VulnHub

A serious vulnerability in Appsmith has been discovered that could allow attackers to take over user accounts through a flawed password reset process. This flaw could potentially expose sensitive information and disrupt services for users relying on the platform for application development. The issue affects all users of Appsmith who utilize the password reset feature, making it a widespread concern. Security researchers are urging users to stay vigilant and take immediate action to protect their accounts. It's crucial for Appsmith to address this vulnerability quickly to prevent any further exploitation and maintain user trust.

Researchers from Graz University of Technology in Austria have optimized attacks targeting the Linux page cache, a previously known vulnerability. By enhancing the speed of these attacks, they can potentially extract sensitive data from the memory of running applications more efficiently. This could affect systems that rely on Linux, particularly in environments where sensitive information is processed. The implications of this research are significant, as it raises concerns about the security of Linux-based systems used in various sectors, including servers and cloud environments. Users and organizations should be aware of the potential for data leakage and consider reviewing their security measures to protect against such exploits.

A recent analysis by VulnCheck has revealed a troubling trend in cybersecurity: the percentage of vulnerabilities being exploited before they are publicly disclosed has risen significantly from 23.6% in 2024 to nearly 29% in 2025. This increase indicates that attackers are becoming more adept at identifying and exploiting weaknesses in software and systems before developers have a chance to address them. This situation puts both companies and users at greater risk, as they may be unaware of the vulnerabilities affecting their systems until after an attack occurs. It’s crucial for organizations to prioritize vulnerability management and stay updated on potential threats to safeguard their assets effectively. The rise in zero-day exploits highlights the need for more proactive security measures and timely disclosure by vendors.

Anthropic has addressed several critical vulnerabilities found in their Git MCP server, identified by the AI security startup Cyata. The issues include a path validation bypass (CVE-2025-68145), an unrestricted git_init problem (CVE-2025-68143), and an argument injection vulnerability in git_diff (CVE-2025-68144). These vulnerabilities could potentially allow attackers to manipulate Git operations, which could compromise the integrity of code repositories. It is essential for users of the Git MCP server to apply the latest patches to ensure their systems are secure against these threats, as failure to do so may expose them to exploitation. Users are urged to stay informed about these vulnerabilities and take necessary actions to protect their environments.

A recent report from Corporation Service Co. (CSC) indicates that a significant number of Global 2000 companies are falling short on domain security. Specifically, 67% of these companies have implemented fewer than half of the recommended security measures for their domains. This lack of adequate protection raises concerns about the vulnerability of these major organizations to cyber threats, such as phishing and domain spoofing. Without proper domain security practices, companies risk their reputation and data integrity, which can lead to financial losses and customer trust issues. The findings serve as a wake-up call for businesses to prioritize their domain security strategies and adopt necessary measures to safeguard their online presence.

TP-Link has addressed a serious vulnerability in its VIGI camera line, which was rated with a CVSS score of 8.7. This flaw allowed attackers on the same local network to bypass authentication during the password recovery process, potentially giving them unauthorized access to the cameras. Users of TP-Link VIGI cameras should be aware of this issue, as it could compromise the security of their surveillance systems. The company has released patches to fix this vulnerability, and it is crucial for users to apply these updates promptly to protect their devices from potential exploitation. Ensuring that all camera firmware is up-to-date is essential for maintaining security.

Zoom and GitLab have rolled out security updates to fix several vulnerabilities, including a critical flaw that could allow remote code execution (RCE) on Zoom Node Multimedia Routers (MMRs). This vulnerability, identified as CVE-2026-22844, poses a significant risk as it could enable an attacker to execute malicious code during a meeting. Additionally, the updates address issues related to denial-of-service (DoS) attacks and two-factor authentication (2FA) bypasses, which could compromise user accounts. Organizations using these platforms should prioritize applying the latest updates to safeguard their systems against potential exploitation. Keeping software up to date is crucial to maintaining security and protecting sensitive data.

Cloudflare has patched a vulnerability in its Web Application Firewall (WAF) that could allow attackers to bypass security measures and gain direct access to servers. This vulnerability was identified by researchers from FearsOff in October and reported through Cloudflare's bug bounty program. Companies using Cloudflare’s WAF should be aware that this issue posed a risk of unauthorized access to their systems. The patch has been released to mitigate this risk, and it’s crucial for users to apply the updates promptly to ensure their applications remain secure. Staying ahead of such vulnerabilities is essential for maintaining the integrity of web applications.

Cloudflare recently addressed a vulnerability in its ACME validation logic that could allow attackers to bypass security measures and access protected origin servers. The flaw was linked to how Cloudflare's edge servers processed requests directed at the /.well-known/acme-challenge/ path. If exploited, this could potentially grant unauthorized access to sensitive data or services hosted on those servers. The fix is crucial for organizations relying on Cloudflare for security, as it strengthens the integrity of their server access protocols. Users and administrators should ensure their systems are updated to mitigate any risks associated with this vulnerability.

GitLab has issued a security patch for a serious vulnerability that allows attackers to bypass two-factor authentication (2FA) in both its community and enterprise editions. This flaw could potentially give unauthorized users access to sensitive accounts if exploited. Additionally, GitLab addressed issues related to denial-of-service (DoS) attacks, which could disrupt services for legitimate users. The company advises all users to update their systems promptly to mitigate these risks. This situation emphasizes the importance of keeping software up to date to protect against emerging threats.

A security lapse at a Carlsberg exhibition exposed attendees' personal information due to a poorly secured wristband system. This system allowed unauthorized access to sensitive data, such as visitor photos, videos, and full names. Despite attempts by a researcher to report the vulnerability, their concerns were ignored for several months, raising questions about the company's response to security issues. The incident underscores the need for better data protection practices, especially at public events where personal information is collected. This breach not only affects the individuals whose data was exposed but also damages Carlsberg's reputation as a secure event organizer.