Latest news

CVSS 10.0: Critical Flowise AI Vulnerability Is Being Actively Exploited — 15,000+ Instances Still Exposed
AI

CVSS 10.0: Critical Flowise AI Vulnerability Is Being Actively Exploited — 15,000+ Instances Still Exposed

9 April 2026 dark6

A maximum-severity RCE vulnerability (CVE-2025-59528, CVSS 10.0) in the popular Flowise AI agent builder is under active attack. Over 15,000...
Read more 0
Chrome’s Fourth Zero-Day of 2026: CISA Orders Federal Agencies to Patch CVE-2026-5281 by April 15
Vulnerability

Chrome’s Fourth Zero-Day of 2026: CISA Orders Federal Agencies to Patch CVE-2026-5281 by April 15

9 April 2026 dark6

Google has patched CVE-2026-5281, a use-after-free zero-day in Chrome’s WebGPU engine already exploited in the wild. It’s the fourth Chrome...
Read more 0
Unpatched Adobe Reader Zero-Day Has Been Silently Exploiting Users Since December
Vulnerability

Unpatched Adobe Reader Zero-Day Has Been Silently Exploiting Users Since December

9 April 2026 dark6

A highly sophisticated zero-day exploit targeting Adobe Reader has been active since December 2025, requiring just a single click to...
Read more 0
GitLab Releases Critical Security Patch for Multiple High-Severity Vulnerabilities
Vulnerability

GitLab Releases Critical Security Patch for Multiple High-Severity Vulnerabilities

11 December 2025 dark6

Security researchers have uncovered vulnerabilities in GitLab’s Community Edition and Enterprise Edition platforms, prompting the company to release critical security...
Read more 0
A Critical Patch for Vulnerable Next.js: New Scanner Unveils Hidden Attacks
Vulnerability

A Critical Patch for Vulnerable Next.js: New Scanner Unveils Hidden Attacks

4 December 2025 dark6

With the rise of Serverless functions, static site generators like Next.js have become ubiquitous in web development, streamlining functionality and...
Read more 0
A Silent Vulnerability Exposed: How Hackers Used Hidden Commands to Steal Sensitive Data
Vulnerability

A Silent Vulnerability Exposed: How Hackers Used Hidden Commands to Steal Sensitive Data

3 December 2025 dark6

Microsoft’s seemingly “unremarkable” November 2025 Patch Tuesday update actually contained a major security fix. But even the most meticulous patching...
Read more 0
Chrome 143: A Patch Day For Deep Dive Cybersecurity Professionals
Vulnerability

Chrome 143: A Patch Day For Deep Dive Cybersecurity Professionals

3 December 2025 dark6

Google has just released Chrome 143, ushering in a new era of browser security with 13 addressed vulnerabilities. This release...
Read more 0
Android’s December Patch: Zero-Day Vulnerabilities and Their Impact
Vulnerability

Android’s December Patch: Zero-Day Vulnerabilities and Their Impact

2 December 2025 dark6

The latest security bulletin from Google has brought forth a grim reality for Android users: multiple zero-day vulnerabilities are actively...
Read more 0
A Critical Design Flaws in Microsoft Azure API Management Threatens Organizations
Vulnerability

A Critical Design Flaws in Microsoft Azure API Management Threatens Organizations

1 December 2025 dark6

Microsoft’s Azure API Management (APIM) Developer Portal, a platform commonly used for managing and securing APIs, is vulnerable to a...
Read more 0
HashJack: weaponizing trust in AI browser assistants
AI

HashJack: weaponizing trust in AI browser assistants

26 November 2025 dark6

A vulnerability in the way AI browser assistants handle URL fragments opens doors for malicious attacks. For years, we’ve seen...
Read more 0
A Critical Security Flaws in HashiCorp’s Provider
Vulnerability

A Critical Security Flaws in HashiCorp’s Provider

25 November 2025 dark6

HashiCorp’s Vault Terraform provider, a cornerstone of secure secrets management for organizations worldwide, has been found with a critical security...
Read more 0
Wireshark 4.6.1: critical security update addresses major vulnerabilities
Vulnerability

Wireshark 4.6.1: critical security update addresses major vulnerabilities

24 November 2025 dark6

A recent update from the Wireshark Foundation addresses critical vulnerabilities impacting the widely used network protocol analyzer, potentially exposing users...
Read more 0