Ivanti warns of three security vulnerabilities in Endpoint Manager (EPM). They allow SQL injection or privilege escalation.

SAP has released the May 2026 security updates addressing 15 vulnerabilities across multiple products, including two critical ...

Two newly disclosed vulnerabilities in the Avada Builder WordPress plugin have placed around one million sites at risk of ...

The FTP server ProFTPD includes a module called mod_sql. It contains an SQL injection vulnerability that can ultimately lead to the execution of injected code.

SAP has released 15 new security notes, including two addressing critical code injection flaws in S/4HANA and Commerce.

Two vulnerabilities in the Avada Builder plugin for WordPress, with an estimated one million active installations, allow ...

Fortinet and Ivanti have released fixes for multiple vulnerabilities, including critical flaws leading to code execution.

Admins with Dynamics 365 on-prem should also take note of a “severe” vulnerability that allows remote code execution.

The company — whose recent vulnerabilities have been hit with zero-day and n-day exploits — also released three patches for ...

A popular WordPress plugin was found carrying two flaws that can cause data leaks.

Panel CVE-2026-41940 exploited within 24 hours, enabling 44,000 IP attacks and data breaches across global networks.

New research exposes how prompt injection in AI agent frameworks can lead to remote code execution. Learn how these ...