As many as 23 new high severity security vulnerabilities have been disclosed in different implementations of Unified Extensible Firmware Interface (UEFI) firmware used by numerous vendors, including Bull Atos, Fujitsu, HP, Juniper Networks, Lenovo, am…
A politically motivated hacker group tied to a series of espionage and sabotage attacks on Israeli entities in 2021 incorporated a previously undocumented remote access trojan (RAT) that masquerades as the Windows Calculator app as part of a conscious…
A WordPress plugin with over one million installs has been found to contain a critical vulnerability that could result in the execution of arbitrary code on compromised websites.
The plugin in question is Essential Addons for Elementor, which provides…
Fetch Softworks Fetch FTP Client 5.8 – Remote CPU Consumption (Denial of Service)
uBidAuction v2.0.1 – ‘Multiple’ Cross Site Scripting (XSS)
Mozilla Firefox 67 – Array.pop JIT Type Confusion
Wordpress Plugin 404 to 301 2.0.2 – SQL-Injection (Authenticated)
CONTPAQi(R) AdminPAQ 14.0.0 – Unquoted Service Path
WordPress Plugin Post Grid 2.1.1 – Cross Site Scripting (XSS)
WordPress Plugin Product Slider for WooCommerce 1.13.21 – Cross Site Scripting (XSS)
