and simplifies collaboration, it also comes with its own set of risks and vulnerabilities. Developers rely on Git-based platforms like GitHub, Azure DevOps, Bitbucket, o ...
-
BleepingComputer
CISA gives govt agencies 7 days to patch new Fortinet flaw
CISA has ordered U.S. government agencies to secure their systems within a week against another vulnerability in Fortinet's FortiWeb web application firewall, which was exploited in zero-day attacks. ...