X

Vous n'êtes pas connecté

Rubriques :

Maroc Maroc - THECYBERTHRONE.IN - A La Une - 06/01/2025 09:17

CVE-2024-10957: UpdraftPlus WordPress Plugin Vulnerability

CVE-2024-10957 is a high-severity vulnerability affecting the UpdraftPlus: WP Backup & Migration Plugin for WordPress. This vulnerability, present in versions up to and including 1.24.11, enables attackers to perform PHP Object Injection through the deserialization of untrusted input in the recursive_unserialized_replace function. Here’s a comprehensive analysis of this vulnerability, its potential impact, and mitigation strategies. […]

Articles similaires

Sorry! Image not available at this time

Critical SQL Injection bug in Ally plugin threatens 400,000+ WordPress sites

securityaffairs.co - 12/Mar 13:25

An unauthenticated SQL injection flaw (CVE-2026-2413) in the Ally WordPress plugin, used on 400K+ sites, could allow attackers to steal sensitive...

Sorry! Image not available at this time

Critical Zero-Click Command Injection in AVideo Platform Allows Stream Hijacking

itsecuritynews.info - 08/Mar 03:34

A critical vulnerability in AVideo, a widely used open-source video hosting and streaming platform. Tracked as CVE-2026-29058, this zero-click flaw...

Sorry! Image not available at this time

Critical Zero-Click Command Injection in AVideo Platform Allows Stream Hijacking

itsecuritynews.info - 08/Mar 03:34

A critical vulnerability in AVideo, a widely used open-source video hosting and streaming platform. Tracked as CVE-2026-29058, this zero-click flaw...

Sorry! Image not available at this time

FortiClient Hit by Severe SQL Injection Vulnerability Enabling Database Intrusion

itsecuritynews.info - 18/Mar 06:09

Cybersecurity researchers have a detailed a critical security flaw in Fortinet’s FortiClient Enterprise Management Server (EMS). Tracked as...

Sorry! Image not available at this time

FortiClient Hit by Severe SQL Injection Vulnerability Enabling Database Intrusion

itsecuritynews.info - 18/Mar 06:09

Cybersecurity researchers have a detailed a critical security flaw in Fortinet’s FortiClient Enterprise Management Server (EMS). Tracked as...

Sorry! Image not available at this time

Oracle Fixes High-Severity RCE Vulnerability Affecting Identity and Web Services Platforms

itsecuritynews.info - 09:36

Oracle recently issued an urgent security alert regarding a critical Remote Code Execution (RCE) flaw that impacts both Oracle Identity Manager and...

Sorry! Image not available at this time

Oracle Fixes High-Severity RCE Vulnerability Affecting Identity and Web Services Platforms

itsecuritynews.info - 09:36

Oracle recently issued an urgent security alert regarding a critical Remote Code Execution (RCE) flaw that impacts both Oracle Identity Manager and...

Sorry! Image not available at this time

WordPress Plugin Flaw Lets Attackers Create Admin Accounts

itsecuritynews.info - 06/Mar 21:11

A WordPress plugin flaw allows attackers to create administrator accounts and take over vulnerable sites. The post WordPress Plugin Flaw Lets...

Sorry! Image not available at this time

WordPress Plugin Flaw Lets Attackers Create Admin Accounts

itsecuritynews.info - 06/Mar 21:11

A WordPress plugin flaw allows attackers to create administrator accounts and take over vulnerable sites. The post WordPress Plugin Flaw Lets...

Sorry! Image not available at this time

New Kubernetes NFS CSI Vulnerability Enables Unauthorized Directory Deletion and Changes

itsecuritynews.info - 18/Mar 07:05

A newly disclosed security flaw in the Kubernetes Container Storage Interface (CSI) Driver for Network File System (NFS) exposes storage servers to...

Les derniers communiqués