X

Vous n'êtes pas connecté

Rubriques :

Maroc Maroc - THECYBERTHRONE.IN - A La Une - 10/12/2024 10:40

WordPress WPForms flaw CVE-2024-11205

A critical vulnerability has been discovered in WordPress plugin WPForms. The flaw allows authenticated attackers with subscriber-level privileges or higher to execute unauthorized refunds of Stripe payments and cancellations of Stripe subscriptions Thr vulnerability tracked as CVE-2024-11205 with a CVSS score of 7.5, stems in the ajax_single_payment_refund() and ajax_single_payment_cancel() functions within the plugin’s SingleActionsHandler class. […]

Articles similaires

Sorry! Image not available at this time

Critical TP-Link VIGI camera flaw allowed remote takeover of surveillance systems

securityaffairs.co - 20/Jan 15:20

TP-Link fixed a critical flaw that exposed over 32 VIGI C and VIGI InSight camera models to remote hacking, with over 2,500 internet-exposed devices...

Sorry! Image not available at this time

SmarterTools patches critical SmarterMail flaw allowing code execution

securityaffairs.co - 11:53

SmarterTools fixed two SmarterMail flaws, including a critical bug (CVE-2026-24423) that could allow arbitrary code execution. SmarterTools fixed two...

Sorry! Image not available at this time

20,000 WordPress Sites Affected by Backdoor Vulnerability Allowing Malicious Admin User Creation

itsecuritynews.info - 23/Jan 20:03

A critical backdoor vulnerability has been discovered in the LA-Studio Element Kit for Elementor, a popular WordPress plugin used by more than 20,000...

Sorry! Image not available at this time

20,000 WordPress Sites Affected by Backdoor Vulnerability Allowing Malicious Admin User Creation

itsecuritynews.info - 23/Jan 20:03

A critical backdoor vulnerability has been discovered in the LA-Studio Element Kit for Elementor, a popular WordPress plugin used by more than 20,000...

Sorry! Image not available at this time

11-Year-Old critical telnetd flaw found in GNU InetUtils (CVE-2026-24061)

securityaffairs.co - 24/Jan 00:27

Critical telnetd flaw CVE-2026-24061 (CVSS 9.8) affects all GNU InetUtils versions 1.9.3–2.7 and went unnoticed for nearly 11 years. A critical...

Sorry! Image not available at this time

11-Year-Old critical telnetd flaw found in GNU InetUtils (CVE-2026-24061)

itsecuritynews.info - 24/Jan 01:31

Critical telnetd flaw CVE-2026-24061 (CVSS 9.8) affects all GNU InetUtils versions 1.9.3–2.7 and went unnoticed for nearly 11 years. A critical...

Sorry! Image not available at this time

11-Year-Old critical telnetd flaw found in GNU InetUtils (CVE-2026-24061)

itsecuritynews.info - 24/Jan 01:31

Critical telnetd flaw CVE-2026-24061 (CVSS 9.8) affects all GNU InetUtils versions 1.9.3–2.7 and went unnoticed for nearly 11 years. A critical...

Sorry! Image not available at this time

SCADA Vulnerability Triggers DoS, Potentially Disrupting Industrial Operations

itsecuritynews.info - 09:11

A medium-severity vulnerability in the Iconics Suite SCADA system that could allow attackers to trigger denial-of-service conditions on critical...

Sorry! Image not available at this time

SCADA Vulnerability Triggers DoS, Potentially Disrupting Industrial Operations

itsecuritynews.info - 09:11

A medium-severity vulnerability in the Iconics Suite SCADA system that could allow attackers to trigger denial-of-service conditions on critical...

Sorry! Image not available at this time

Cisco Patches ISE XML Flaw with Public Exploit Code

itsecuritynews.info - 25/Jan 18:12

  Cisco has recently addressed a significant security vulnerability in its Identity Services Engine (ISE) and ISE Passive Identity Connector...

Les derniers communiqués