securityweek.com
Resources curated from this publisher and indexed across appsec.fyi topic pages. Last item added: 2026-04-22.
| Date Added | Resource | Excerpt |
|---|---|---|
| 2026-04-22 2026 | Critical Apache Tika Vulnerability Leads to XXE InjectionXXE | Critical Apache Tika Vulnerability Leads to XXE Injection |
| 2026-04-22 2026 | Are SBOMs Failing? Supply Chain Attacks Rise as Security Teams Struggle With SBOM DataSupply Chain | Are SBOMs Failing? Supply Chain Attacks Rise as Security Teams Struggle With SBOM Data https://ift.tt/GMVqgjU |
| 2026-04-22 2026 | Google Antigravity in Crosshairs of Security Researchers CybercriminalsRCE | Google Antigravity in Crosshairs of Security Researchers, Cybercriminals https://ift.tt/ZgkxGsP |
| 2026-04-16 2026 | Splunk Enterprise Update Patches Code Execution VulnerabilityRCE | Splunk Enterprise Update Patches Code Execution Vulnerability https://ift.tt/yEFDJYv |
| 2026-04-15 2026 | Fortinet Patches Critical FortiSandbox VulnerabilitiesRCE | Fortinet Patches Critical FortiSandbox Vulnerabilities https://ift.tt/pyBwK5D |
| 2026-04-13 2026 | OpenAI Impacted by North Korea-Linked Axios Supply Chain HackSupply Chain | OpenAI Impacted by North Korea-Linked Axios Supply Chain Hack https://ift.tt/wPCoQdT |
| 2026-04-10 2026 | Orthanc DICOM Vulnerabilities Lead to Crashes RCERCE | Orthanc DICOM Vulnerabilities Lead to Crashes, RCE https://ift.tt/nFMqEBl |
| 2026-04-10 2026 | Critical Marimo Flaw Exploited Hours After Public DisclosureRCE | Critical Marimo Flaw Exploited Hours After Public Disclosure https://ift.tt/gzb32yH |
| 2026-04-08 2026 | RCE Bug Lurked in Apache ActiveMQ Classic for 13 YearsRCE | RCE Bug Lurked in Apache ActiveMQ Classic for 13 Years https://ift.tt/cfuOEAB |
| 2026-04-08 2026 | Hackers Targeting Ninja Forms Bug That Exposes WordPress Sites to TakeoverRCE | Hackers Targeting Ninja Forms Bug That Exposes WordPress Sites to Takeover https://ift.tt/Fz0BpSJ |
| 2026-04-07 2026 | Guardarian Users Targeted With Malicious Strapi NPM PackagesSupply Chain | Guardarian Users Targeted With Malicious Strapi NPM Packages https://ift.tt/jK1NqyB |
| 2026-04-07 2026 | Critical Flowise Vulnerability in Attacker CrosshairsRCE | Critical Flowise Vulnerability in Attacker Crosshairs https://ift.tt/idUQSub |
| 2026-04-07 2026 | North Korean Hackers Target High-Profile Node.js MaintainersSupply Chain | North Korean Hackers Target High-Profile Node.js Maintainers https://ift.tt/gxul7qM |
| 2026-04-04 2026 | European Commission Confirms Data Breach Linked to Trivy Supply Chain AttackSupply Chain | European Commission Confirms Data Breach Linked to Trivy Supply Chain Attack https://ift.tt/rtNZKwj |
| 2026-04-03 2026 | Critical ShareFile Flaws Lead to Unauthenticated RCERCE | Critical ShareFile Flaws Lead to Unauthenticated RCE https://ift.tt/ge2ZksB |
| 2026-03-19 2026 | Russian APT Exploits Zimbra Vulnerability Against UkraineXSS | Russian APT Exploits Zimbra Vulnerability Against Ukraine https://ift.tt/MVsWfZC |
| 2024-12-10 2024 | SAP Patches Critical Vulnerability in NetWeaverSSRF | SAP has addressed a critical vulnerability in its NetWeaver platform through patches. The vulnerability posed a significant security risk, prompting the need for immediate action to protect systems using NetWeaver. By releasing these patches, SAP aims to enhance the security of its software and prevent potential exploitation of the vulnerability by malicious actors. This highlights the importance of timely updates and security measures to safeguard sensitive data and systems from cyber threats. |
| 2024-10-11 2024 | GitLab Patches Pipeline Execution SSRF XSS VulnerabilitiesSSRF | GitLab recently addressed security vulnerabilities related to Pipeline Execution, Server-Side Request Forgery (SSRF), and Cross-Site Scripting (XSS) through patches. These vulnerabilities could potentially be exploited by attackers to compromise the security of GitLab instances. The patches aim to prevent these vulnerabilities from being exploited, enhancing the overall security of the platform. |