Security news aggregator

Latest cybersecurity reporting from selected sources.

Yasna brings together recent headlines from selected sources and makes them easier to sort with tags, filters, and search.

5 headlines in this view

Showing 5 most recent headlines Filtered view

The Hacker News 3 weeks, 6 days ago

Ivanti EPMM CVE-2026-6973 RCE Under Active Exploitation Grants Admin-Level Access

Ivanti is warning that a new security flaw impacting Endpoint Manager Mobile (EPMM) has been explored in limited attacks in the wild

More from The Hacker News 8 May 2026, 5:55 a.m. Incident · 3 stories Actively exploited CVE-2026-6973 CVE Flaw Mobile Remote Code Execution Vulnerability Warning

The Hacker News 4 weeks, 1 day ago

Critical Apache HTTP/2 Flaw (CVE-2026-23918) Enables DoS and Potential RCE

The Apache Software Foundation (ASF) has released security updates to address several security vulnerabilities in the HTTP Server, including a severe vulnerability that could potentially lead to remote code execution (RCE)

More from The Hacker News 6 May 2026, 4:19 a.m. CVE-2026-23918 Apache CVE Critical DoS Flaw Free Remote Code Execution Vulnerability

The Hacker News 4 weeks, 1 day ago

MetInfo CMS CVE-2026-29014 Exploited for Remote Code Execution Attacks

Threat actors are actively exploiting a critical security flaw impacting an open-source content management system (CMS) known as MetInfo, according to new findings from VulnCheck

More from The Hacker News 5 May 2026, 11:56 p.m. Incident · 5 stories CVE-2026-29014 CVE Critical Flaw Open Source PHP Remote Code Execution Threat Actor Unauthenticated Vulnerability

The Hacker News 4 weeks, 1 day ago

Weaver E-cology RCE Flaw CVE-2026-22679 Actively Exploited via Debug API

A critical security vulnerability in Weaver (Fanwei) E-cology, an enterprise office automation (OA) and collaboration platform, has come under active exploitation in the wild

More from The Hacker News 5 May 2026, 7:37 p.m. Incident · 2 stories CVE-2026-22679 API Automation CVE Critical DevOps Flaw Remote Code Execution Unauthenticated Vulnerability

Bleeping Computer 4 weeks, 2 days ago

Weaver E-cology critical bug exploited in attacks since March

Hackers have been exploiting a critical vulnerability (CVE-2026-22679) in the Weaver E-cology office automation since mid-March to run discovery commands. [...]

More from Bleeping Computer 5 May 2026, 10:12 a.m. Incident · 2 stories CVE-2026-22679 Automation CVE Critical Vulnerability

Latest cybersecurity reporting from selected sources.

Refine the feed

Fresh headlines available

Ivanti EPMM CVE-2026-6973 RCE Under Active Exploitation Grants Admin-Level Access

Critical Apache HTTP/2 Flaw (CVE-2026-23918) Enables DoS and Potential RCE

MetInfo CMS CVE-2026-29014 Exploited for Remote Code Execution Attacks

Weaver E-cology RCE Flaw CVE-2026-22679 Actively Exploited via Debug API

Weaver E-cology critical bug exploited in attacks since March