X

Vous n'êtes pas connecté

Rubriques :

Maroc Maroc - ITSECURITYNEWS.INFO - A La Une - 12/May 11:32

Open WebUI File Upload Vulnerability Enables 1-Click RCE Attack

A critical, unpatched vulnerability is actively threatening Open WebUI users, turning a simple profile picture upload into a gateway for complete system compromise. Security researchers have publicly disclosed a severe stored Cross-Site Scripting (XSS) flaw that enables 1-click Remote Code…

Articles similaires

Sorry! Image not available at this time

Open WebUI Vulnerability via File Upload Leads to 1-Click RCE Attack

itsecuritynews.info - 12/May 18:02

A single click can allow attackers to exploit a critical, unpatched flaw in Open WebUI to seize control of AI workspaces, execute remote code, hijack...

Sorry! Image not available at this time

Critical Apache HTTP/2 Flaw (CVE-2026-23918) Enables DoS and Potential RCE

itsecuritynews.info - 05/May 17:08

The Apache Software Foundation (ASF) has released security updates to address several security vulnerabilities in the HTTP Server, including a severe...

Sorry! Image not available at this time

Critical Apache HTTP/2 Flaw (CVE-2026-23918) Enables DoS and Potential RCE

itsecuritynews.info - 05/May 17:08

The Apache Software Foundation (ASF) has released security updates to address several security vulnerabilities in the HTTP Server, including a severe...

Sorry! Image not available at this time

Attackers Actively Exploiting Critical Vulnerability in Breeze Cache Plugin

itsecuritynews.info - 05/May 18:07

On April 22nd, 2026, we publicly disclosed a critical Arbitrary File Upload vulnerability in Breeze Cache, a WordPress plugin with an estimated...

Sorry! Image not available at this time

Attackers Actively Exploiting Critical Vulnerability in Breeze Cache Plugin

itsecuritynews.info - 05/May 18:07

On April 22nd, 2026, we publicly disclosed a critical Arbitrary File Upload vulnerability in Breeze Cache, a WordPress plugin with an estimated...

Sorry! Image not available at this time

Critical Canon MailSuite Vulnerability Enables Remote Code Execution Attacks

itsecuritynews.info - 14/May 19:32

Enterprise email infrastructure remains one of the most critical and vulnerable targets for cybercriminals. A highly severe security flaw has just...

Sorry! Image not available at this time

Critical Weaver E-cology RCE Vulnerability Actively Exploited in Attacks

itsecuritynews.info - 05/May 17:09

A critical unauthenticated remote code execution vulnerability in the Weaver E-cology platform is currently being actively exploited in the wild....

Sorry! Image not available at this time

Critical Weaver E-cology RCE Vulnerability Actively Exploited in Attacks

itsecuritynews.info - 05/May 17:09

A critical unauthenticated remote code execution vulnerability in the Weaver E-cology platform is currently being actively exploited in the wild....

Sorry! Image not available at this time

18-year-old NGINX vulnerability allows DoS, potential RCE

bleepingcomputer.com - 14/May 15:43

An 18-year-old flaw in the NGINX open-source web server, discovered using an autonomous scanning system, can be exploited for denial of service and,...

Sorry! Image not available at this time

Dirty Frag: A new Linux privilege escalation vulnerability is already in the wild

securityaffairs.co - 08/May 11:19

Dirty Frag: unpatched Linux kernel flaw grants root access on Ubuntu, RHEL and Fedora. A working exploit is already public. Security researchers have...

Les derniers communiqués