Critical phpBB Flaw Lets Attackers Hijack Any Account with One Request
Critical phpBB authentication bypass lets attackers hijack any account with one request
Yasna brings together recent headlines from selected sources and makes them easier to sort with tags, filters, and search.
Search across headline titles and summaries.
Weekly headline count for the current query.
Critical phpBB authentication bypass lets attackers hijack any account with one request
Critical nginx-ui MCP authentication bypass CVE-2026-33032 actively exploited with CVSS 9.8
The critical vulnerability affecting both cloud and self-hosted n8n instances requires no authentication or even n8n account to be exploited
Flaw in Base44 allowed unauthorized access to private apps, bypassing authentication systems
A flaw in OneDrive File Picker has exposed millions to data overreach through excessive OAuth permissions
A critical authentication bypass flaw in CrushFTP is under active exploitation following a mishandled disclosure process
DoubleClickjacking bypasses X-Frame-Options and SameSite cookies in double-click sequences, exposing UI authentication flaws
Salt Security discovered GPT flaws affecting plugin installation, PluginLab and OAuth
The bug allowed cyber-criminals to remotely execute malicious code without authentication credentials
The Jira versions affected by the vulnerability are 5.3.0, 5.3.1, 5.3.2, 5.4.0, 5.4.1 and 5.5.0