SecurityWeek

No Patch for New PhantomRPC Privilege Escalation Technique in Windows

The PhantomRPC Windows vulnerability allows attackers to elevate their privileges to System by using a fake RPC server.
Dark Reading

Unpatched 'PhantomRPC' Flaw in Windows Enables Privilege Escalation

A researcher discovered five different exploit paths that stem from an architectural weakness in Windows' Remote Procedure ...
UNESCO

Reporting a Cybersecurity Issue: UNESCO’s Security Vulnerability Disclosure policy

reported a XML-RPC Endpoints Exposure on UNESCO resources 20 October 2025 Ibnu Mustova (mailto) reported a Reflective XSS vulnerability on UNESCO resources 17 October 2025 Taofik Hidayat (mailto) ...