Drupal Core SQL Injection Bug Actively Exploited, Added to CISA KEV
What's new: A critical SQL injection vulnerability (CVE-2026-9082, CVSS score: 6.5) in Drupal Core has been added to CISA's Known...
Year: 2026
Laravel-Lang PHP Packages Compromised to Deliver Cross-Platform Credential Stealer
What's new: A supply chain attack has compromised multiple Laravel-Lang PHP packages, including laravel-lang/lang, laravel-lang/http-statuses, laravel-lang/attributes, and laravel-lang/actions. Over 700...
NSAuditor AI EE 0.12.0 — ISO/IEC 27001:2022 Introduced as Fifth Compliance Framework: Per-Annex-A-Code Evidence at Auditor-Canonical Granularity, Statement of Applicability Discipline, ISMS Clauses 4-10 OOS-by-Design, 11 NEW 2022 Controls, 5-Attribute Taxonomy, 2013-to-2022 Transition Discipline, Cloud-Provider Certificate Inheritance Matrix, Penta-Framework One-Scan Workflow
LAS VEGAS, NV — May 24, 2026 — Nsasoft US LLC today shipped NSAuditor AI Enterprise Edition v0.12.0 to npm...
LiteSpeed cPanel Plugin CVE-2026-48172 Exploited to Run Scripts as Root
What's new: A critical vulnerability, CVE-2026-48172 (CVSS score: 10.0), has been discovered in the LiteSpeed User-End cPanel Plugin, allowing attackers...
Claude Mythos AI Finds 10,000 High-Severity Flaws in Widely Used Software
What's new: Anthropic's Project Glasswing has identified over 10,000 high- or critical-severity vulnerabilities in widely used software since its launch...
