CVE-2026-59151: CWE-287: Improper Authentication in prowler-cloud prowler
CVE-2026-59151 is a critical improper authentication vulnerability in prowler versions prior to 5.30.3. The flaw involves trusting the email domain asserted in a SAMLResponse during authentication…
Read the full articleYou might also wanna read

WAF - WAF Release - 2025-10-24 - Emergency
This week’s release introduces a new detection signature that enhances coverage for a critical vulnerability in Windows Server Update Servic

WAF - WAF Release - 2026-04-30 - Emergency
This emergency release introduces a new rule to block a cPanel & WHM Authentication Bypass related to CVE-2026-41940. Key Findings CVE-2026-
Critical Authentication Bypass Vulnerability Discovered in cPanel & WHM (CVE-2026-41940)
Hello! Yes, it's all a disaster again! Let's get this party started: 0:00 /0:12 1× No comments today, so imagine this: * We wrote something
watchTowr Labs·2mo agoAnalysis of CVE-2026-4020: Coordinated Google Cloud Fleet Exploiting Gravity SMTP WordPress Vulnerability
Almost every IP we logged exploiting the Gravity SMTP credential bug shares one HTTP fingerprint. Behind it is a Google Cloud fleet of thous

WAF - WAF Release - 2025-08-18
This week's update This week, a series of critical vulnerabilities were discovered impacting core enterprise and open-source infrastructure.

WAF - WAF Release - 2025-11-21
This week’s release introduces a critical detection for CVE-2025-61757, a vulnerability in the Oracle Identity Manager REST WebServices comp

Comments
Sign in to join the conversation.
No comments yet. Be the first.