Technology ❯ Software Development

Security Flaws

Remote Code Execution Input Validation Zero-Click Attacks Operational Security Zero-Day Exploits Exploit Techniques User Privacy Exploit Mitigation Digital Signatures Patch Development CVE-2025-55177 Research CVE Severity Ratings Deserialization Vulnerabilities Injection Attacks Local File Inclusion Code Execution Server-Side Request Forgery Malware Patching Implementation Issues

Active Attacks Target Adobe Commerce With 'SessionReaper' Exploit

Most Magento deployments remain unpatched after September’s hotfix, leaving a broad attack surface.

Active Exploits Target Gladinet CentreStack and TrioFox Zero-Day That Can Lead to RCE

Google Patches 'Gemini Trifecta' Flaws Enabling Indirect Prompt Injection

SolarWinds Ships Third Hotfix for Critical Web Help Desk RCE Bypass

CISA Adds Actively Exploited DELMIA Apriso Flaw to KEV With Oct. 2 Fix Deadline

Commvault Patches Four Flaws That Enable Pre‑Auth RCE Chains in On‑Prem Backup Suite

Trend Micro Releases Mitigation Tool for Critical Apex One Zero-Days

Google Deploys Protections for Gmail AI Summaries to Thwart Phishing Exploit

Microsoft Fixes Zero-Click EchoLeak Flaw in Copilot as Researchers Call for AI Agent Redesign