X

Vous n'êtes pas connecté

Rubriques :

Maroc Maroc - THECYBERTHRONE.IN - A La Une - 10/12/2024 10:40

WordPress WPForms flaw CVE-2024-11205

A critical vulnerability has been discovered in WordPress plugin WPForms. The flaw allows authenticated attackers with subscriber-level privileges or higher to execute unauthorized refunds of Stripe payments and cancellations of Stripe subscriptions Thr vulnerability tracked as CVE-2024-11205 with a CVSS score of 7.5, stems in the ajax_single_payment_refund() and ajax_single_payment_cancel() functions within the plugin’s SingleActionsHandler class. […]

Articles similaires

Sorry! Image not available at this time

Cacti Command Injection Vulnerability Let Attackers Execute Malicious Code Remotely

itsecuritynews.info - 05/Dec 08:32

A critical command injection vulnerability in the open-source network monitoring tool Cacti allows authenticated attackers to execute arbitrary code...

Sorry! Image not available at this time

Cacti Command Injection Vulnerability Let Attackers Execute Malicious Code Remotely

itsecuritynews.info - 05/Dec 08:32

A critical command injection vulnerability in the open-source network monitoring tool Cacti allows authenticated attackers to execute arbitrary code...

Sorry! Image not available at this time

HPE OneView Software Vulnerability Let Attackers Execute Remote Code

itsecuritynews.info - 15:32

A critical security alert warns customers about a severe vulnerability in HPE OneView Software that could allow remote attackers to execute arbitrary...

Sorry! Image not available at this time

HPE OneView Software Vulnerability Let Attackers Execute Remote Code

itsecuritynews.info - 15:32

A critical security alert warns customers about a severe vulnerability in HPE OneView Software that could allow remote attackers to execute arbitrary...

Sorry! Image not available at this time

Ivanti warns customers of new EPM flaw enabling remote code execution

itsecuritynews.info - 09/Dec 23:02

Ivanti warns users to address a newly disclosed Endpoint Manager vulnerability that could let attackers execute code remotely. Software firm Ivanti...

Sorry! Image not available at this time

Hewlett Packard Enterprise (HPE) fixed maximum severity OneView flaw

itsecuritynews.info - 22:02

Hewlett Packard Enterprise (HPE) fixed a critical OneView flaw that could allow attackers to achieve remote code execution. Hewlett Packard Enterprise...

Sorry! Image not available at this time

Hewlett Packard Enterprise (HPE) fixed maximum severity OneView flaw

itsecuritynews.info - 22:02

Hewlett Packard Enterprise (HPE) fixed a critical OneView flaw that could allow attackers to achieve remote code execution. Hewlett Packard Enterprise...

Sorry! Image not available at this time

Hewlett Packard Enterprise (HPE) fixed maximum severity OneView flaw

securityaffairs.co - 21:11

Hewlett Packard Enterprise (HPE) fixed a critical OneView flaw that could allow attackers to achieve remote code execution. Hewlett Packard Enterprise...

Sorry! Image not available at this time

Ivanti warns customers of new EPM flaw enabling remote code execution

securityaffairs.co - 09/Dec 22:11

Ivanti warns users to address a newly disclosed Endpoint Manager vulnerability that could let attackers execute code remotely. Software firm Ivanti...

Sorry! Image not available at this time

Maximum-severity XXE vulnerability discovered in Apache Tika

itsecuritynews.info - 06/Dec 01:02

A maximum severity vulnerability in Apache Tika, tracked as CVE-2025-66516 (CVSS score of 10.0), allows XML external entity attacks. CVE-2025-66516...

Les derniers communiqués