ShinyHunters Exploits Oracle PeopleSoft Zero-Day Vulnerability
The ShinyHunters group has exploited a critical zero-day vulnerability in Oracle PeopleSoft, impacting numerous universities and potentially exposing sensitive data.
Tag remote code execution
Critical Vulnerability in Hugging Face’s LeRobot Exposes Remote Code Execution Risk
A serious security flaw in Hugging Face's LeRobot platform could allow unauthenticated attackers to execute arbitrary code remotely, raising significant security concerns.
Critical Vulnerability Discovered in SGLang Allows Remote Code Execution
A severe security flaw in SGLang, identified as CVE-2026-5760, poses significant risks of remote code execution through malicious model files.
CUPS Server Vulnerabilities Enable Remote Code Execution
Recent findings reveal two vulnerabilities in the CUPS printing system that could allow unauthenticated remote code execution and root access.
Microsoft Uncovers Cookie-Controlled PHP Web Shells on Linux Servers
Microsoft's findings reveal a new method where threat actors utilize HTTP cookies to control PHP-based web shells, enabling remote code execution on Linux servers.
CISA Includes CVE-2025-53521 in KEV Due to Active Exploitation of F5 BIG-IP APM
The U.S. Cybersecurity and Infrastructure Security Agency has added a critical vulnerability affecting F5 BIG-IP APM to its Known Exploited Vulnerabilities catalog, following evidence of active exploitation.
Critical Vulnerability in SolarWinds Web Help Desk Under Active Exploitation
A critical vulnerability in SolarWinds Web Help Desk is being actively exploited, prompting urgent patching requirements for U.S. federal agencies.
