Vulnerability - Rankiteo Blog (Page 16)

Meta (WhatsApp)

public – 3 min read

A critical vulnerability in WhatsApp’s contact discovery feature was exposed by researchers at the University of Vienna, enabling attackers…

Nov 21, 2025

Jeremy C

WhatsApp (Meta Platforms, Inc.)

public – 4 min read

Security researchers from the University of Vienna exposed a critical vulnerability in WhatsApp’s contact discovery mechanism, enabling the enumeration…

Nov 20, 2025

Jeremy C

7-Zip

public – 2 min read

A critical security flaw (CVE-2025-11001, CVSS 7.0) in 7-Zip is being actively exploited in the wild, allowing remote attackers…

Nov 20, 2025

Jeremy C

Perplexity (Comet Browser)

public – 3 min read

Cybersecurity researchers at SquareX uncovered a critical **vulnerability** in **Comet**, Perplexity’s AI-powered browser, tied to a hidden **MCP API*…

Nov 20, 2025

Jeremy C

Perplexity (Comet AI-powered browser)

public – 3 min read

SquareX researchers discovered a critical vulnerability in **Comet**, Perplexity’s AI-powered agentic browser, where hidden built-in extensions (**Comet Analytics** and…

Nov 20, 2025

Jeremy C

Meta (WhatsApp)

public – 2 min read

Researchers in Austria exploited a long-standing vulnerability in **WhatsApp** to harvest personal data from over **3.5 billion users**, marking…

Nov 20, 2025

Jeremy C

Fortinet

public – 3 min read

The Cybersecurity and Infrastructure Security Agency (CISA) has issued an urgent warning about CVE-2025-58034, a critical OS command injection vulnerability…

Nov 19, 2025

Jeremy C

Fortinet

public – 3 min read

The critical CVE-2025-64446 vulnerability in Fortinet FortiWeb WAF allows unauthenticated attackers to gain administrative access via a relative path-traversal flaw…

Nov 18, 2025

Jeremy C

Fortinet

public – 3 min read

A critical **OS command injection vulnerability (CVE-2025-58034, CVSS 6.7)** was discovered in **Fortinet’s FortiWeb security platform**, with confirmed…

Nov 18, 2025

Jeremy C

Fortinet

public – 3 min read

The U.S. Cybersecurity and Infrastructure Security Agency (CISA) issued an urgent warning about **CVE-2025-64446**, a critical **relative path traversal…

Nov 18, 2025

Jeremy C

DoorDash

public – 3 min read

A vulnerability in DoorDash’s systems allowed threat actors to exploit an unpatched flaw in the DoorDash for Business platform,…

Nov 17, 2025

Jeremy C

ASUS

public – 3 min read

ASUS disclosed a critical authentication bypass vulnerability (CVE-2025-59367) in multiple DSL-series routers (DSL-AC51, DSL-N16, DSL-AC750), allowing unauthenticated remote attackers to…

Nov 17, 2025

Jeremy C