X

Vous n'êtes pas connecté

Rubriques :

  - SECURITYAFFAIRS.CO - A La Une - 31/Jul 16:11

Attackers actively exploit critical zero-day in Alone WordPress Theme

Hackers exploit a critical vulnerability, tracked as CVE-2025-5394 (CVSS score of 9.8), in the Alone WordPress theme to hijack sites. Threat actors are actively exploiting a critical flaw, tracked as CVE-2025-5394 (CVSS score of 9.8), in the “Alone – Charity Multipurpose Non-profit WordPress Theme” to compromise websites. On May 30th, 2025, security researcher Thái An […]

Articles similaires

Sorry! Image not available at this time

CVE-2025-5394 impacts WordPress Theme

thecyberthrone.in - 01/Aug 03:59

Overview CVE-2025-5394 is a critical vulnerability discovered in the Alone – Charity Multipurpose Non-profit WordPress Theme (versions up to 7.8.3)....

Sorry! Image not available at this time

Hackers actively exploit critical RCE in WordPress Alone theme

bleepingcomputer.com - 30/Jul 17:40

Threat actors are actively exploiting a critical unauthenticated arbitrary file upload vulnerability in the WordPress theme 'Alone,' to achieve remote...

Sorry! Image not available at this time

Hackers actively exploit critical RCE in WordPress Alone theme

bleepingcomputer.com - 30/Jul 17:40

Threat actors are actively exploiting a critical unauthenticated arbitrary file upload vulnerability in the WordPress theme 'Alone,' to achieve remote...

Sorry! Image not available at this time

Hackers exploit SAP NetWeaver bug to deploy Linux Auto-Color malware

bleepingcomputer.com - 29/Jul 16:10

Hackers were spotted exploiting a critical SAP NetWeaver vulnerability tracked as CVE-2025-31324 to deploy the Auto-Color Linux malware in a...

Sorry! Image not available at this time

Hackers exploit SAP NetWeaver bug to deploy Linux Auto-Color malware

bleepingcomputer.com - 29/Jul 16:10

Hackers were spotted exploiting a critical SAP NetWeaver vulnerability tracked as CVE-2025-31324 to deploy the Auto-Color Linux malware in a...

Sorry! Image not available at this time

Critical WordPress Post SMTP plugin flaw exposes 200K+ sites to full takeover

securityaffairs.co - 28/Jul 13:14

Critical vulnerability in Post SMTP plugin risks full site takeover, over 400k sites use it, and nearly half remain unpatched. A critical...

Sorry! Image not available at this time

CISA, Microsoft warn of critical Exchange hybrid flaw CVE-2025-53786

securityaffairs.co - 07/Aug 14:02

CISA and Microsoft warn of CVE-2025-53786, a high-severity Exchange flaw allowing privilege escalation in hybrid cloud environments. CISA and...

Sorry! Image not available at this time

Trend Micro fixes two actively exploited Apex One RCE flaws

securityaffairs.co - 06/Aug 15:34

Trend Micro patched two critical Apex One flaws (CVE-2025-54948, CVE-2025-54987) exploited in the wild, allowing RCE via console injection. Trend...

Sorry! Image not available at this time

Exploit available for critical Cisco ISE bug exploited in attacks

bleepingcomputer.com - 28/Jul 17:29

Security researcher Bobby Gould has published a blog post demonstrating a complete exploit chain for CVE-2025-20281, an unauthenticated remote code...

Sorry! Image not available at this time

Exploit available for critical Cisco ISE bug exploited in attacks

bleepingcomputer.com - 28/Jul 17:29

Security researcher Bobby Gould has published a blog post demonstrating a complete exploit chain for CVE-2025-20281, an unauthenticated remote code...

Les derniers communiqués