A critical CVSS 9.2 flaw in AdonisJS bodyparser lets attackers write arbitrary files via path traversal when uploads are ...

A critical CVSS 10.0 vulnerability in n8n allows unauthenticated attackers to read files, bypass authentication, and gain ...

In March 2025, Lovable introduced “Versioning V2.0,” which makes it easier for you to track and manage any changes you’ve ...

The jsPDF library for generating PDF documents in JavaScript applications is vulnerable to a critical vulnerability that ...

A compromised n8n instance doesn’t just mean losing one system — it means handing attackers the keys to everything,’ security ...

After the acquisition, WeTransfer, which now has over 70 million monthly active users, made unclear changes to how transfer ...

A threat actor known as Zestix has been offering to corporate data stolen from dozens of companies likely after breaching ...

Blip makes file transfer fast and effortless. The best thing is, it works cross platforms and have no file size limit.

The latest flaw in Cisco Systems Identity Services Engine (ISE), which could expose sensitive information to an attacker, ...

December 2025 was a brutal reality check for security teams. While most were winding down for the holidays, threat actors weaponized a tectonic shift in the landscape, headlined by the... The post Top ...

The Justice Department released a portion of the Jeffrey Epstein files to meet the Friday deadline established in a congressional bill with a series of downloadable files related to the convicted sex ...

Graham Kates is an investigative reporter covering criminal justice, privacy issues and information security for CBS News Digital. Contact Graham at [email protected] or [email protected] ...