X

Vous n'êtes pas connecté

العناوين :

Maroc Maroc - THECYBERTHRONE.IN - A La Une - 06/01/2025 09:17

CVE-2024-10957: UpdraftPlus WordPress Plugin Vulnerability

CVE-2024-10957 is a high-severity vulnerability affecting the UpdraftPlus: WP Backup & Migration Plugin for WordPress. This vulnerability, present in versions up to and including 1.24.11, enables attackers to perform PHP Object Injection through the deserialization of untrusted input in the recursive_unserialized_replace function. Here’s a comprehensive analysis of this vulnerability, its potential impact, and mitigation strategies. […]

Articles similaires

Sorry! Image not available at this time

Critical Vulnerability in Python PLY Library Enables Remote Code Execution – PoC Published

itsecuritynews.info - 27/Jan 10:05

A critical vulnerability has been identified in the PyPI-distributed version of PLY (Python Lex-Yacc) 3.11, allowing arbitrary code execution through...

Sorry! Image not available at this time

Critical Vulnerability in Python PLY Library Enables Remote Code Execution – PoC Published

itsecuritynews.info - 27/Jan 10:05

A critical vulnerability has been identified in the PyPI-distributed version of PLY (Python Lex-Yacc) 3.11, allowing arbitrary code execution through...

Sorry! Image not available at this time

Apache bRPC Vulnerability Enables Remote Command Injection

itsecuritynews.info - 20/Jan 05:32

A critical remote command-injection vulnerability has been discovered in Apache bRPC’s built-in heap profiler service, affecting all versions before...

Sorry! Image not available at this time

Apache bRPC Vulnerability Enables Remote Command Injection

itsecuritynews.info - 20/Jan 05:32

A critical remote command-injection vulnerability has been discovered in Apache bRPC’s built-in heap profiler service, affecting all versions before...

Sorry! Image not available at this time

Critical Johnson Controls Products Vulnerabilities Enables Remote SQL Injection Attacks

itsecuritynews.info - 01/Feb 16:36

A critical advisory addressing a severe SQL injection vulnerability affecting multiple Johnson Controls industrial control system products. The...

Sorry! Image not available at this time

ACF plugin bug gives hackers admin on 50,000 WordPress sites

bleepingcomputer.com - 20/Jan 22:12

A critical-severity vulnerability in the Advanced Custom Fields: Extended (ACF Extended) plugin for WordPress can be exploited remotely by...

Sorry! Image not available at this time

ACF plugin bug gives hackers admin on 50,000 WordPress sites

bleepingcomputer.com - 20/Jan 22:12

A critical-severity vulnerability in the Advanced Custom Fields: Extended (ACF Extended) plugin for WordPress can be exploited remotely by...

Sorry! Image not available at this time

Gakido CRLF Injection Vulnerability Let Attackers Bypass Security Controls

itsecuritynews.info - 14:13

A critical vulnerability in Gakido, an HTTP client library by HappyHackingSpace, has been discovered that allows attackers to inject arbitrary HTTP...

Sorry! Image not available at this time

Apache Hadoop Vulnerability Exposes Systems Potential Crashes or Data Corruption

itsecuritynews.info - 26/Jan 10:09

A moderate-severity vulnerability in the Hadoop Distributed File System (HDFS) native client could allow attackers to trigger system crashes or...

Sorry! Image not available at this time

Apache Hadoop Vulnerability Exposes Systems Potential Crashes or Data Corruption

itsecuritynews.info - 26/Jan 10:09

A moderate-severity vulnerability in the Hadoop Distributed File System (HDFS) native client could allow attackers to trigger system crashes or...

أحدث الإصدارات