A serious security flaw in ProjectDiscovery’s Nuclei, a widely-used open-source vulnerability scanner, allows attackers to bypass signature checks and potentially execute harmful code, according to cloud security firm Wiz. The flaw can enable a bypass of the crucial verification step, allowing attackers to create malicious templates that can run arbitrary code and access sensitive data from the host. The vulnerability was responsibly disclosed and subsequently addressed by ProjectDiscovery.
IXON VPN Client Vulnerability Let Attackers Escalate Privileges
Significant vulnerabilities (CVE-2025-26168, CVE-2025-26169) in the IXON VPN Client allow local attackers to gain system-level privileges on Windows, Linux, and macOS. These flaws, affecting versions
