TECH NEWS

Zero-Click pretalx XSS Flaw Lets Hackers Hijack Conference Organizer Accounts

Cybersecurity researchers at the firm Novee Security have discovered a dangerous flaw in pretalx, a popular open-source software, which allows cybercriminals to completely hijack organiser accounts without having to click a single link. It is a high-severity stored Cross-Site Scripting (XSS) vulnerability, tracked as CVE-2026-41241 with a high CVSS score of 8.7.

For your information, pretalx is widely used to run Call for Papers (CFP) processes and scheduling for everything from hacker camps to academic symposiums. The vulnerability was analyzed by Elad Meged, a founding engineer and security researcher at Novee, who noticed that while different events look independent from the outside, they run on the same underlying codebase. This means a single flaw creates systemic exposure across the industry.

Bypassing Content Security Policies

Novee’s blog post, shared with Hackread.com, reveals that the attack vector requires low privileges and low complexity, so any registered user can exploit it simply...

Copyright of this story solely belongs to hackread.com. To see the full text click HERE

Valve confirms FSR 4 for Steam Machine as AMD releases FSR 4.1 for RDNA 3 GPUs

Serving tech enthusiasts for over 25 years. TechSpot means tech analysis and advice you can trust. Looking ahead: Valve has confirmed that its Steam Machine will support AMD's FSR 4 upscaling technology. In an interview with Digital Foundry, SteamOS developer Pierre-Loup Griffais said there is no official release

https://techcrunch.com/wp-content/uploads/2026/06/tata-electronics.jpg?resize=1200,800

Tata Electronics, a major tech supplier to Apple and Tesla, confirms data breach

Tata Electronics, an Indian electronics and semiconductor manufacturer and a key supplier to Apple and Tesla, among other tech giants, confirmed a data breach weeks after files purportedly obtained from the company appeared on a hacker forum. The confirmation comes as the hacker forum listing claims to offer more than

https://www.zdnet.com/a/img/resize/f083ccbf4423469fbb7dbb4d5358d8e98ebd76b2/2026/06/22/9d035328-d161-4ab6-a3d8-704c5e5638be/wd-blue-2.jpg?auto=webp&fit=crop&height=675&width=1200

This WD Blue SSD is almost 60% off at Best Buy

Follow ZDNET: Add us as a preferred source on Google. Amazon officially kicks off its Prime Day sale tomorrow, but if you're a bit disappointed in the early SSD deal offerings, Best Buy has you covered. Right now, you can save 56% on the WD Blue SN5100 SSD,

https://cdn.mos.cms.futurecdn.net/cwjaHffXjHKMtPib9q9RRF-1920-80.jpg

I use AirTags every time I travel, and Amazon just dropped Apple's newest model to a record-low price

Even though Prime Day 2026 doesn’t kick off until tomorrow, the discount I’ve been waiting for is already here. Apple’s AirTag 2 has dropped to its lowest price ever at just $24 for a single — $5 off — and $89 for a four-pack — $10 off at Amazon. * Browse

Bypassing Content Security Policies

Read more

Valve confirms FSR 4 for Steam Machine as AMD releases FSR 4.1 for RDNA 3 GPUs

Tata Electronics, a major tech supplier to Apple and Tesla, confirms data breach

This WD Blue SSD is almost 60% off at Best Buy

I use AirTags every time I travel, and Amazon just dropped Apple's newest model to a record-low price