X

Vous n'êtes pas connecté

Rubriques :

Maroc Maroc - THECYBERTHRONE.IN - A La Une - 06/01/2025 09:17

CVE-2024-10957: UpdraftPlus WordPress Plugin Vulnerability

CVE-2024-10957 is a high-severity vulnerability affecting the UpdraftPlus: WP Backup & Migration Plugin for WordPress. This vulnerability, present in versions up to and including 1.24.11, enables attackers to perform PHP Object Injection through the deserialization of untrusted input in the recursive_unserialized_replace function. Here’s a comprehensive analysis of this vulnerability, its potential impact, and mitigation strategies. […]

Articles similaires

Sorry! Image not available at this time

Critical SQL Injection bug in Ally plugin threatens 400,000+ WordPress sites

securityaffairs.co - 12/Mar 13:25

An unauthenticated SQL injection flaw (CVE-2026-2413) in the Ally WordPress plugin, used on 400K+ sites, could allow attackers to steal sensitive...

Sorry! Image not available at this time

FortiClient Hit by Severe SQL Injection Vulnerability Enabling Database Intrusion

itsecuritynews.info - 18/Mar 06:09

Cybersecurity researchers have a detailed a critical security flaw in Fortinet’s FortiClient Enterprise Management Server (EMS). Tracked as...

Sorry! Image not available at this time

FortiClient Hit by Severe SQL Injection Vulnerability Enabling Database Intrusion

itsecuritynews.info - 18/Mar 06:09

Cybersecurity researchers have a detailed a critical security flaw in Fortinet’s FortiClient Enterprise Management Server (EMS). Tracked as...

Sorry! Image not available at this time

Oracle Fixes High-Severity RCE Vulnerability Affecting Identity and Web Services Platforms

itsecuritynews.info - 21/Mar 09:36

Oracle recently issued an urgent security alert regarding a critical Remote Code Execution (RCE) flaw that impacts both Oracle Identity Manager and...

Sorry! Image not available at this time

Oracle Fixes High-Severity RCE Vulnerability Affecting Identity and Web Services Platforms

itsecuritynews.info - 21/Mar 09:36

Oracle recently issued an urgent security alert regarding a critical Remote Code Execution (RCE) flaw that impacts both Oracle Identity Manager and...

Sorry! Image not available at this time

Oracle fixes critical RCE flaw CVE-2026-21992 in Identity Manager

securityaffairs.co - 22/Mar 15:37

Oracle fixed a critical severity flaw, tracked as CVE-2026-21992, enabling unauthenticated remote code execution in Identity Manager. Oracle released...

Sorry! Image not available at this time

Oracle fixes critical RCE flaw CVE-2026-21992 in Identity Manager

securityaffairs.co - 22/Mar 15:37

Oracle fixed a critical severity flaw, tracked as CVE-2026-21992, enabling unauthenticated remote code execution in Identity Manager. Oracle released...

Sorry! Image not available at this time

New Kubernetes NFS CSI Vulnerability Enables Unauthorized Directory Deletion and Changes

itsecuritynews.info - 18/Mar 07:05

A newly disclosed security flaw in the Kubernetes Container Storage Interface (CSI) Driver for Network File System (NFS) exposes storage servers to...

Sorry! Image not available at this time

New Kubernetes NFS CSI Vulnerability Enables Unauthorized Directory Deletion and Changes

itsecuritynews.info - 18/Mar 07:05

A newly disclosed security flaw in the Kubernetes Container Storage Interface (CSI) Driver for Network File System (NFS) exposes storage servers to...

Sorry! Image not available at this time

F5 NGINX Plus and Open Source Vulnerability Allow Attackers to Execute Code Using MP4 file

itsecuritynews.info - 14:09

A high-severity vulnerability has been disclosed affecting both NGINX Open Source and NGINX Plus. Tracked formally as CVE-2026-32647, this security...

Les derniers communiqués