A newly disclosed security flaw impacting NGINX Plus and NGINX Open has come under active exploitation in the wild, days ...

The FTP server ProFTPD includes a module called mod_sql. It contains an SQL injection vulnerability that can ultimately lead to the execution of injected code.

SAP has released 15 new security notes, including two addressing critical code injection flaws in S/4HANA and Commerce.

Admins with Dynamics 365 on-prem should also take note of a “severe” vulnerability that allows remote code execution.

Panel CVE-2026-41940 exploited within 24 hours, enabling 44,000 IP attacks and data breaches across global networks.

Hacking is often misunderstood as simply “breaking into computers.” But at its core, hacking is something broader and more fundamental: Hacking means making a system do something it was not meant to ...

New research exposes how prompt injection in AI agent frameworks can lead to remote code execution. Learn how these ...

A critical SQL injection vulnerability in the open-source AI gateway LiteLLM, tracked as CVE-2026-42208, was exploited less than two days after being listed in the GitHub Advisory Database. Attackers ...

Critical flaws affecting core components and extensions in PostgreSQL and MariaDB could allow remote code execution. The bugs ...

Pakistan has shifted government websites to read-only mode after a CERT warning over rising cyberattack and hacktivist ...

Escape, Shannon, Strix, PentAGI, and Claude against a modern vulnerable application. Learn more about their detection rates, false positive rates, and scanning speed.

Synack today announced the general availability of Sara AI Pentesting. Sara, the Synack Autonomous Red Agent, is powered by ...