Malicious Hugging Face Models Could Trigger Remote Code Execution

A flaw in Hugging Face Transformers could allow malicious AI models to execute code, exposing credentials and highlighting AI ...
SecurityWeek

Critical Windows Netlogon Vulnerability in Attackers’ Crosshairs

Hackers are exploiting a critical-severity Windows Netlogon vulnerability (CVE-2026-41089) for remote code execution.
The Hacker News

Critical Gogs RCE Vulnerability Lets Any Authenticated User Execute Arbitrary Code

A critical security vulnerability has been disclosed in Gogs, a popular open-source self-hosted Git service, that allows an ...
CSO Online

Hugging Face Transformers RCE flaw enables stealthy compromise via AI model configs

With over 2.2 billion installs, the flawed Python package offers attackers a huge blast radius, including silent access to ...

Race Against Time: Why Faster Vulnerability Alerts Matter

Attackers are exploiting vulnerabilities faster than many organizations can identify and patch them. SecAlerts explains why ...
SecurityWeek

Mirasvit Vulnerability Exploited to Execute Code on Magento Servers

Hackers are exploiting a critical vulnerability in Mirasvit Full Page Cache Warmer to execute code remotely on Magento ...
Bleeping Computer

Critical Windows Netlogon RCE flaw now exploited in attacks

The Centre for Cybersecurity Belgium (CCB), the country's national authority for cybersecurity, warned on Friday that threat actors are now exploiting a recently patched critical Windows Netlogon ...
Infosecurity Magazine

Everest Forms Pro Vulnerability Allows Remote Code Execution on WordPress Sites

A critical vulnerability in the Everest Forms Pro plugin for WordPress has been actively exploited to hijack vulnerable ...
The Hacker News

Microsoft Patches SharePoint RCE Flaw CVE-2026-45659 Across Server Versions

Microsoft released fixes for SharePoint remote code execution vulnerability CVE-2026-45659 with a CVSS score of 8.8.
TweakTown

Call of Duty: WWII taken offline after RCE vulnerability let hackers take over PCs

Use left and right arrow keys to seek audio. Over the weekend, the Call of Duty team at Activision Blizzard announced that the PC version of Call of Duty: WWII on the Xbox App (recently made available ...
Infosecurity-magazine.com

RCE Vulnerability Found in RomethemeKit For Elementor Plugin

A severe security flaw in the popular RomethemeKit For Elementor WordPress plugin has been identified and patched. The issue, which could allow Remote Code Execution (RCE), has been fixed in version 1 ...