KnowledgeDeliver flaw exploited as a zero-day to install web shells

Hackers exploited a critical zero-day vulnerability in a server running the KnowledgeDeliver learning management system (LMS) to deploy the Godzilla web shell.

‘No security breach’: CBSE clarifies after Class 12 student claims ‘vulnerabilities’ in OSM portal

CBSE clarified that the portal used for evaluation answer sheets has a different URL than the one visible on the teenager's ...

Canadian companies are leading in femtech innovation. But where is the funding?

Femtech startups such as Coral, a virtual clinic for navigating menopause, aim to help women thrive in midlife and beyond ...

Ex-Google Engineer Calls Out CBSE's OSM Portal 'Absolute Embarrassment' After Hacker Exposes Major Security Flaws

Hacker revealed multiple severe security flaws in the system, reporting the vulnerabilities to authorities over three months ...

Thousands of failed refugee claimants may be eligible to keep federal health benefits, new report finds

Thousands of refugee claimants who have had their cases rejected and are facing deportation may remain eligible for publicly ...
Tech Xplore

Unstable software tests ripple through 55% of OpenStack projects, costing 1,156 developer days

In a study published in IEEE Transactions on Software Engineering, researchers from Kyushu University have found that "flaky ...
SecurityWeek

Hackers Exploited KnowledgeDeliver Zero-Day for Web Shell Deployment

CVE-2026-5426, a hardcoded ASP.NET machineKey in KnowledgeDeliver, was exploited as a zero-day in ViewState deserialization ...