Aggregator

⚡ Weekly Recap: WhatsApp 0-Day, Docker Bug, Salesforce Breach, Fake CAPTCHAs, Spyware App & More

The Hackers News
2 months ago
Cybersecurity today is less about single attacks and more about chains of small weaknesses that connect into big risks. One overlooked update, one misused account, or one hidden tool in the wrong hands can be enough to open the door. The news this week shows how attackers are mixing methods—combining stolen access, unpatched software, and clever tricks to move from small entry points to large
The Hacker News

CVE-2025-9801 | SimStudioAI sim up to ed9b9ad83f1a7c61f4392787fb51837d34eeb0af filePath path traversal (Issue 959 / EUVD-2025-26364)

VulDB Recent Entries
2 months ago
A vulnerability has been found in SimStudioAI sim up to ed9b9ad83f1a7c61f4392787fb51837d34eeb0af and classified as critical. This affects an unknown part. The manipulation of the argument filePath leads to path traversal. This vulnerability is referenced as CVE-2025-9801. Remote exploitation of the attack is possible. Furthermore, an exploit is available. This product follows a rolling release approach for continuous delivery, so version details for affected or updated releases are not provided. To fix this issue, it is recommended to deploy a patch.
vuldb.com

CVE-2025-9800 | SimStudioAI sim up to ed9b9ad83f1a7c61f4392787fb51837d34eeb0af HTML File Parser route.ts import unrestricted upload (Issue 958 / EUVD-2025-26365)

VulDB Recent Entries
2 months ago
A vulnerability, which was classified as critical, was found in SimStudioAI sim up to ed9b9ad83f1a7c61f4392787fb51837d34eeb0af. Affected by this issue is the function Import of the file apps/sim/app/api/files/upload/route.ts of the component HTML File Parser. Executing manipulation of the argument File can lead to unrestricted upload. The identification of this vulnerability is CVE-2025-9800. The attack may be launched remotely. Furthermore, there is an exploit available. This product operates on a rolling release basis, ensuring continuous delivery. Consequently, there are no version details for either affected or updated releases. A patch should be applied to remediate this issue.
vuldb.com

Crooks exploit Meta malvertising to target Android users with Brokewell

Security Affairs
2 months ago
Cybercriminals spread Brokewell via fake TradingView Premium ads on Meta, stealing crypto and data with remote control since July 2024. Bitdefender warns threat actors are abusing Meta ads to spread fake TradingView Premium apps for Android, delivering Brokewell malware to steal crypto and data. “Bitdefender researchers recently uncovered a wave of malicious ads on Facebook […]
Pierluigi Paganini

SUSE Fleet: Plain Text Storage of Vulnerability Exploit Helm Values

GBHackers on Security | #1 Globally Trusted Cyber Security News Platform
2 months ago

A high-severity vulnerability in SUSE’s Fleet, a GitOps management tool for Kubernetes clusters, has been disclosed by security researcher samjustus via GitHub Security Advisory GHSA-6h9x-9j5v-7w9h. The vulnerability, tracked as CVE-2024-52284, allows Helm chart values—often containing sensitive credentials—to be stored inside BundleDeployment resources in plain text, exposing them to any user with GET or LIST permissions. […]

The post SUSE Fleet: Plain Text Storage of Vulnerability Exploit Helm Values appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.

Mayura Kathir

CVE-2025-9799 | Langfuse up to 3.88.0 Webhook promptRouter.ts promptChangeEventSourcing server-side request forgery (Issue 8522 / EUVD-2025-26361)

VulDB Recent Entries
2 months ago
A vulnerability, which was classified as critical, has been found in Langfuse up to 3.88.0. Affected by this vulnerability is the function promptChangeEventSourcing of the file web/src/features/prompts/server/routers/promptRouter.ts of the component Webhook Handler. Performing manipulation results in server-side request forgery. This vulnerability was named CVE-2025-9799. The attack may be initiated remotely. In addition, an exploit is available.
vuldb.com

Google Web Designer Vulnerability Lets Hackers Take Over Client Systems

GBHackers on Security | #1 Globally Trusted Cyber Security News Platform
2 months ago

A critical client-side remote code execution (RCE) vulnerability in Google Web Designer exposed Windows users to full system compromise, according to a detailed write-up by security researcher Balint Magyar. Affecting versions prior to 16.4.0.0711 (released July 29, 2025), the flaw allowed attackers to inject malicious CSS into a configuration file and leverage an internal API […]

The post Google Web Designer Vulnerability Lets Hackers Take Over Client Systems appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.

Divya

CVE-2025-36133 | IBM App Connect Enterprise Certified Container up to 11.6.0/12.0.14/12.14.0 Installation log file (EUVD-2025-26340 / WID-SEC-2025-1939)

VulDB Recent Entries
2 months ago
A vulnerability classified as problematic was found in IBM App Connect Enterprise Certified Container up to 11.6.0/12.0.14/12.14.0. Affected is an unknown function of the component Installation Handler. Such manipulation leads to sensitive information in log files. This vulnerability is uniquely identified as CVE-2025-36133. Local access is required to approach this attack. No exploit exists. Upgrading the affected component is advised.
vuldb.com

Managed ad