Infosecurity Magazine

Top 25 Most Dangerous Software Weaknesses of 2025 Revealed

MITRE has released its Top 25 CWE list for 2025, compiled from software and hardware flaws behind almost 40,000 CVEs ...
The Hacker News

FreePBX Authentication Bypass Exposed via Misconfigured Webserver AUTHTYPE

FreePBX patched 2025 flaws allowing SQL injection, file upload attacks, and an auth bypass only when webserver AUTHTYPE was ...