X

Vous n'êtes pas connecté

Rubriques :

Maroc Maroc - THECYBERTHRONE.IN - A La Une - 06/01/2025 09:17

CVE-2024-10957: UpdraftPlus WordPress Plugin Vulnerability

CVE-2024-10957 is a high-severity vulnerability affecting the UpdraftPlus: WP Backup & Migration Plugin for WordPress. This vulnerability, present in versions up to and including 1.24.11, enables attackers to perform PHP Object Injection through the deserialization of untrusted input in the recursive_unserialized_replace function. Here’s a comprehensive analysis of this vulnerability, its potential impact, and mitigation strategies. […]

Articles similaires

Sorry! Image not available at this time

Critical SQL Injection bug in Ally plugin threatens 400,000+ WordPress sites

securityaffairs.co - 12/Mar 13:25

An unauthenticated SQL injection flaw (CVE-2026-2413) in the Ally WordPress plugin, used on 400K+ sites, could allow attackers to steal sensitive...

Sorry! Image not available at this time

Critical Zero-Click Command Injection in AVideo Platform Allows Stream Hijacking

itsecuritynews.info - 08/Mar 03:34

A critical vulnerability in AVideo, a widely used open-source video hosting and streaming platform. Tracked as CVE-2026-29058, this zero-click flaw...

Sorry! Image not available at this time

Critical Zero-Click Command Injection in AVideo Platform Allows Stream Hijacking

itsecuritynews.info - 08/Mar 03:34

A critical vulnerability in AVideo, a widely used open-source video hosting and streaming platform. Tracked as CVE-2026-29058, this zero-click flaw...

Sorry! Image not available at this time

Cisco Secure Firewall Management Flaw Allows Remote Code Execution

itsecuritynews.info - 05/Mar 08:32

Cisco recently disclosed a critical security vulnerability affecting its Secure Firewall Management Centre (FMC) software. This severe flaw carries a...

Sorry! Image not available at this time

Cisco Secure Firewall Management Flaw Allows Remote Code Execution

itsecuritynews.info - 05/Mar 08:32

Cisco recently disclosed a critical security vulnerability affecting its Secure Firewall Management Centre (FMC) software. This severe flaw carries a...

Sorry! Image not available at this time

WordPress Plugin Flaw Lets Attackers Create Admin Accounts

itsecuritynews.info - 06/Mar 21:11

A WordPress plugin flaw allows attackers to create administrator accounts and take over vulnerable sites. The post WordPress Plugin Flaw Lets...

Sorry! Image not available at this time

WordPress Plugin Flaw Lets Attackers Create Admin Accounts

itsecuritynews.info - 06/Mar 21:11

A WordPress plugin flaw allows attackers to create administrator accounts and take over vulnerable sites. The post WordPress Plugin Flaw Lets...

Sorry! Image not available at this time

Nginx UI Vulnerabilities Let Attackers Download Full System Backups

itsecuritynews.info - 09/Mar 07:34

A critical security flaw has been discovered in Nginx UI that allows unauthenticated threat actors to download and decrypt complete system backups....

Sorry! Image not available at this time

SQLi flaw in Elementor Ally plugin impacts 250k+ WordPress sites

bleepingcomputer.com - 11/Mar 19:38

An SQL injection vulnerability in Ally, a WordPress plugin from Elementor for web accessibility and usability with more than 400,000 installations,...

Sorry! Image not available at this time

WordPress membership plugin bug exploited to create admin accounts

bleepingcomputer.com - 05/Mar 18:44

Hackers are exploiting a critical vulnerability in the User Registration & Membership plugin, which is installed on more than 60,000 WordPress sites....

Les derniers communiqués