Security Boulevard

What is Application Security Testing? Detail Explanation

Your organization, the industrial domain you survive on, and almost everything you deal with rely on software applications. Be it banking portals, healthcare systems, or any other, securing those ...
The Register on MSN

Federal agencies told to fix or ditch Gogs as exploited zero-day lands on CISA hit list

Git server flaw that attackers have been abusing for months has now caught the attention of US cyber cops CISA has ordered ...
Redmondmag.com

Zero-Day Attack Drives 113-Vulnerability Patch Tuesday Release to Start 2026

Microsoft rang in 2026 with its biggest January Patch Tuesday rollout in four years, shipping fixes for 113 vulnerabilities ...
CSO Online

Critical jsPDF vulnerability enables arbitrary file read in Node.js deployments

The path traversal bug allows attackers to include arbitrary filesystem content in generated PDFs when file paths are not ...
Infosecurity Magazine

CISA Flags Actively Exploited Gogs Vulnerability With No Patch

A high-severity security flaw in the Gogs Git service is being actively exploited, leading to remote code execution ...

Trend Micro warns of critical Apex Central RCE vulnerability

Japanese cybersecurity software firm Trend Micro has patched a critical security flaw in Apex Central (on-premise) that could allow attackers to execute arbitrary code with SYSTEM privileges.
Bleeping Computer

HPE warns of maximum severity RCE flaw in OneView software

Hewlett Packard Enterprise (HPE) has patched a maximum-severity vulnerability in its HPE OneView software that enables attackers to execute arbitrary code remotely. OneView is HPE's infrastructure ...

This SmarterMail vulnerability allows remote code execution - here's what we know

Business-grade email server software SmarterMail just patched a maximum-severity vulnerability that allowed threat actors to engage in remote code execution (RCE) attacks.