X

Vous n'êtes pas connecté

Rubriques :

Maroc Maroc - THECYBERTHRONE.IN - A La Une - 06/01/2025 09:17

CVE-2024-10957: UpdraftPlus WordPress Plugin Vulnerability

CVE-2024-10957 is a high-severity vulnerability affecting the UpdraftPlus: WP Backup & Migration Plugin for WordPress. This vulnerability, present in versions up to and including 1.24.11, enables attackers to perform PHP Object Injection through the deserialization of untrusted input in the recursive_unserialized_replace function. Here’s a comprehensive analysis of this vulnerability, its potential impact, and mitigation strategies. […]

Articles similaires

Sorry! Image not available at this time

Critical Authentication Bypass in better-auth API Keys Plugin Allows Unauthenticated Account Takeover

itsecuritynews.info - 19/Feb 11:09

A critical authentication bypass vulnerability in the better-auth API keys plugin allows unauthenticated attackers to mint privileged API keys for...

Sorry! Image not available at this time

Critical Authentication Bypass in better-auth API Keys Plugin Allows Unauthenticated Account Takeover

itsecuritynews.info - 19/Feb 11:09

A critical authentication bypass vulnerability in the better-auth API keys plugin allows unauthenticated attackers to mint privileged API keys for...

Sorry! Image not available at this time

Microsoft CVE-2026-26119 Deep Dive

thecyberthrone.in - 20/Feb 11:23

Microsoft recently disclosed CVE-2026-26119, a high-severity privilege escalation vulnerability affecting Windows Admin Center.This flaw allows...

Sorry! Image not available at this time

Microsoft CVE-2026-26119 Deep Dive

thecyberthrone.in - 20/Feb 11:23

Microsoft recently disclosed CVE-2026-26119, a high-severity privilege escalation vulnerability affecting Windows Admin Center.This flaw allows...

Sorry! Image not available at this time

Grandstream VoIP Phones Vulnerability Grants Attackers Root Privileges

itsecuritynews.info - 20/Feb 13:18

A critical unauthenticated stack-based buffer overflow vulnerability, tracked as CVE-2026-2329, affecting Grandstream GXP1600 series VoIP phones....

Sorry! Image not available at this time

Grandstream VoIP Phones Vulnerability Grants Attackers Root Privileges

itsecuritynews.info - 20/Feb 13:18

A critical unauthenticated stack-based buffer overflow vulnerability, tracked as CVE-2026-2329, affecting Grandstream GXP1600 series VoIP phones....

Sorry! Image not available at this time

Critical Zyxel router flaw exposed devices to remote attacks

securityaffairs.co - 25/Feb 20:28

Zyxel fixed a critical flaw in multiple routers that lets unauthenticated attackers remotely execute commands on vulnerable devices. Zyxel addressed a...

Sorry! Image not available at this time

Android devices hit by exploited Qualcomm flaw CVE-2026-21385

securityaffairs.co - 03/Mar 10:03

Google confirms that the Qualcomm Android vulnerability CVE-2026-21385 was exploited in real-world attacks. Google has confirmed that CVE-2026-21385...

Sorry! Image not available at this time

CVE-2026-20127: Cisco Catalyst SD-WAN Controller/Manager Zero-Day Authentication Bypass Vulnerability Exploited in the Wild

itsecuritynews.info - 25/Feb 20:34

Exploitation of a maximum severity authentication bypass zero-day vulnerability affecting Cisco Catalyst SD-WAN Controller and Manager has been...

Sorry! Image not available at this time

CVE-2026-20127: Cisco Catalyst SD-WAN Controller/Manager Zero-Day Authentication Bypass Vulnerability Exploited in the Wild

itsecuritynews.info - 25/Feb 20:34

Exploitation of a maximum severity authentication bypass zero-day vulnerability affecting Cisco Catalyst SD-WAN Controller and Manager has been...

Les derniers communiqués