Critical Fortinet FortiClient EMS Zero-Day CVE-2026-35616 Actively Exploited — Patch Now
A critical zero-day in Fortinet FortiClient EMS (CVE-2026-35616, CVSS 9.8) is being actively exploited in the wild. CISA has added it to its Known Exploited Vulnerabilities catalog, mandating...
CVSS 10.0: Critical Flowise AI Vulnerability Is Being Actively Exploited — 15,000+ Instances Still Exposed
A maximum-severity RCE vulnerability (CVE-2025-59528, CVSS 10.0) in the popular Flowise AI agent builder is under active attack. Over 15,000 instances are still exposed online. Here’s what you...
Chrome’s Fourth Zero-Day of 2026: CISA Orders Federal Agencies to Patch CVE-2026-5281 by April 15
Google has patched CVE-2026-5281, a use-after-free zero-day in Chrome’s WebGPU engine already exploited in the wild. It’s the fourth Chrome zero-day of 2026. CISA has mandated federal agencies...
Unpatched Adobe Reader Zero-Day Has Been Silently Exploiting Users Since December
A highly sophisticated zero-day exploit targeting Adobe Reader has been active since December 2025, requiring just a single click to open a PDF. No patch is available yet...
GitLab Releases Critical Security Patch for Multiple High-Severity Vulnerabilities
Security researchers have uncovered vulnerabilities in GitLab’s Community Edition and Enterprise Edition platforms, prompting the company to release critical security patches. On December 10th, 2025, Gitlab released update...
A Critical Patch for Vulnerable Next.js: New Scanner Unveils Hidden Attacks
With the rise of Serverless functions, static site generators like Next.js have become ubiquitous in web development, streamlining functionality and boosting speed. However, while these frameworks offer undeniable...
A Silent Vulnerability Exposed: How Hackers Used Hidden Commands to Steal Sensitive Data
Microsoft’s seemingly “unremarkable” November 2025 Patch Tuesday update actually contained a major security fix. But even the most meticulous patching process can sometimes be outmaneuvered by cunning threat...
Chrome 143: A Patch Day For Deep Dive Cybersecurity Professionals
Google has just released Chrome 143, ushering in a new era of browser security with 13 addressed vulnerabilities. This release is no mere formality – it’s a critical...