Vendors
-
Critical nginx-ui flaw under active exploitation, researchers say
A critical nginx-ui flaw tracked as CVE-2026-33032 is under active exploitation, with researchers warning that attackers can take over Nginx service on exposed systems in just two requests.
-
Microsoft patches active SharePoint flaw in record 169-vulnerability update
Microsoft released patches for 169 vulnerabilities, including an actively exploited SharePoint spoofing flaw and a critical Windows IKE remote code execution bug. CISA added the SharePoint issue to its known exploited list.
-
Composer fixes two high-severity flaws that could allow command execution
Composer has fixed two high-severity command injection flaws that could allow arbitrary command execution through malicious Perforce data. The issues affect multiple PHP package manager releases and were addressed in version 2.9.6 and 2.2.27.
-
ShowDoc flaw under active exploitation as users urged to update
A critical ShowDoc flaw tracked as CVE-2025-0520 is being actively exploited, with attackers using it to drop web shells on a U.S. honeypot. The bug affects older versions of the software and was fixed in 2020.
-
Google adds Rust-based DNS parser to Pixel modem firmware
Google has added a Rust-based DNS parser to Pixel 10 modem firmware, saying the change lowers risk in a sensitive part of cellular communications and reduces exposure to memory-safety vulnerabilities.
-
CISA adds six exploited flaws to Known Exploited Vulnerabilities catalog
CISA added six vulnerabilities to its Known Exploited Vulnerabilities catalog after evidence of active exploitation, including flaws in Fortinet, Adobe and Microsoft products. Federal agencies face April 27, 2026 deadlines for most fixes.
-
OpenAI revokes Mac app certificate after Axios supply chain incident
OpenAI said a GitHub Actions workflow used to sign its Mac apps downloaded a malicious Axios package on March 31. The company is revoking the certificate, but said it found no evidence of data or system compromise.
-
Smart Slider update hijacked to push malicious WordPress and Joomla versions
Hackers hijacked the Smart Slider 3 Pro update system for WordPress and Joomla, pushing a malicious version that could create hidden admin accounts, install backdoors and steal credentials, according to the vendor and a technical analysis.
-
Dutch healthcare software vendor ChipSoft hit by ransomware attack
Dutch healthcare software vendor ChipSoft was hit by a ransomware attack on April 7, knocking its website offline and forcing some hospitals to take systems offline. The company serves about 80 percent of hospitals in the Netherlands.
-
Hackers exploit critical Ninja Forms WordPress flaw, Wordfence says
Hackers are exploiting a critical flaw in the Ninja Forms File Uploads WordPress add-on that can allow arbitrary file uploads and remote code execution. Wordfence said it blocked more than 3,600 attacks in 24 hours, and the vendor has released a fix.
