X

Vous n'êtes pas connecté

العناوين :

  - THECYBERTHRONE.IN - A La Une - 10/12/2024 10:40

WordPress WPForms flaw CVE-2024-11205

A critical vulnerability has been discovered in WordPress plugin WPForms. The flaw allows authenticated attackers with subscriber-level privileges or higher to execute unauthorized refunds of Stripe payments and cancellations of Stripe subscriptions Thr vulnerability tracked as CVE-2024-11205 with a CVSS score of 7.5, stems in the ajax_single_payment_refund() and ajax_single_payment_cancel() functions within the plugin’s SingleActionsHandler class. […]

Articles similaires

Sorry! Image not available at this time

HPE OneView for VMware vCenter Vulnerability Allows Elevated Access

itsecuritynews.info - 26/Jun 11:34

Hewlett Packard Enterprise (HPE) has issued a critical security bulletin warning customers of a significant vulnerability in its OneView for VMware...

Sorry! Image not available at this time

HPE OneView for VMware vCenter Vulnerability Allows Elevated Access

itsecuritynews.info - 26/Jun 11:34

Hewlett Packard Enterprise (HPE) has issued a critical security bulletin warning customers of a significant vulnerability in its OneView for VMware...

Sorry! Image not available at this time

Over 600K WordPress Sites at Risk Due to Critical Plugin Vulnerability

itsecuritynews.info - 02/Jul 06:36

A critical security flaw in the popular Forminator WordPress plugin has put more than 600,000 websites worldwide at risk of remote takeover,...

Sorry! Image not available at this time

Xiaomi’s Interoperability App Vulnerability Let Hackers Gain Unauthorized Access to the Victim’s Device

itsecuritynews.info - 24/Jun 13:37

A severe security vulnerability has been discovered in Xiaomi’s interoperability application, potentially exposing millions of users to unauthorized...

Sorry! Image not available at this time

Xiaomi’s Interoperability App Vulnerability Let Hackers Gain Unauthorized Access to the Victim’s Device

itsecuritynews.info - 24/Jun 13:37

A severe security vulnerability has been discovered in Xiaomi’s interoperability application, potentially exposing millions of users to unauthorized...

Sorry! Image not available at this time

Cisco removed the backdoor account from its Unified Communications Manager

securityaffairs.co - 02/Jul 19:13

Digital communications technology giant Cisco addressed a static SSH credentials vulnerability in its Unified Communications Manager (Unified CM). A...

Sorry! Image not available at this time

Cisco Unified CM Vulnerability Lets Remote Attacker Gain Root Access

itsecuritynews.info - 03/Jul 07:05

A newly disclosed, critical vulnerability in Cisco Unified Communications Manager (Unified CM) and Unified CM Session Management Edition (SME) has...

Sorry! Image not available at this time

Cisco Unified CM Vulnerability Lets Remote Attacker Gain Root Access

itsecuritynews.info - 03/Jul 07:05

A newly disclosed, critical vulnerability in Cisco Unified Communications Manager (Unified CM) and Unified CM Session Management Edition (SME) has...

Sorry! Image not available at this time

CitrixBleed 2: The nightmare that echoes the ‘CitrixBleed’ flaw in Citrix NetScaler devices

securityaffairs.co - 26/Jun 07:29

New Citrix flaw ‘CitrixBleed 2’ lets attackers steal session cookies without logging in, echoing a previously exploited vulnerability. A...

Sorry! Image not available at this time

U.S. CISA adds Citrix NetScaler flaw to its Known Exploited Vulnerabilities catalog

securityaffairs.co - 30/Jun 18:49

U.S. Cybersecurity and Infrastructure Security Agency (CISA) adds Citrix NetScaler vulnerability to its Known Exploited Vulnerabilities catalog....

أحدث الإصدارات