Cybersecurity researchers have detailed an attack that involved a threat actor utilizing a Python-based backdoor to maintain persistent access to compromised endpoints and then leveraged this access to deploy the RansomHub ransomware throughout the tar…
A vulnerability was found in WP Responsive Tabs Plugin up to 1.2.9 on WordPress. It has been declared as problematic. This vulnerability affects unknown code. The manipulation leads to cross site scripting.
This vulnerability was named CVE-2024-13387….
A vulnerability was found in Admin and Customer Messages After Order for WooCommerce Plugin up to 13.2 on WordPress. It has been classified as problematic. This affects an unknown part of the component File Upload. The manipulation leads to cross site …
A vulnerability was found in Passwords Manager Plugin up to 1.4.8 on WordPress and classified as problematic. Affected by this issue is some unknown functionality of the component Encryption Key Handler. The manipulation leads to missing authorization….
A vulnerability has been found in Passwords Manager Plugin up to 1.4.8 on WordPress and classified as critical. Affected by this vulnerability is an unknown functionality. The manipulation leads to sql injection.
This vulnerability is known as CVE-202…
A vulnerability, which was classified as critical, was found in Passwords Manager Plugin up to 1.4.8 on WordPress. Affected is an unknown function. The manipulation leads to sql injection.
This vulnerability is traded as CVE-2024-12613. It is possible…
A vulnerability, which was classified as critical, has been found in Multi Step Form Plugin up to 1.7.23 on WordPress. This issue affects some unknown processing of the component File Upload. The manipulation leads to missing authorization.
The identi…
A vulnerability classified as critical was found in Kubernetes on Windows. This vulnerability affects unknown code of the file nodes/*/logs/query of the component Kubelet. The manipulation leads to command injection.
This vulnerability was named CVE-2…
Ivanti has rolled out security updates to address several security flaws impacting Avalanche, Application Control Engine, and Endpoint Manager (EPM), including four critical bugs that could lead to information disclosure.
All the four critical security…
A vulnerability classified as critical has been found in DDSN Acora CMS 10.1.1. This affects an unknown part. The manipulation of the argument table leads to sql injection.
This vulnerability is uniquely identified as CVE-2025-22964. It is possible to…
