31.
32.
Acer working to patch max severity zero-days in Wave 7 routers
(bleepingcomputer.com)
33.
Critical Kirki flaw exploited to hijack WordPress admin accounts
(bleepingcomputer.com)
34.
CISA flags two-year-old Oracle flaw as actively exploited in attacks
(bleepingcomputer.com)
35.
Google fixes one actively exploited Android zero-day, 124 flaws
(bleepingcomputer.com)
36.
37.
WP Maps Pro bug exploited to create admin accounts on WordPress sites
(bleepingcomputer.com)
38.
10g Upgrade
(news.ycombinator.com)
39.
Palo Alto GlobalProtect VPN auth bypass flaw now exploited in attacks
(bleepingcomputer.com)
40.
Microsoft 0-day feud escalates as researcher threatens another exploit dump
(news.ycombinator.com)
41.
Hackers exploit FortiClient EMS flaw to push infostealer malware
(bleepingcomputer.com)
42.
43.
CISA gives feds 4 days to patch actively exploited cPanel plugin flaw
(bleepingcomputer.com)
44.
45.
KnowledgeDeliver flaw exploited as a zero-day to install web shells
(bleepingcomputer.com)
46.
BadHost – CVE-2026-48710: Starlette Host-Header Auth Bypass
(news.ycombinator.com)
47.
CISA orders feds to patch actively exploited Drupal vulnerability
(bleepingcomputer.com)
48.
CVE-2026-28952: Apple macOS 26.5 Kernel Vuln found by Claude
(news.ycombinator.com)
49.
Ghost CMS SQL injection flaw exploited in large-scale ClickFix campaign
(bleepingcomputer.com)
50.
Trend Micro warns of Apex One zero-day exploited in the wild
(bleepingcomputer.com)
51.
Drupal: Critical SQL injection flaw now targeted in attacks
(bleepingcomputer.com)
52.
Max severity Cisco Secure Workload flaw gives Site Admin privileges
(bleepingcomputer.com)
53.
Microsoft warns of new Defender zero-days exploited in attacks
(bleepingcomputer.com)
54.
Hackers bypass SonicWall VPN MFA due to incomplete patching
(bleepingcomputer.com)
55.
Max-severity flaw in ChromaDB for AI apps allows server hijacking
(bleepingcomputer.com)
56.
57.
Microsoft Exchange Zero-Day Under Attack, No Patch Available
(darkreading.com)
58.
Exploit available for new DirtyDecrypt Linux root escalation flaw
(bleepingcomputer.com)
59.