Vulnerability

CVE-2025-22777 (CVSS 9.8): Critical Security Alert for GiveWP Plugin with 100,000 Active Installations

• Vulnerability

CVE-2025-22777 (CVSS 9.8): Critical Security Alert for GiveWP Plugin with 100,000 Active Installations

do son January 11, 2025

A severe vulnerability has been identified in the GiveWP plugin, one of WordPress’s most widely used tools...

Read More Read more about CVE-2025-22777 (CVSS 9.8): Critical Security Alert for GiveWP Plugin with 100,000 Active Installations

CVE-2024-12847 (CVSS 9.8): NETGEAR Router Flaw Exploited in the Wild for Years, PoC Published

• Vulnerability

CVE-2024-12847 (CVSS 9.8): NETGEAR Router Flaw Exploited in the Wild for Years, PoC Published

do son January 10, 2025

A severe security vulnerability has been discovered in several Netgear routers, allowing remote attackers to gain unauthorized...

Read More Read more about CVE-2024-12847 (CVSS 9.8): NETGEAR Router Flaw Exploited in the Wild for Years, PoC Published

Ivanti Connect Secure Zero-Day Threat: 2,048 Vulnerable Devices and Critical Exploitation Details Unveiled

• Vulnerability

Ivanti Connect Secure Zero-Day Threat: 2,048 Vulnerable Devices and Critical Exploitation Details Unveiled

do son January 10, 2025

On January 8, 2025, Ivanti disclosed an actively exploited zero-day vulnerability, tracked as CVE-2025-0282, affecting its Connect...

Read More Read more about Ivanti Connect Secure Zero-Day Threat: 2,048 Vulnerable Devices and Critical Exploitation Details Unveiled

Node.js to Issue CVE for End-of-Life Versions

• Technology
• Vulnerability

Node.js to Issue CVE for End-of-Life Versions

do son January 9, 2025

In a significant move to bolster security and encourage users to stay up-to-date, the Node.js Project has...

Read More Read more about Node.js to Issue CVE for End-of-Life Versions

Unpatched Vulnerabilities in Fancy Product Designer Plugin Put 20,000+ Websites at Risk

• Vulnerability

Unpatched Vulnerabilities in Fancy Product Designer Plugin Put 20,000+ Websites at Risk

do son January 9, 2025

In a recent security advisory, Rafie Muhammad, a security researcher at Patchstack, has uncovered critical vulnerabilities in...

Read More Read more about Unpatched Vulnerabilities in Fancy Product Designer Plugin Put 20,000+ Websites at Risk

Tails 6.11 Fixes Exploitable Vulnerabilities with Critical Security Patches

• Linux
• Vulnerability

Tails 6.11 Fixes Exploitable Vulnerabilities with Critical Security Patches

do son January 9, 2025

The Amnesic Incognito Live System (Tails) has released version 6.11, addressing critical security vulnerabilities uncovered during an...

Read More Read more about Tails 6.11 Fixes Exploitable Vulnerabilities with Critical Security Patches

Zero-Day Alert: UNC5337 Exploits Ivanti VPN Vulnerability CVE-2025-0282 for Espionage Operations

• Cyber Security
• Malware
• Vulnerability

Zero-Day Alert: UNC5337 Exploits Ivanti VPN Vulnerability CVE-2025-0282 for Espionage Operations

do son January 8, 2025

Ivanti Connect Secure (ICS) VPN appliances have become the focus of advanced threat actors, exploiting a newly...

Read More Read more about Zero-Day Alert: UNC5337 Exploits Ivanti VPN Vulnerability CVE-2025-0282 for Espionage Operations

macOS Vulnerability CVE-2024-54527 Unveiled: TCC Bypass PoC Exploit Code Released

• Vulnerability

macOS Vulnerability CVE-2024-54527 Unveiled: TCC Bypass PoC Exploit Code Released

do son January 8, 2025

A detailed technical and a proof-of-concept (PoC) exploit code from security researcher Mickey Jin has unveiled a...

Read More Read more about macOS Vulnerability CVE-2024-54527 Unveiled: TCC Bypass PoC Exploit Code Released

Mutiple Vulnerabilities Found in Palo Alto Networks Expedition Tool

• Vulnerability

Mutiple Vulnerabilities Found in Palo Alto Networks Expedition Tool

do son January 8, 2025

Palo Alto Networks has issued a security advisory addressing multiple vulnerabilities in its Expedition migration tool, which...

Read More Read more about Mutiple Vulnerabilities Found in Palo Alto Networks Expedition Tool

GitLab Tackles Critical Security Flaws in Latest Patch Release

• Vulnerability

GitLab Tackles Critical Security Flaws in Latest Patch Release

do son January 8, 2025

GitLab, the popular DevOps platform, has released a patch update addressing several security vulnerabilities affecting its import...

Read More Read more about GitLab Tackles Critical Security Flaws in Latest Patch Release

Apache OpenMeetings Users Urged to Patch Critical Flaw – CVE-2024-54676 (CVSS 9.8)

• Vulnerability

Apache OpenMeetings Users Urged to Patch Critical Flaw – CVE-2024-54676 (CVSS 9.8)

do son January 8, 2025

A critical security vulnerability (CVE-2024-54676, CVSS 9.8) has been discovered in Apache OpenMeetings, a popular open-source platform...

Read More Read more about Apache OpenMeetings Users Urged to Patch Critical Flaw – CVE-2024-54676 (CVSS 9.8)

MirrorFace: Unmasking the Chinese Cyber Espionage Group Targeting Japan

• Cyber Security
• Vulnerability

MirrorFace: Unmasking the Chinese Cyber Espionage Group Targeting Japan

do son January 8, 2025

On January 8, 2025, the Japanese National Police Agency (NPA) issued a critical warning regarding ongoing cyberattacks...

Read More Read more about MirrorFace: Unmasking the Chinese Cyber Espionage Group Targeting Japan

CVE-2024-54006 & CVE-2024-54007: Command Injection Flaws in HPE Aruba Devices, PoC Publicly Available

• Vulnerability

CVE-2024-54006 & CVE-2024-54007: Command Injection Flaws in HPE Aruba Devices, PoC Publicly Available

do son January 8, 2025

HPE Aruba Networking has issued a security advisory addressing multiple command injection vulnerabilities in its 501 Wireless...

Read More Read more about CVE-2024-54006 & CVE-2024-54007: Command Injection Flaws in HPE Aruba Devices, PoC Publicly Available

CVE-2024-5594 (CVSS 9.1): Critical Vulnerability in OpenVPN Enables Code Execution

• Vulnerability

CVE-2024-5594 (CVSS 9.1): Critical Vulnerability in OpenVPN Enables Code Execution

do son January 8, 2025

The open-source VPN software OpenVPN has patched three significant vulnerabilities in OpenVPN 2.6.11, released on June 21,...

Read More Read more about CVE-2024-5594 (CVSS 9.1): Critical Vulnerability in OpenVPN Enables Code Execution

CVE-2024-46622 (CVSS 9.8): SecureAge Security Suite Patches Critical Privilege Escalation Flaw

• Vulnerability

CVE-2024-46622 (CVSS 9.8): SecureAge Security Suite Patches Critical Privilege Escalation Flaw

do son January 8, 2025

SecureAge Technology has released updates to address a critical privilege escalation vulnerability in its SecureAge Security Suite....

Read More Read more about CVE-2024-46622 (CVSS 9.8): SecureAge Security Suite Patches Critical Privilege Escalation Flaw