The Hacker News1d
CISA Warns of Sitecore RCE Flaws; Active Exploits Hit Next.js and DrayTek Devices
CISA adds Sitecore flaws CVE-2019-9874 and CVE-2019-9875 to KEV amid active exploitation and agency patch mandates.
InfoWorld1d
Warning for developers, web admins: update Next.js to prevent exploit
Vercel recommends that, if patching to a safe version is not feasible, admins should prevent external user requests which ...