WP Maps Pro bug exploited to create admin accounts on WordPress sites

Hackers are targeting WordPress websites running a vulnerable version of the WP Maps Pro plugin, which allows creating rogue ...

Did 19-year-old Nisarga Adhikary hack CBSE OSM portal? Claims, counterclaims explained

Nisarga Adhikary claimed he had hacked the CBSE website and identified serious lapses in the agency's On Screen Marking (OSM) ...

Hacker or Whistleblower? Teen claims he hacked CBSE marking portal!

At a time when lakhs of CBSE students are already dealing with revaluation portal crashes, blurred answer sheet complaints, deadline extensions and incorrect marks, a fresh controversy has now emerged ...
Oneindia

‘Weak Defences’: Class 12 Ethical Hacker Claims It Took Only A Few Minutes To Hack CBSE OSM System

An independent researcher highlights potential security weaknesses in the CBSE On-Screen Marking portal, raising questions ...

'Anyone Could Edit Marks': 19-Year-Old Ethical Hacker Alleges Major Security Flaws In CBSE Evaluation System

Amid mounting student complaints over CBSE’s new On-Screen Marking system, a Class 12 student and cybersecurity researcher ...
The Financial Express

‘CBSE portal very easy to exploit’: Class 12 hacker says he ‘didn’t expect amateur vulnerabilities’ | Exclusive

Just before appearing for his own Class 12 board exams, teenager and cybersecurity hobbyist Nisarga Adhikary claims he uncovered major vulnerabilities in a portal linked to CBSE’s digital evaluation ...
InfoWorld

AntV data visualization tool the latest to be hit by ongoing npm supply chain attacks

The world’s largest open-source registry, node package manager (npm), has been hit by another fast-moving malware attack, ...
Tech Times

Exchange Server OWA Zero-Day CVE-2026-42897 Exploited With No Permanent Patch and New Mitigation Gaps

Microsoft confirmed on May 14 that CVE-2026-42897 — a cross-site scripting flaw in the Outlook Web Access component of Exchange Server 2016, 2019, and Subscription Edition — is under active ...
Tech Times

Ghost CMS SQL Injection Hits 700 Sites: Harvard, DuckDuckGo Serve Fake Cloudflare Malware

Ghost CMS SQL injection campaign has compromised 700+ websites — including Harvard University, Oxford University, and DuckDuckGo — using a CVSS 9.4 flaw to inject ClickFix malware lures that trick ...

This teen hacked into CBSE’s OSM portal while preparing for boards, says ‘This is just a hobby…’

What began as curiosity during board exam season has now turned a 19-year-old student from Siliguri into the centre of a viral cybersecurity controversy ...
India Today on MSN

Hacker Nisarga claims he broke into CBSE marking portal, warned board months ago

A teen cybersecurity researcher's blog post alleging serious flaws in CBSE's On-Screen Marking portal has triggered concern ...