Information securityfromThe Hacker News1 month agoCISA Adds Two Actively Exploited Roundcube Flaws to KEV CatalogTwo actively exploited Roundcube vulnerabilities (CVE-2025-49113, CVE-2025-68461) enable remote code execution and XSS; federal agencies must remediate by March 13, 2026.
Information securityfromThe Hacker News10 months agoCISA Adds Erlang SSH and Roundcube Flaws to Known Exploited Vulnerabilities CatalogCISA has identified two critical vulnerabilities requiring immediate attention from users of Erlang/OTP and Roundcube due to active exploitation.