X

Vous n'êtes pas connecté

Rubriques :

Maroc Maroc - THECYBERTHRONE.IN - A La Une - 06/01/2025 09:17

CVE-2024-10957: UpdraftPlus WordPress Plugin Vulnerability

CVE-2024-10957 is a high-severity vulnerability affecting the UpdraftPlus: WP Backup & Migration Plugin for WordPress. This vulnerability, present in versions up to and including 1.24.11, enables attackers to perform PHP Object Injection through the deserialization of untrusted input in the recursive_unserialized_replace function. Here’s a comprehensive analysis of this vulnerability, its potential impact, and mitigation strategies. […]

Articles similaires

Sorry! Image not available at this time

WordPress Plugin Vulnerability Enables Admin Takeover via Auth Bypass

itsecuritynews.info - 06:36

A newly disclosed vulnerability, tracked as CVE-2026-1492, has been identified in the User Registration & Membership plugin for WordPress, exposing...

Sorry! Image not available at this time

CVE-2026-34621: Adobe Acrobat Reader Prototype Pollution RCE

thecyberthrone.in - 07:23

Vulnerability Summary A critical Prototype Pollution vulnerability (CWE-1321) affecting Adobe Acrobat Reader versions 24.001.30356, 26.001.21367 and...

Sorry! Image not available at this time

CVE-2026-34621: Adobe Acrobat Reader Prototype Pollution RCE

thecyberthrone.in - 07:23

Vulnerability Summary A critical Prototype Pollution vulnerability (CWE-1321) affecting Adobe Acrobat Reader versions 24.001.30356, 26.001.21367 and...

Sorry! Image not available at this time

ImageMagick Zero-Day Enables RCE on Linux and WordPress Servers

itsecuritynews.info - 01/Apr 11:09

New research from Octagon Networks reveals a critical zero-day ImageMagick vulnerability that allows Remote Code Execution (RCE) via simple image...

Sorry! Image not available at this time

ImageMagick Zero-Day Enables RCE on Linux and WordPress Servers

itsecuritynews.info - 01/Apr 11:09

New research from Octagon Networks reveals a critical zero-day ImageMagick vulnerability that allows Remote Code Execution (RCE) via simple image...

Sorry! Image not available at this time

200,000 WordPress Sites Affected by Arbitrary File Deletion Vulnerability in Perfmatters WordPress Plugin

itsecuritynews.info - 02/Apr 19:11

On March 1st, 2026, we received a submission for an Arbitrary File Deletion vulnerability in Perfmatters, a WordPress plugin with more than 200,000...

Sorry! Image not available at this time

200,000 WordPress Sites Affected by Arbitrary File Deletion Vulnerability in Perfmatters WordPress Plugin

itsecuritynews.info - 02/Apr 19:11

On March 1st, 2026, we received a submission for an Arbitrary File Deletion vulnerability in Perfmatters, a WordPress plugin with more than 200,000...

Sorry! Image not available at this time

Multiple OpenSSL Flaws Expose Sensitive Data in RSA KEM Handling

itsecuritynews.info - 08/Apr 09:07

A newly disclosed flaw in OpenSSL could allow attackers to access sensitive data stored in application memory. Tracked as CVE-2026-31790, this...

Sorry! Image not available at this time

Docker Authorization Bypass Flaw Exposed Hosts to Potential Attackers

itsecuritynews.info - 08/Apr 09:07

A high-severity security vulnerability has been discovered in Docker Engine, exposing hosts to potential authorization bypass attacks. Tracked as...

Sorry! Image not available at this time

Vim Modeline Bypass Vulnerability Let Attackers Execute Arbitrary OS Commands

itsecuritynews.info - 02/Apr 04:09

A newly discovered high-severity vulnerability in the popular Vim text editor exposes users to arbitrary command execution on the operating system....

Les derniers communiqués