From XSS to RCE: How to hijack a DotNetNuke server via a single script injection

Over 750,000 websites require patching following discovery of DotNetNuke XSS vulnerability ...

Hackers exploit file upload bug in Breeze Cache WordPress plugin

Hackers are actively exploiting a critical vulnerability in the Breeze Cache plugin for WordPress that allows uploading ...
Cybernews

750,000 DNN websites in danger: a simple SVG upload can lead to complete compromise

A severe cross-site-scripting (XSS) vulnerability in DNN, a popular open-source content management platform, allows attackers ...

Tiiny Host Gives AI Agents the Power to Publish Anything Online: 100+ File Types, Zero Friction, One Sentence

Say “publish this as a website” and your AI agent handles the rest: it builds the file, uploads it, and hands you a ...

Thousands of companies file claims as U.S. tariff refund system launches

Learning Resources, one of the plaintiffs in the lawsuit that led to the tariffs’ undoing, is seeking some US$10-million in refunds. The company has filed about 5,000 entries, and so far, the vast ...
Bleeping Computer

Hackers exploit critical flaw in Ninja Forms WordPress plugin

A critical vulnerability in the Ninja Forms File Uploads premium add-on for WordPress allows uploading arbitrary files without authentication, which can lead to remote code execution. Identified as ...