Hackers exploit a critical vulnerability, tracked as CVE-2025-5394 (CVSS score of 9.8), in the Alone WordPress theme to hijack sites. Threat actors...
Vous n'êtes pas connecté
- THECYBERTHRONE.IN - A La Une - 01/Aug 03:59
CVE-2025-5394 impacts WordPress Theme
Overview CVE-2025-5394 is a critical vulnerability discovered in the Alone – Charity Multipurpose Non-profit WordPress Theme (versions up to 7.8.3). The flaw exists in the alone_import_pack_install_plugin() function, which fails to…
Articles similaires
Hackers actively exploit critical RCE in WordPress Alone theme
bleepingcomputer.com - 30/Jul 17:40
Threat actors are actively exploiting a critical unauthenticated arbitrary file upload vulnerability in the WordPress theme 'Alone,' to achieve remote...
Hackers actively exploit critical RCE in WordPress Alone theme
bleepingcomputer.com - 30/Jul 17:40
Threat actors are actively exploiting a critical unauthenticated arbitrary file upload vulnerability in the WordPress theme 'Alone,' to achieve remote...
Critical WordPress Post SMTP plugin flaw exposes 200K+ sites to full takeover
securityaffairs.co - 28/Jul 13:14
Critical vulnerability in Post SMTP plugin risks full site takeover, over 400k sites use it, and nearly half remain unpatched. A critical...
CISA, Microsoft warn of critical Exchange hybrid flaw CVE-2025-53786
securityaffairs.co - 07/Aug 14:02
CISA and Microsoft warn of CVE-2025-53786, a high-severity Exchange flaw allowing privilege escalation in hybrid cloud environments. CISA and...
CVE-2025-54119 affects ADOdb SQLite
thecyberthrone.in - 05/Aug 10:41
A critical SQL injection vulnerability has been discovered in the ADOdb PHP database abstraction library, specifically in its SQLite3 driver. This...
Phishing attacks exploit WinRAR flaw CVE-2025-8088 to install RomCom
securityaffairs.co - 09/Aug 07:05
WinRAR flaw CVE-2025-8088, fixed in v7.13, was exploited as a zero-day in phishing attacks to install RomCom malware. The WinRAR flaw CVE-2025-8088, a...
CVE-2025-53786 affects Microsoft Exchange
thecyberthrone.in - 07/Aug 15:43
CVE-2025-53786 is a high-severity elevation of privilege vulnerability found in Microsoft Exchange Server hybrid deployments. The flaw allows an...
CVE-2025-53786 affects Microsoft Exchange
thecyberthrone.in - 07/Aug 15:43
CVE-2025-53786 is a high-severity elevation of privilege vulnerability found in Microsoft Exchange Server hybrid deployments. The flaw allows an...
Hackers exploit SAP NetWeaver bug to deploy Linux Auto-Color malware
bleepingcomputer.com - 29/Jul 16:10
Hackers were spotted exploiting a critical SAP NetWeaver vulnerability tracked as CVE-2025-31324 to deploy the Auto-Color Linux malware in a...
Les derniers communiqués
-
Infinite Uptime Unlocks Production Reliability for Heavy Industries with PlantOS™ at Global Steel Dynamics Forum
Infinite Uptime - 18/06/2025
-
Majra – National CSR Fund Honours Top 20 CSR Projects At Inaugural Sustainable Impact Challenge 2025
National CSR Fund - 05/06/2025
-
Aatmanirbhar Bharat: Raksha Mantri approves Advanced Medium Combat Aircraft Programme Execution Model through industry partnership
Ministry of Defence - 27/05/2025
-
Government Restores RoDTEP Benefits for AA, SEZ, and EOU Exports
Ministry of Commerce and Industry - 27/05/2025
-
Coal Imports During FY 2024-25 Drops by 7.9 % Compared to FY 2023-24
Ministry of Coal - 27/05/2025
-
India Records USD 81.04 Billion FDI Inflow in FY 2024–25
Ministry of Commerce and Industry - 27/05/2025
-
Happiest Health Launches Happiest Physio Clinic in Koramangala, Bengaluru
Happiest Health Systems Private Limited - 26/05/2025
-
Shieldworkz Expands OT Cybersecurity Offerings to Tackle Emerging Threats and Posture Management Needs
Shieldworkz - 23/05/2025
-
Kailash manasarovar yatra to begin in june; computerized draw selects 750 pilgrims
Ministry of external affairs of India - 21/05/2025