Vulnerabilities

2 min read

CVE-2024-34102 : Thousands of Magento Stores at Risk

June 21, 2024

A new critical security vulnerability dubbed “CosmicSting” (CVE-2024-34102) has been recently discovered. The new security flow might jeopardizing millions of online web stores that are [more…]

Tagged Adobe, CosmicSting, CVE-2024-34102, Magento, Vulnerabilities

2 min read

Security News

FUJITSU Software Fixes Multiple Critical Vulnerabilities

June 20, 2024

June Bauer

FUJITSU Software has released security patches to fix multiple critical vulnerabilities in their ID Link Manager and TIME CREATOR products. These vulnerabilities, if exploited, could [more…]

Tagged CVE-2024-33620, CVE-2024-33622, CVE-2024-34024, Fujitsu, Vulnerabilities

2 min read

Security News

Critical VMware vCenter Server Vulnerabilities Patched

June 18, 2024

June Bauer

Broadcom has issued security fixes for VMware vCenter Server software products, to fix several vulnerabilities of critical and high severity. The security fixes, released today, [more…]

Tagged Broadcom, CVE-2024-37079, CVE-2024-37080, CVE-2024-37081, VMware, Vulnerabilities

2 min read

Security News

POC Released for Veeam Authentication Bypass CVE-2024-29849

June 10, 2024

Mohamed Nabil Ali

Recently, a critical vulnerability has been discovered in Veeam Backup Enterprise Manager, a popular backup solution for managing backups across various environments. This vulnerability, identified [more…]

Tagged CVE-2024-29849, Exploits, Veeam, Vulnerabilities

2 min read

Security News

Exploits Out: PHP RCE Flaw CVE-2024-4577

June 8, 2024

Mohamed Nabil Ali

A new critical remote code execution (RCE) vulnerability has been discovered in PHP, affecting all versions affects all PHP versions PHP since 5.x that are [more…]

Tagged CVE-2024-4577, Exploits, Orange Tsai, PHP, Vulnerabilities

4 min read

Security News Security Products

Operation MidnightEclipse: Active Exploiting Campaigns Target Palo Alto’s CVE-2024-3400 Vulnerability

April 13, 2024

Mohamed Nabil Ali

Palo Alto Networks has disclosed a critical remote code execution (RCE) vulnerability (CVE-2024-3400) impacting PAN-OS firewalls. This vulnerability affects specific PAN-OS versions and requires a [more…]

Tagged CVE-2024-3400, Palo Alto Networks, PAN-OS, Vulnerabilities

2 min read

Security News

Critical Vulnerabilities Discovered in MasterStudy LMS Plugin Up to Version 3.3.3

April 10, 2024

Sying Tien

Multiple critical vulnerabilities were discovered in a popular WordPress plugin MasterStudy LMS, that has over 10,000 active installations. The reported vulnerabilities, if exploited, could allow [more…]

Tagged Bug Bounty, CVE-2024-2409, CVE-2024-2411, CVE-2024-3136, MasterStudy LMS, Vulnerabilities, Wordfence, Wordpress

xr:d:DAGBr2g--E8:11,j:1944853494570732019,t:24040918

2 min read

Security News

Command Injection Vulnerability Puts Thousands of D-Link NAS at Risk

April 9, 2024

June Bauer

Security researchers have uncovered a critical vulnerability in multiple D-Link NAS (Network Attached Storage) devices that could allow attackers to execute arbitrary commands and gain [more…]

Tagged Backdoor, CVE-2024-3273, D-Link, Vulnerabilities

2 min read

Security News

Unauthenticated SQL Injection Vulnerability Patched in Popular LayerSlider WordPress Plugin

April 4, 2024

June Bauer

Wordfence, recently disclosed and helped patch a critical vulnerability in the popular LayerSlider WordPress plugin. This vulnerability, an unauthenticated SQL injection flaw, could potentially allow [more…]

Tagged CVE-2024-2879, SQL Injection, Vulnerabilities, Wordfence, Wordpress

2 min read

Security News

Major Security Flaw Discovered in Popular WordPress WP-Members Membership Plugin

April 2, 2024

Sying Tien

A serious security vulnerability was recently found in WP-Members Membership, a widely-used WordPress plugin for creating membership sites. An unauthenticated stored cross-site scripting (XSS) vulnerability, [more…]

Tagged Hackers, Vulnerabilities, Wordfence, Wordpress, WP-Members Membership