NAME__________Image Optimizer by 10web plugin for WordPress directory traversalPlatforms Affected:WordPress Image Optimizer by 10web Plugin for WordPress 1.0.26Risk Level:2.7Exploitability:UnprovenConsequences:Obtain Information...
NAME__________Add to Feedly Plugin for WordPress cross-site scriptingPlatforms Affected:WordPress Add to Feedly Plugin for WordPress 1.2.11Risk Level:5.5Exploitability:HighConsequences:Cross-Site Scripting DESCRIPTION__________Add to...
NAME__________VMware Workspace ONE Access and Identity Manager security bypassPlatforms Affected:VMware Cloud Foundation VMware Workspace ONE Access 21.08.0.0 VMware Identity Manager...
NAME__________Google Chrome Installer security bypassPlatforms Affected:Google Chrome 114.0Risk Level:6.5Exploitability:UnprovenConsequences:Bypass Security DESCRIPTION__________Google Chrome could allow a remote attacker to bypass security...
NAME__________Google Chrome Extensions security bypassPlatforms Affected:Google Chrome 114.0Risk Level:6.5Exploitability:UnprovenConsequences:Bypass Security DESCRIPTION__________Google Chrome could allow a remote attacker to bypass security...
Enterprise security firm Barracuda on Tuesday disclosed that a recently patched zero-day flaw in its Email Security Gateway (ESG) appliances...
Researchers have discovered an inexpensive attack technique that could be leveraged to brute-force fingerprints on smartphones to bypass user authentication...
Linux routers in Japan are the target of a new Golang remote access trojan (RAT) called GobRAT. "Initially, the attacker...
Multiple security flaws uncovered in Sonos One wireless speakers could be potentially exploited to achieve information disclosure and remote code...
A new Android malware distributed as an advertisement SDK has been discovered in multiple apps, many previously on Google Play...
Apple has recently addressed a vulnerability that lets attackers with root privileges bypass System Integrity Protection (SIP) to install "undeletable"...
A new campaign distributing the RomCom backdoor malware is impersonating the websites of well-known or fictional software, tricking users into...
Image: Bing Image Creator Network and email security firm Barracuda today revealed that a recently patched zero-day vulnerability had been...
Automattic, the company behind the open-source WordPress content management system, has started force installing a security patch on millions of...
The premium WordPress plugin 'Gravity Forms,' currently used by over 930,000 websites, is vulnerable to unauthenticated PHP Object Injection. Gravity...
CISA and Partners Update the #StopRansomware Guide, Developed through the Joint Ransomware Task Force (JRTF) Today, CISA, the Federal Bureau...
Cisco Releases Security Advisory for Small Business Series Switches Cisco released a security advisory to address multiple vulnerabilities affecting the...
CISA Releases Four Industrial Control Systems Advisories CISA released four Industrial Control Systems (ICS) advisories on May 23, 2023. These...
CISA Adds Three Known Exploited Vulnerabilities to Catalog CISA has added three new vulnerabilities to its Known Exploited Vulnerabilities Catalog, based...
CISA Adds Three Known Exploited Vulnerabilities to Catalog CISA has added three new vulnerabilities to its Known Exploited Vulnerabilities Catalog, based...
CISA Releases One Industrial Control Systems Advisory CISA released one Industrial Control Systems (ICS) advisory on May 25, 2023. This...
CISA and Partners Release Cybersecurity Advisory Guidance detailing PRC state-sponsored actors evading detection by “Living off the Land” Today, CISA...
CISA Warns of Hurricane/Typhoon-Related Scams CISA urges users to remain on alert for malicious cyber activity following a natural disaster...
CISA Releases One Industrial Control Systems Advisory CISA released one Industrial Control Systems (ICS) advisory on May 30, 2023. These...
