GCN

Microsoft patch fixes 80+ flaws, two zero-days

Microsoft September 2025 Patch Tuesday fixes 81 vulnerabilities including two zero-days in Windows SMB Server and SQL Server, ...
Bleeping Computer

CISA urges software devs to weed out SQL injection vulnerabilities

CISA and the FBI urged executives of technology manufacturing companies to prompt formal reviews of their organizations' software and implement mitigations to eliminate SQL injection (SQLi) security ...

For September, Patch Tuesday means fixes for Windows, Office and SQL Server

This month’s collection of fixes from Microsoft includes 86 patches — but at least there were no zero-day bugs.
GCN

India’s CERT-In flags new flaws in enterprise software

CERT-In issues high-severity alerts for Microsoft products and Google Chrome vulnerabilities, warning of remote code ...
TechSpot

Major TSA security flaw exposed, simple SQL vulnerability could have allowed access to airplane cockpits

Why it matters: Security researchers have uncovered a major vulnerability that could have allowed anyone to bypass airport security and even access airplane cockpits. The flaw was found in the login ...
CSOonline

SQL injection, XSS vulnerabilities continue to plague organizations

Errors that allow SQL injection and cross-site scripting attacks are still the top vulnerabilities that pen-testers find, especially at smaller companies. Despite years topping vulnerability lists, ...