NAME__________Elastic Elasticsearch denial of servicePlatforms Affected:Risk Level:6.5Exploitability:UnprovenConsequences:Denial of Service DESCRIPTION__________Elastic Elasticsearch is vulnerable to a denial of service, caused by...
NAME__________Accordion Plugin for WordPress cross-site scriptingPlatforms Affected:WordPress Accordion Plugin for WordPress 2.6Risk Level:5.9Exploitability:HighConsequences:Cross-Site Scripting DESCRIPTION__________Accordion Plugin for WordPress is vulnerable...
NAME__________Ajax Domain Checker Plugin for WordPress cross-site scriptingPlatforms Affected:WordPress UserPro Plugin for WordPress 5.1.0Risk Level:6.5Exploitability:HighConsequences:Cross-Site Scripting DESCRIPTION__________Ajax Domain Checker Plugin...
NAME__________Charitable Plugin for WordPress cross-site scriptingPlatforms Affected:WordPress Charitable Plugin for WordPress 1.7.0.13Risk Level:6.5Exploitability:HighConsequences:Cross-Site Scripting DESCRIPTION__________Charitable Plugin for WordPress is vulnerable...
NAME__________Daily Prayer Time Plugin for WordPress cross-site scriptingPlatforms Affected:WordPress Daily Prayer Time Plugin for WordPress 2023.10.13Risk Level:6.5Exploitability:HighConsequences:Cross-Site Scripting DESCRIPTION__________Daily Prayer...
NAME__________Better RSS Widget Plugin for WordPress cross-site scriptingPlatforms Affected:WordPress Better RSS Widget Plugin for WordPress 2.8.1Risk Level:6.5Exploitability:HighConsequences:Cross-Site Scripting DESCRIPTION__________Better RSS...
An unspecified government entity in Afghanistan was targeted by a previously undocumented web shell called HrServ in what's suspected to...
The National Cyber Security Centre (NCSC) and Korea's National Intelligence Service (NIS) warn that the North Korean Lazarus hacking group...
A cyberattack on CTS, a leading managed service provider (MSP) for law firms and other organizations in the UK legal...
Open source file sharing software ownCloud is warning of three critical-severity security vulnerabilities, including one that can expose administrator passwords...
The US Cybersecurity and Infrastructure Security Agency (CISA) has relaunched a key working group, with ambitious plans to understand the...
Security researchers have warned of triple-digit increase in the volume of phishing emails designed to trick shoppers, ahead of the...
Security researchers have found a way to bypass the popular Windows Hello fingerprint authentication technology, after discovering multiple vulnerabilities.Microsoft’s Offensive...
House sales and purchases across the UK have been disrupted by a cyber-attack affecting multiple conveyancing firms.CTS, a legal sector...
HIBP In November 2023, the kitchen management application KitchenPal suffered a data breach that exposed 146k lines of data. When...
FBI and CISA Release Advisory on Scattered Spider Group Today, the Federal Bureau of Investigation (FBI) and the Cybersecurity and...
Citrix Releases Security Updates for Citrix Hypervisor Citrix has released security updates addressing vulnerabilities in Citrix Hypervisor 8.2 CU1 LTSR....
CISA Requests Comment on Draft Secure Software Development Attestation Form CISA has opened a 30-day Federal Register notice to receive...
CISA Releases The Mitigation Guide: Healthcare and Public Health (HPH) Sector Today, CISA released the Mitigation Guide: Healthcare and Public...
Juniper Releases Security Advisory for Juniper Secure Analytics Juniper released a security advisory to address multiple vulnerabilities affecting Juniper Secure...
CISA Releases Five Industrial Control Systems Advisories CISA released five Industrial Control Systems (ICS) advisories on November 21, 2023. These...
CISA, FBI, MS-ISAC, and ASD’s ACSC Release Advisory on LockBit Affiliates Exploiting Citrix Bleed Today, the Cybersecurity and Infrastructure Security...
Adobe Releases Security Updates for ColdFusion On Nov. 14, 2023, Adobe released security updates addressing vulnerabilities affecting unpatched ColdFusion software....
CISA Adds One Known Exploited Vulnerability to Catalog CISA has added one new vulnerability to its Known Exploited Vulnerabilities Catalog, based...
