X

Vous n'êtes pas connecté

Rubriques :

Maroc Maroc - ITSECURITYNEWS.INFO - A La Une - Aujourd'hui 06:36

WordPress Plugin Vulnerability Enables Admin Takeover via Auth Bypass

A newly disclosed vulnerability, tracked as CVE-2026-1492, has been identified in the User Registration & Membership plugin for WordPress, exposing websites to critical authentication bypass and privilege escalation risks. Affecting versions up to 5.1.2, the vulnerability allows remote attackers to gain full administrative…

Articles similaires

Sorry! Image not available at this time

Cisco IMC auth bypass vulnerability allows attackers to alter user passwords (CVE-2026-20093)

itsecuritynews.info - 03/Apr 13:13

Cisco has fixed ten vulnerabilities affecting its Integrated Management Controller (IMC), the most critical of which (CVE-2026-20093) could allow an...

Sorry! Image not available at this time

Cisco IMC auth bypass vulnerability allows attackers to alter user passwords (CVE-2026-20093)

itsecuritynews.info - 03/Apr 13:13

Cisco has fixed ten vulnerabilities affecting its Integrated Management Controller (IMC), the most critical of which (CVE-2026-20093) could allow an...

Sorry! Image not available at this time

IT Security News Hourly Summary 2026-04-13 09h : 6 posts

itsecuritynews.info - 07:05

6 posts were published in the last hour 6:36 : WordPress Plugin Vulnerability Enables Admin Takeover via Auth Bypass 6:36 : Intoxalock Vehicle...

Sorry! Image not available at this time

CVE-2026-35616 — Fortinet FortiClient EMS Critical Pre-Auth RCE

thecyberthrone.in - 05/Apr 03:07

Executive Summary Fortinet FortiClient Endpoint Management Server (EMS) versions 7.4.5 and 7.4.6 contain a critical improper access control...

Sorry! Image not available at this time

Critical Cisco IMC auth bypass gives attackers Admin access

bleepingcomputer.com - 02/Apr 11:01

Cisco has patched several critical and high-severity vulnerabilities, including an Integrated Management Controller (IMC) authentication bypass that...

Sorry! Image not available at this time

Critical Cisco IMC auth bypass gives attackers Admin access

bleepingcomputer.com - 02/Apr 11:01

Cisco has patched several critical and high-severity vulnerabilities, including an Integrated Management Controller (IMC) authentication bypass that...

Sorry! Image not available at this time

Docker Authorization Bypass Flaw Exposed Hosts to Potential Attackers

itsecuritynews.info - 08/Apr 09:07

A high-severity security vulnerability has been discovered in Docker Engine, exposing hosts to potential authorization bypass attacks. Tracked as...

Sorry! Image not available at this time

Attackers exploit critical Flowise flaw CVE-2025-59528 for remote code execution

securityaffairs.co - 07/Apr 20:16

Attackers are exploiting a critical Flowise flaw, tracked as CVE-2025-59528 (CVSS score of 10), that lets them run malicious code and access systems...

Sorry! Image not available at this time

Hackers exploit critical flaw in Ninja Forms WordPress plugin

bleepingcomputer.com - 07/Apr 22:03

A critical vulnerability in the Ninja Forms File Uploads premium add-on for WordPress allows uploading arbitrary files without authentication, which...

Sorry! Image not available at this time

CVE-2026-35616: Fortinet fixes actively exploited high-severity flaw

securityaffairs.co - 06/Apr 05:10

Fortinet issued emergency patches for a critical FortiClient EMS flaw (CVE-2026-35616) actively exploited in the wild. Fortinet released out-of-band...

Les derniers communiqués