CVEFeed Newsroom – Latest Cybersecurity Updates
The "Cyber Newsroom Feed" module is a live feed of the latest cyber news enriched with CVE and vulnerability data. The feed is updated every 5 minutes and includes the latest news from the cyber security industry. The feed is designed to provide users with a comprehensive overview of the latest cyber security news and trends.
-
security.nl
Honderdduizenden WordPress-sites via lek in Forminator over te nemen
Een kwetsbaarheid in een veelgebruikte plug-in voor WordPress maakt remote code execution op honderdduizenden websites mogelijk, die zo volledig zijn over te nemen. Een update die het probleem verhelp ...
-
Cyber Security News
Nessus Windows Vulnerabilities Allow Overwrite of Arbitrary Local System Files
A newly disclosed security advisory from Tenable reveals serious vulnerabilities in the Nessus vulnerability scanner that could enable attackers to compromise Windows systems through privilege escalat ...
-
Daily CyberSecurity
Apple Sues Ex-Vision Pro Engineer Di Liu: Accused of Stealing Secrets & Joining Competitor Snap
As development on the successor to the Vision Pro continues apace, Apple has recently filed a lawsuit accusing former senior product design engineer Di Liu of failing to disclose his employment at com ...
-
Daily CyberSecurity
Windows User Count Controversy: Microsoft Silently “Corrects” User Base to 1.4 Billion After Implied 400M Drop
Hardware indicator for volume shown at the top center Last week, a Microsoft executive noted in a newly published blog post that Windows is currently in use on over one billion devices worldwide. This ...
-
Daily CyberSecurity
CVSS 10 RCE in Wing FTP Server (CVE-2025-47812) Allows Full Server Takeover, PoC Releases
A critical remote code execution (RCE) vulnerability has been discovered in Wing FTP Server, a popular cross-platform file transfer solution, allowing unauthenticated attackers to fully compromise ser ...
-
Daily CyberSecurity
CVE-2025-6463: Unauthenticated Arbitrary File Deletion in Forminator Plugin Exposes Over 600,000 WordPress Sites to Remote Takeover
A newly disclosed high-severity vulnerability in the popular Forminator plugin threatens the security of hundreds of thousands of WordPress websites. Tracked as CVE-2025-6463, this arbitrary file dele ...
-
Daily CyberSecurity
Chinese Student Jailed for Smishing: Operated Covert “SMS Blaster” in Car for Mass Phishing
A Chinese student has been sentenced to over a year in prison by Inner London Crown Court for orchestrating a mobile SMS-based phishing (smishing) campaign using a covert “SMS Blaster” system hidden i ...
-
Daily CyberSecurity
ANSSI Exposes “Houken”: China-Linked Threat Actor Exploiting Ivanti CSA Zero-Days & Deploying Linux Rootkits
The French cybersecurity agency ANSSI has exposed a sophisticated threat actor dubbed Houken. First observed exploiting zero-day vulnerabilities in Ivanti Cloud Service Appliance (CSA) devices in Sept ...
-
Daily CyberSecurity
Multi DataEase Flaws: RCE & Bypass Vulnerabilities Threaten BI Platform via JDBC
DataEase, an open-source business intelligence (BI) platform known for its ease of use and data visualization capabilities, has been found to contain several critical vulnerabilities in its database c ...
-
Daily CyberSecurity
Graylog Flaw (CVE-2025-53106, CVSS 8.8): Privilege Escalation Via API Token Abuse
A vulnerability was found in Graylog—a popular Security Information and Event Management (SIEM) solution. Tracked as CVE-2025-53106 and scoring 8.8 on the CVSS v4 scale, this critical flaw allows priv ...