Attackers Actively Exploiting Critical Vulnerability in Breeze Cache Plugin

itsecuritynews.info - 05/May 18:07

On April 22nd, 2026, we publicly disclosed a critical Arbitrary File Upload vulnerability in Breeze Cache, a WordPress plugin with an estimated...

1,000,000 WordPress Sites Affected by Arbitrary File Read and SQL Injection Vulnerabilities in Avada Builder WordPress Plugin

itsecuritynews.info - 12/May 21:32

On March 21st, 2026, we received a submission for an Arbitrary File Read and an SQL Injection vulnerability in Avada Builder, a WordPress plugin with...

Avada Builder WordPress plugin flaws allow site credential theft

bleepingcomputer.com - 15:56

Two vulnerabilities in the Avada Builder plugin for WordPress, with an estimated one million active installations, allow hackers to read arbitrary...

200,000 WordPress Sites at Risk from Critical Authentication Bypass Vulnerability in Burst Statistics Plugin

itsecuritynews.info - 13/May 17:03

On May 8, 2026, PRISM, Wordfence Threat Intelligence’s autonomous vulnerability research platform, discovered a critical Authentication Bypass...

Open WebUI File Upload Vulnerability Enables 1-Click RCE Attack

itsecuritynews.info - 12/May 11:32

A critical, unpatched vulnerability is actively threatening Open WebUI users, turning a simple profile picture upload into a gateway for complete...

Critical Fortinet FortiSandbox Vulnerability Enables Code Execution Attacks

itsecuritynews.info - 12/May 19:02

A critical security flaw in Fortinet’s FortiSandbox platform is putting enterprise networks at serious risk, allowing unauthenticated attackers to...

Funnel Builder WordPress plugin bug exploited to steal credit cards

bleepingcomputer.com - 19:30

A critical vulnerability in the Funnel Builder plugin for WordPress is being actively exploited to inject malicious JavaScript snippets into...

Hackers exploit auth bypass flaw in Burst Statistics WordPress plugin

bleepingcomputer.com - 14/May 21:07

Hackers are leveraging a critical authentication bypass vulnerability in the WordPress plugin Burst Statistics to obtain admin-level access to...

Canon MailSuite Security Flaw Allows Attackers to Execute Code Remotely

itsecuritynews.info - 14/May 11:34

Canon has disclosed a critical security vulnerability in its GUARDIANWALL MailSuite product that could allow attackers to execute arbitrary code...

Open WebUI Vulnerability via File Upload Leads to 1-Click RCE Attack

itsecuritynews.info - 12/May 18:02

A single click can allow attackers to exploit a critical, unpatched flaw in Open WebUI to seize control of AI workspaces, execute remote code, hijack...

Rubriques :

Attackers Actively Exploiting Critical Vulnerability in Breeze Cache Plugin

Articles similaires

Attackers Actively Exploiting Critical Vulnerability in Breeze Cache Plugin

1,000,000 WordPress Sites Affected by Arbitrary File Read and SQL Injection Vulnerabilities in Avada Builder WordPress Plugin

Avada Builder WordPress plugin flaws allow site credential theft

200,000 WordPress Sites at Risk from Critical Authentication Bypass Vulnerability in Burst Statistics Plugin

Open WebUI File Upload Vulnerability Enables 1-Click RCE Attack

Critical Fortinet FortiSandbox Vulnerability Enables Code Execution Attacks

Funnel Builder WordPress plugin bug exploited to steal credit cards

Hackers exploit auth bypass flaw in Burst Statistics WordPress plugin

Canon MailSuite Security Flaw Allows Attackers to Execute Code Remotely

Open WebUI Vulnerability via File Upload Leads to 1-Click RCE Attack

Les derniers communiqués