Critical phpBB Flaw Lets Attackers Hijack Any Account with One Request
Critical phpBB authentication bypass lets attackers hijack any account with one request
Yasna brings together recent headlines from selected sources and makes them easier to sort with tags, filters, and search.
Search across headline titles and summaries.
Weekly headline count for the current query.
Critical phpBB authentication bypass lets attackers hijack any account with one request
Critical nginx-ui MCP authentication bypass CVE-2026-33032 actively exploited with CVSS 9.8
A critical authentication bypass flaw in CrushFTP is under active exploitation following a mishandled disclosure process
Microsoft MFA flaw exposed that allowed attackers to bypass security within an hour, putting 400m Office 365 accounts at risk
A series of vulnerabilities could enable an attacker to bypass the Chinese manufacturer’s biometric access systems
The flaws, identified by KTrust, enable attackers to bypass rate limits and brute force protection mechanisms
Latest bug described as a patch bypass
Discovered by Microsoft and dubbed "Migraine," the flaw was disclosed to Apple and patched
After deploying the initial attack, the researcher was able to escape the macOS sandbox