Fortinet has fixed nine vulnerabilities, including high-severity command execution and authentication bypass flaws.

Users could be tricked into running arbitrary code, but the issue was patched last week.

A zero-click flaw in Anthropic’s Claude Desktop Extensions allows attackers to trigger remote code execution via Google ...

A new vulnerability has been discovered in the R programming language that allows arbitrary code execution upon deserializing specially crafted RDS and RDX files. R is an open-source programming ...

Notepad++ improves security mechanisms and closes a new vulnerability that allows attackers to execute malicious code.

Security issue impacts Firefox web browser and Thunderbird email client, potentially enabling attackers to execute arbitrary ...

Google released a Chrome security update fixing two high-severity flaws that could enable code execution or crashes via malicious websites.

Apple has pushed an urgent software update to its massive global iPhone user base after security researchers identified critical flaws in WebKit, the engine that powers Safari and nearly every browser ...

TL;DR: WinRAR has a critical security vulnerability (CVE-2025-6218) allowing remote code execution via directory traversal in Windows versions. This exploit risks sensitive data and system integrity.

CVE-2026-1357 exposes a critical WordPress WPvivid plugin flaw, allowing unauthenticated RCE, enabling attackers to upload PHP files and fully compromise sites. The post CVE-2026-1357: WordPress ...

PandasAI, an open source project by SinaptikAI, has been found vulnerable to Prompt Injection attacks. An attacker with access to the chat prompt can craft malicious input that is interpreted as code, ...

A critical remote code execution flaw in the WPvivid Backup & Migration WordPress plugin puts over 900,000 sites at risk unless patched.