Attackers are actively exploiting a maximum-severity (CVSS 10.0) vulnerability in Adobe ColdFusion, tracked as [CVE-2026-48282](https://www.bleepingcomputer.com/news/security/max-severity-adobe-coldfu
Security researchers at Paradigm Shift have published a working exploit called [usbliter8](https://thehackernews.com/2026/06/unpatchable-usbliter8-exploit-breaks.html) that achieves arbitrary code exe
Cisco has patched a critical flaw in Unified Communications Manager (Unified CM) — **CVE-2026-20230** — that lets an unauthenticated attacker on the same network write arbitrary files to the device an
Threat actors are actively exploiting a critical vulnerability in **WP Maps Pro**, a commercial WordPress plugin with over 15,000 sales on Envato Market, to register unauthorized administrator account
A researcher operating under the handle **Nightmare Eclipse** has published proof-of-concept (PoC) exploit code for one or more unpatched Microsoft zero-day vulnerabilities, touching off a public disp