CSO Online

Critical jsPDF vulnerability enables arbitrary file read in Node.js deployments

The path traversal bug allows attackers to include arbitrary filesystem content in generated PDFs when file paths are not ...
The Hacker News

Researchers Uncover NodeCordRAT Hidden in npm Bitcoin-Themed Packages

Security researchers found 3 npm packages that installed NodeCordRAT malware, stealing browser data, crypto wallet secrets & ...
GitHub

smartCARS 3 phpVMS 7 API

smartCARS 3 is a web-based flight tracking system for virtual airlines. It is a complete rewrite of the original smartCARS system, and is designed to be more flexible and easier to use. This ...
CSO Online

Critical RCE flaw allows full takeover of n8n AI workflow platform

A compromised n8n instance doesn’t just mean losing one system — it means handing attackers the keys to everything,’ security ...
GitHub

i-doit API client library

i-doit is a software application for IT documentation and a CMDB (Configuration Management Database). This application is very useful to collect all your knowledge about the IT infrastructure you are ...
The Hacker News

Critical AdonisJS Bodyparser Flaw (CVSS 9.2) Enables Arbitrary File Write on Servers

A critical CVSS 9.2 flaw in AdonisJS bodyparser lets attackers write arbitrary files via path traversal when uploads are ...

The IRS/SSA Begins Accepting 1099, W-2, and 94x for 2025 Tax Year Monday, January 5, 2026

TaxBandits Ensures Stress-Free Filing with The Bandit Commitment ROCK HILL, SC / ACCESS Newswire / January 5, 2026 / As the new year begins, businesses and tax professionals are gearing up for one of ...
Security Boulevard

API Authentication Methods Explained: API Keys, OAuth, JWT & HMAC Compared

A deep dive comparing API Keys, OAuth 2.0, JWT, and HMAC for CTOs. Learn which api authentication method fits your enterprise SSO and IAM strategy.

Questa launches a new privacy focused AI Assistant to get insights from business files ...

Questa releases a Privacy focused AI Analytics Assistant that first anonymizes all sensitive information from documents to prevent AI training on them. AI Privacy is not an abstract academic concept ...