Aggregator

A vulnerability identified as problematic has been detected in WSO2 Identity Server, API Manager and API Control Plane. Affected is an unknown function of the component Authentication Endpoint. The manipulation leads to cross site scripting. This vulnerability is traded as CVE-2025-5770. It is possible to initiate the attack remotely. There is no exploit available. You should upgrade the affected component.

A vulnerability categorized as problematic has been discovered in SelfBest Platform 2023.3. This impacts an unknown function of the file /admin/users of the component Chat. Executing manipulation can lead to cross site scripting. This vulnerability appears as CVE-2025-63416. The attack may be performed from remote. There is no available exploit.

A vulnerability was found in Apple iOS and iPadOS up to 18.7.1. It has been rated as problematic. This affects an unknown function. Performing manipulation results in information disclosure. This vulnerability is reported as CVE-2025-43418. The attack may be carried out on the physical device. No exploit exists. Upgrading the affected component is advised.

A vulnerability was found in Quipux up to 4.0.1. It has been declared as problematic. The impacted element is an unknown function of the file anexos/anexos_nuevo.php. Such manipulation of the argument asocImgRad leads to cross site scripting. This vulnerability is documented as CVE-2025-55341. The attack can be executed remotely. There is not any exploit available.

A vulnerability was found in WSO2 Micro Integrator, API Manager, Enterprise Integrator, Universal Gateway, API Control Plane, Traffic Manager, Open Banking IAM, Open Banking AM, Identity Server as Key Manager, org.apache.synapse:synapse-core and org.apache.synapse:synapse-extensions. It has been classified as critical. The affected element is an unknown function of the component Script Mediator Engine. This manipulation causes code injection. This vulnerability is registered as CVE-2025-11093. The attack requires access to the local network. No exploit is available. Upgrading the affected component is recommended.

A vulnerability was found in GOG Galaxy 2.0.0.2 and classified as critical. Impacted is an unknown function. The manipulation results in improper certificate validation. This vulnerability is cataloged as CVE-2025-56232. The attack may be launched remotely. There is no exploit available.

A vulnerability has been found in Apple macOS, iOS and iPadOS and Safari and classified as critical. This issue affects some unknown processing of the component Web Content Handler. The manipulation leads to use after free. This vulnerability is listed as CVE-2023-43000. The attack may be initiated remotely. There is no available exploit. The affected component should be upgraded.

A vulnerability, which was classified as critical, was found in WSO2 API Manager, Open Banking IAM, Open Banking AM, API Control Plane, Universal Gateway, Traffic Manager, Micro Integrator, Identity Server, Identity Server as Key Manager, Enterprise Integrator, org.jaggeryjs:org.jaggeryjs.jaggery.app.mgt, org.wso2.carbon.event-processing:org.wso2.carbon.event.simulator.core, org.wso2.carbon.mediation:org.wso2.carbon.mediation.library, org.wso2.carbon.deployment:org.wso2.carbon.module.mgt, org.wso2.carbon.deployment:org.wso2.carbon.webapp.mgt, org.apache.ws.commons.axiom.wso2:axiom, org.wso2.carbon:org.wso2.carbon.base and org.wso2.carbon:org.wso2.carbon.utils. This vulnerability affects unknown code of the component SOAP Admin Service. Executing manipulation can lead to unrestricted upload. This vulnerability is tracked as CVE-2025-10907. The attack is only possible within the local network. No exploit exists. You should upgrade the affected component.

A vulnerability, which was classified as problematic, has been found in HCL iAutomate 6.5.1/6.5.2. This affects an unknown part. Performing manipulation results in use of get request method with sensitive query strings. This vulnerability is identified as CVE-2025-31954. The attack can be initiated remotely. There is not any exploit available.

A vulnerability classified as problematic was found in Quipux up to 4.0.1. Affected by this issue is some unknown functionality of the file Administracion/usuarios/cambiar_password_olvido_validar.php. Such manipulation of the argument txt_login leads to information disclosure. This vulnerability is referenced as CVE-2025-55342. It is possible to launch the attack remotely. No exploit is available.

A vulnerability classified as critical has been found in Quipux up to 4.0.1. Affected by this vulnerability is an unknown functionality of the file busqueda/busqueda.php. This manipulation causes sql injection. The identification of this vulnerability is CVE-2025-55343. It is possible to initiate the attack remotely. There is no exploit available.

European organizations are facing an unprecedented wave of ransomware attacks as cybercriminals increasingly integrate artificial intelligence tools into their operations. Since January 2024, big game hunting threat actors have named approximately 2,100 Europe-based victims on more than 100 dedicated leak sites, representing a 13% year-over-year increase in attacks. The region now accounts for nearly 22% […]

The post Ransomware Attack on European Organizations Surge as Hackers Leveraging AI-Tools for Attacks appeared first on Cyber Security News.

Nederland ondersteunt de Lebanese Armed Forces met circa 7,5 miljoen euro. Het geld is bedoeld voor checkpoints, trainingscentra, ontmijning en grensbewaking. De versterking van de Libanese strijdkrachten is door de defensieministers van beide landen beklonken met een Memorandum of Understanding (MoU). Dat werd ondertekend op de laatste dag van een vijfdaagse reis van minister Ruben Brekelmans door verschillende landen in het Midden-Oosten.

Google Details How Attackers Could Use LLMs to Mutate Scripts
Malware authors are experimenting with a new breed of artificial intelligence-driven attacks, with code that could potentially rewrite itself as it runs. Large language models are allowing hackers to generate, modify and execute commands on demand, instead of relying on static payloads

German Payment Processor Insiders Accused of Laundering Fake Subscription Proceeds
Police have arrested 18 suspects as part of a global crackdown targeting fraud and money laundering networks tied to the theft of $345 million by using 4.3 million cardholders' stolen data to sign them up to fake dating, pornography or streaming sites that billed monthly.

They cited past cyberattacks from Beijing as evidence of the threats posed by Chinese tech in areas like AI or energy generation.

The post House GOP leaders seek government probe, restrictions on Chinese-made tech appeared first on CyberScoop.

The U.S. Cybersecurity & Infrastructure Security Agency (CISA) is warning that threat actors are exploiting a critical remote command execution flaw in CentOS Web Panel (CWP). [...]

A survey of 400 cybersecurity leaders in the U.S. and United Kingdom published today finds all respondents reporting that AI tools are now generating code in their organization’s code base, with just under a third now seeing those tools being used to generate most of the code being created. Commissioned by Cycode, a provider of..

The post Survey: Cybersecurity Leaders Much More Concerned About AI Generated Code appeared first on Security Boulevard.

PromptLock, the AI-powered proof-of-concept ransomware developed by researchers at NYU Tandon and initially mistaken for an active threat by ESET, is no longer an isolated example: Google’s latest report shows attackers are now creating and deploying other malware that leverages LLMs to operate and evade security systems. A step toward more autonomous and adaptive malware Google’s threat intelligence analysts have observed several instances of AI-powered malware being used in the wild: QuietVault is a credential … More →

The post Google uncovers malware using LLMs to operate and evade detection appeared first on Help Net Security.