Critical

As Thunderbird gears up for the 2026 launch of its privacy-focused “Pro” suite, the…

Once the malicious JavaScript executes, attackers gain control of the admin session with full…

The US Department of Justice (DOJ) has unsealed two indictments against Ukrainian national Victoria…

eSecurity Planet content and product recommendations are editorially independent. We may make money when…

A security issue disclosed in the Apache Tika document-processing framework has proved broader and more serious…

Listen to the article 4 min This audio is auto-generated. Please let us know…

CVE superset The maintainers have now realized that the XXE injection flaw is not…

Dec 06, 2025Ravie LakshmananVulnerability / Patch Management The U.S. Cybersecurity and Infrastructure Security Agency…

Researchers warn that critical vulnerabilities in Meta’s React Server Components and Next.js are under…

Dec 05, 2025Ravie LakshmananApplication Security / Vulnerability A critical security flaw has been disclosed…