From XSS to RCE: How to hijack a DotNetNuke server via a single script injection

Over 750,000 websites require patching following discovery of DotNetNuke XSS vulnerability ...
SecurityWeek

Critical cPanel & WHM Vulnerability Exploited as Zero-Day for Months

A critical-severity authentication bypass vulnerability in cPanel & WHM has been exploited as a zero-day since February 2026.

Official SAP npm packages compromised to steal credentials

Multiple official SAP npm packages were compromised in what is believed to be a TeamPCP supply-chain attack to steal ...
havasunews.com

Kidnapping suspect attempts to fire lawyer in objection to psychiatric assessment

A Lake Havasu City man could face decades in prison as he awaits trial on accusations of kidnapping and sexual conduct with a minor - and now his lawyer is ...