Vulnerability Archives • Page 146 of 190 • Daily CyberSecurity

CVE-2023-3162: Stripe Payment Plugin for WooCommerce Authentication Bypass Flaw

Ddos August 2, 2023

A critical security vulnerability has been discovered in the Stripe Payment Plugin for WooCommerce that could allow...

CVE-2023-20583 – A new vulnerability impacting CPUs

Ddos August 2, 2023

Austrian and German scientists have devised a power monitoring side-channel attack targeting computer CPUs, capable of leaking...

CVE-2023-28130 – A Critical Security Flaw in Check Point Gaia Portal

Ddos August 2, 2023

A critical vulnerability has been discovered in Check Point Gaia Portal that could allow an authenticated attacker...

Hackers are actively exploiting BleedingPipe vulnerability in Minecraft mods

Ddos August 1, 2023

Last Saturday, researchers from the Minecraft security community, MMPA, issued a reminder to gamers via a blog...

CVE-2023-31710: TP-Link Archer AX21 Router Vulnerable to Remote Code Execution

Ddos August 1, 2023

TP-Link has patched a critical vulnerability in its Archer AX21 router that could allow attackers to execute...

CISA Adds Ivanti Endpoint Manager Mobile Flaw (CVE-2023-35081) to its KEV Catalog CVE-2023-35081 & CVE-2024-11639

CISA Adds Ivanti Endpoint Manager Mobile Flaw (CVE-2023-35081) to its KEV Catalog

Ddos August 1, 2023

Recently, the U.S. Cybersecurity and Infrastructure Security Agency (CISA) cast a spotlight on a particularly disconcerting issue...

Researchers Disclose MikroTik RouterOS Security Flaw, Putting Hundreds of Thousands of Devices at Risk

Ddos July 31, 2023

Recently, VulnCheck unveiled in a report a critical privilege escalation vulnerability (CVE-2023-30799, CVSS score 9.1) present within...

CVE-2022-27595 & CVE-2022-27600: Two high-severity flaws in QVPN and QNAP Systems QNAP QVR Pro Vulnerability CVE-2026-22898 CVE-2022-27595 - CVE-2024-48860 & CVE-2024-48861

QNAP QVR Pro Vulnerability CVE-2026-22898 CVE-2022-27595 - CVE-2024-48860 & CVE-2024-48861

CVE-2022-27595 & CVE-2022-27600: Two high-severity flaws in QVPN and QNAP Systems

Ddos July 30, 2023

QNAP has recently released security advisories for two vulnerabilities that affect the QVPN Device Client for Windows...

Researcher releases PoC exploit for MobileIron zero-day bug (CVE-2023-35078) CVE-2023-35078 PoC

Researcher releases PoC exploit for MobileIron zero-day bug (CVE-2023-35078)

Ddos July 29, 2023

A specter is haunting the world of mobile device management – the specter of a zero-day authentication...

CVE-2023-38646: Remote Command Execution Vulnerability in Metabase

Ddos July 26, 2023

In the realm of business intelligence, the open-source tool Metabase has marked its presence with its seamless...

CVE-2023-37895: A Critical Remote Code Execution in Apache Jackrabbit Apache Jackrabbit, JNDI injection CVE-2023-37895 Apache Jackrabbit, XXE Vulnerability

CVE-2023-37895: A Critical Remote Code Execution in Apache Jackrabbit

Ddos July 26, 2023

A critical security vulnerability, identified as CVE-2023-37895, has been discovered in Apache Jackrabbit, an open-source content repository...

CVE-2023-38647: Critical Deserialization Vulnerability in Apache Helix Workflow and REST

Ddos July 26, 2023

In the dynamic world of cyber security, threats are continually evolving and vulnerabilities are regularly exposed. The...

CVE-2023-26045: NodeBB Forum Software Remote Code Execution Flaw

Ddos July 25, 2023

Bulletin board platforms form the heart of our digital forums, acting as arenas for interaction, discussion, and...

CVE-2023-34478: Apache Shiro Path Traversal Vulnerability

Ddos July 24, 2023

A critical vulnerability has been identified in Apache Shiro. This security loophole tracked as CVE-2023-34478, can result...

CVE-2023-38606 & CVE-2023-37450: Apple Addresses Actively Exploited 0-Day Flaws

Ddos July 24, 2023

Two critical zero-day vulnerabilities have recently made headlines, threatening the digital security of Apple devices around the...

CVE-2023-20593: Critical Flaw Discovered in AMD Ryzen 2 and EPYC Processors

Ddos July 24, 2023

Cybersecurity threats continue to evolve, and processors are not spared. One recent vulnerability making headlines is CVE-2023-20593,...

CVE-2023-34966: high-severity vulnerability in Samba critical Samba vulnerabilities remote code execution flaws CVE-2023-34966

CVE-2023-34966: high-severity vulnerability in Samba

Ddos July 24, 2023

Samba, a popular freeware implementation of the Server Message Block (SMB) protocol, has released software updates to...

How an Attacker Took Control of an Active Directory Domain Using CVE-2022-26923

Ddos July 21, 2023

In June 2023, IBM Security X-Force responded to an incident where a client had received alerts from...

Atlassian Confluence and Bamboo Remote Code Execution Vulnerabilities CVE-2023-22508 Atlassian Bamboo Vulnerability CVE-2026-21570

Atlassian Confluence and Bamboo Remote Code Execution Vulnerabilities

Ddos July 21, 2023

Atlassian has released security advisories for three vulnerabilities in Confluence Data Center & Server and Bamboo Data...

PoC released for critical CloudPanel CVE-2023-35885 vulnerability CVE-2023-35885 PoC

PoC released for critical CloudPanel CVE-2023-35885 vulnerability

Ddos July 21, 2023

CloudPanel is a free and modern server control panel that allows users to configure and manage their...

Critical Alert 1 Active Exploit Detected Today