Skip to main content
FreeIntelHub
Feed Threat Feed Search Trending
Intelligence CVE Priority Vulnerability IOC Lookup IOC Feed YARA Rules Phishing Lookup Exploit Lookup Pastes Dark Web
Adversaries Threat Groups Software Campaigns
Explore Dashboard Geo Map Heatmap MITRE ATT&CK
Browse Sources Vendors Categories Sectors
RSS API
FreeIntelHub
/
Sign In

Vulnerability Disclosure

20 articles

BleepingComputer Vulnerability Disclosure Docker NEW 2h ago

Hackers exploit critical auth bypass in Gitea Docker image

Hackers are actively exploiting a critical vulnerability in the official Docker image for the Gitea self-hosted Git service that allows attackers to imperson...

T1556

BleepingComputer →

CSO Online Vulnerability Disclosure CrowdStrike NEW 3h ago

CrowdStrike identifies five new prompt injection threats to AI

Security company CrowdStrike has identified five new prompt injection techniques that could leave enterprises at risk. Prompt injections attacks exploit the ...

CSO Online →

The Hacker News Vulnerability Disclosure Amazon Intel SAP NEW 3h ago

Researcher Details WhatsApp-to-Host Attack Chain Using Three OpenClaw Flaws

Details have emerged about three now-patched security flaws in the OpenClaw personal artificial intelligence (AI) assistant that, if successfully exploited, ...

T1078 T1548

The Hacker News →

Infosecurity Magazine Vulnerability Disclosure NEW 4h ago

Anthropic and OpenAI Security Tools Could Fuel Cyber-Attacks, Researchers Warn

Researchers at the AI Now Institute developed a proof-of-concept exploit showing common AI tools used for security could backfire

Infosecurity Magazine →

BleepingComputer Vulnerability Disclosure 6h ago

Zimbra urges customers to patch critical web client XSS flaw

The Zimbra security team urged customers to patch a critical vulnerability affecting the Classic Web Client used to access the Zimbra Collaboration suite. [.

BleepingComputer →

The Hacker News Vulnerability Disclosure 8h ago

Attackers Exploit 'Ill Bloom' Vulnerability to Drain $3.1 Million From Cryptocurrency Wallets

Security firm Coinspect has disclosed a crypto wallet flaw it calls Ill Bloom, and attackers are already using it. The flaw is in how some wallet software ge...

The Hacker News →

SecurityWeek Vulnerability Disclosure 9h ago

‘HalluSquatting’ Turns AI Hallucinations Into Botnet Delivery Mechanism

Researchers demonstrate adversarial hallucination squatting against popular AI assistants to achieve remote code execution. The post ‘HalluSquatting’ Turns A...

T1190

SecurityWeek →

Help Net Security Vulnerability Disclosure Microsoft 11h ago

Microsoft is rewriting Windows patch guidance because of AI

Microsoft is recommending that organizations shorten Windows update deployment timelines, warning that advances in AI are reducing the time attackers need to...

T1598

Help Net Security →

GBHackers Vulnerability Disclosure 12h ago

OpenAI Launches GPT-5.6 With Multi-Agent Cybersecurity and Vulnerability-Exploitation Capabilities

OpenAI has introduced the GPT-5.6 family, comprising Sol, Terra, and Luna, positioning it as a multi-agent platform tailored for advanced cybersecurity workf...

GBHackers →

GBHackers Vulnerability Disclosure Microsoft Amazon 13h ago

Microsoft Uses AI-Powered Agentic Scanning to Find Windows Security Flaws and Accelerate Patching

Microsoft is expanding its AI-driven vulnerability discovery across Windows, introducing a multi-model “agentic” scanning system designed to identify securit...

GBHackers →

GBHackers Vulnerability Disclosure Amazon 13h ago

Roundcube Webmail Security Update Patches Critical Zero-Click XSS and SSRF Bypass Flaws

Roundcube has released version 1.7.

GBHackers →

CSO Online Vulnerability Disclosure Google Amazon 18h ago

AI coding tool hole illustrates a big problem with human in the loop

A security hole within AI dev tools has allowed attackers to escape sandboxes by misleading the humans in the loop who were supposed to knowingly approve the...

CSO Online →

SC Media Vulnerability Disclosure Docker 19h ago

Critical Gitea flaw allows authentication bypass via single HTTP header

The vulnerability stems from an insecure default configuration in Gitea's official Docker images (versions prior to 1.26.

T1556

SC Media →

Qualys Blog Vulnerability Disclosure 22h ago

How to Meet a 3-Day Remediation SLA & Comply with CISA BOD 26-04

Key Takeaways CISA BOD 26–04 mandates remediation of the publicly exposed, highest-risk, known-exploited vulnerabilities within 3 days. The directive applies...

Qualys Blog →

Wordfence Blog Vulnerability Disclosure Intel WordPress 1d ago

Wordfence Intelligence Weekly WordPress Vulnerability Report (June 29, 2026 to July 5, 2026)

Last week, there were disclosed in and that have been added to the Wordfence Intelligence Vulnerability Database, and there were that contributed to WordPres...

Wordfence Blog →

SC Media Vulnerability Disclosure 1d ago

Suspected Chinese spies target universities with Roundcube exploit

SC Media →

SC Media Vulnerability Disclosure 1d ago

AI coding assistants bypass safety filters through workflow manipulation

Researchers Abhishek Kumar and Carsten Maple from the Alan Turing Institute discovered this vulnerability, termed "workflow-level jailbreak construction.

SC Media →

SecurityWeek Vulnerability Disclosure Palo Alto Networks 1d ago

Palo Alto Networks Patches 13 Vulnerabilities

Buffer overflow, DoS, command injection, SSRF, authentication bypass, and other types of vulnerabilities have been found in PAN-OS software. The post Palo Al...

T1059 T1556

SecurityWeek →

CISA Advisories Vulnerability Disclosure 1d ago

Schneider Electric Easergy MiCOM Px40 Series

View CSAF Summary Schneider Electric is aware of a vulnerability in its Easergy MiCOM Px40 Series products. The [Easergy MiCOM Px40](https://www.

2 IOCs

CISA Advisories →

GBHackers Vulnerability Disclosure WordPress 1d ago

Attackers Exploit WordPress Plugin Vulnerabilities for Remote Code Execution and Webshell Access

A large-scale exploitation campaign is actively weaponising known vulnerabilities across multiple content management systems, with WordPress plugins forming ...

T1190

GBHackers →

1 2 3 ... 44 Next page»
FreeIntelHub · Open-source CTI platform

All articles belong to their respective owners. FreeIntelHub aggregates publicly available RSS feeds for informational purposes only. DMCA