X

Vous n'êtes pas connecté

Maroc Maroc - THECYBERTHRONE.IN - A La Une - 10/12/2024 10:40

WordPress WPForms flaw CVE-2024-11205

A critical vulnerability has been discovered in WordPress plugin WPForms. The flaw allows authenticated attackers with subscriber-level privileges or higher to execute unauthorized refunds of Stripe payments and cancellations of Stripe subscriptions Thr vulnerability tracked as CVE-2024-11205 with a CVSS score of 7.5, stems in the ajax_single_payment_refund() and ajax_single_payment_cancel() functions within the plugin’s SingleActionsHandler class. […]

Articles similaires

Sorry! Image not available at this time

Veeam fixed critical Backup & Replication flaw CVE-2025-23120

securityaffairs.co - 20/Mar 19:26

Veeam released security patches for a critical Backup & Replication vulnerability that could let attackers remotely execute code. Veeam addressed...

Sorry! Image not available at this time

Attackers can bypass middleware auth checks by exploiting critical Next.js flaw

securityaffairs.co - 24/Mar 11:22

A critical flaw in the Next.js React framework could be exploited to bypass authorization checks under certain conditions. Maintainers of Next.js...

Sorry! Image not available at this time

CVE-2025-21377 NTLM Flaw Detailed out

thecyberthrone.in - 26/Mar 14:02

CVE-2025-21377 is a security vulnerability in Microsoft Windows that stems from weaknesses in the implementation of the NTLM (NT LAN Manager)...

Sorry! Image not available at this time

Critical Next.js Middleware Vulnerability Let Attackers Gain Unauthorized Access

itsecuritynews.info - 24/Mar 09:36

A critical security vulnerability (CVE-2025-29927) has been discovered in Next.js that allows attackers to completely bypass middleware-based security...

Sorry! Image not available at this time

CVE-2025-23120 impacts Veeam Backup

thecyberthrone.in - 20/Mar 15:25

The CVE-2025-23120 vulnerability is a critical security flaw discovered in Veeam Backup & Replication, a widely used backup and disaster recovery...

Sorry! Image not available at this time

CVE-2025-23120 impacts Veeam Backup

thecyberthrone.in - 20/Mar 15:25

The CVE-2025-23120 vulnerability is a critical security flaw discovered in Veeam Backup & Replication, a widely used backup and disaster recovery...

Sorry! Image not available at this time

CVE-2025-2857 impacts Mozilla Firefox

thecyberthrone.in - 28/Mar 15:11

CVE-2025-2857 is a critical vulnerability affecting Mozilla Firefox on Windows systems, allowing attackers to escape the browser’s sandbox...

Sorry! Image not available at this time

CVE-2025-2857 impacts Mozilla Firefox

thecyberthrone.in - 28/Mar 15:11

CVE-2025-2857 is a critical vulnerability affecting Mozilla Firefox on Windows systems, allowing attackers to escape the browser’s sandbox...

Sorry! Image not available at this time

Authentication bypass CVE-2025-22230 impacts VMware Windows Tools

securityaffairs.co - 26/Mar 07:07

Broadcom addressed a high-severity authentication bypass vulnerability, tracked as CVE-2025-22230, in VMware Tools for Windows. Broadcom released...

Sorry! Image not available at this time

WordPress security plugin WP Ghost vulnerable to remote code execution bug

bleepingcomputer.com - 20/Mar 14:58

Popular WordPress security plugin WP Ghost is vulnerable to a critical severity flaw that could allow unauthenticated attackers to remotely execute...

Les derniers communiqués

  • Aucun élément