Exploitation

Attackers exploiting critical auth-bypass flaw in Service Finder WordPress theme

Cybercrime, News, Risk, Vendors, Vulnerabilities

October 9, 2025

Security researchers at Wordfence say attackers are actively exploiting CVE-2025-5947, a critical authentication-bypass flaw in the Service Finder WordPress theme that can give attackers administrator access; a patch was released in version 6.1 and administrators are urged to update or stop using the theme.
CISA Identifies Four Critical Vulnerabilities Under Active Exploitation

News, Risk, Vulnerabilities

July 8, 2025

CISA has identified four critical vulnerabilities under active exploitation, urging organizations to take immediate action to update their systems to protect against potential threats.
Exploitation of Vulnerabilities on the Rise: 159 CVEs Flagged in Q1 2025

Cybercrime, News, Vulnerabilities

April 25, 2025

A recent report reveals that 159 CVEs were flagged as exploited in Q1 2025, highlighting a growing trend in vulnerability exploitation within cybersecurity. Urgent actions are needed to mitigate such risks amid rising threats.