Vulnerability Archives • Page 5 of 226 • Daily CyberSecurity

SureTriggers Vulnerability Exposes 100,000+ WordPress Sites to Admin Takeover WordPress Vulnerability SureTriggers

SureTriggers Vulnerability Exposes 100,000+ WordPress Sites to Admin Takeover

Ddos April 10, 2025

A critical vulnerability in the popular WordPress automation plugin SureTriggers has exposed over 100,000 sites to the...

Dell Addresses Security Vulnerabilities in PowerScale OneFS CVE-2024-37143 & CVE-2024-37144 Dell PowerScale OneFS vulnerability

Dell Addresses Security Vulnerabilities in PowerScale OneFS

Ddos April 10, 2025

Dell has released a security advisory addressing multiple vulnerabilities in PowerScale OneFS, its scale-out network-attached storage operating...

NATS Server Vulnerability: Missing Access Controls in JetStream API NATS security JetStream API vulnerability

NATS Server Vulnerability: Missing Access Controls in JetStream API

Ddos April 10, 2025

A security vulnerability has been discovered in NATS Server, a communications system for digital systems, services, and...

Critical SSRF Vulnerability Patched in LNbits Lightning Wallet Server LNbits SSRF LNURL Vulnerability

Critical SSRF Vulnerability Patched in LNbits Lightning Wallet Server

Ddos April 10, 2025

LNbits, the modular and extendable Lightning Network wallet server, has patched a critical Server-Side Request Forgery (SSRF)...

High-Severity XXE Vulnerability Found in NAKIVO Backup & Replication NAKIVO XXE vulnerability CVE-2025-32406

High-Severity XXE Vulnerability Found in NAKIVO Backup & Replication

Ddos April 10, 2025

A high-severity security vulnerability has been identified in NAKIVO Backup & Replication, a popular data protection solution....

Tool Poisoning Attacks: Critical Vulnerability Discovered in Model Context Protocol (MCP) Tool Poisoning Attack MCP Vulnerability

Tool Poisoning Attacks: Critical Vulnerability Discovered in Model Context Protocol (MCP)

Ddos April 10, 2025

Invariant Labs has disclosed a critical vulnerability in the Model Context Protocol (MCP) that enables what they...

Critical Vulnerabilities: CISA Alerts to Windows CLFS and Gladinet CentreStack Threats KEV Catalog Vulnerability Patch CVE-2025-30406

Critical Vulnerabilities: CISA Alerts to Windows CLFS and Gladinet CentreStack Threats

Ddos April 9, 2025

Recently, the Cybersecurity and Infrastructure Security Agency (CISA) added two significant vulnerabilities to its Known Exploited Vulnerabilities...

Windows CLFS Zero-Day Exploited to Deploy Ransomware CLFS zero-day Ransomware attack

Windows CLFS Zero-Day Exploited to Deploy Ransomware

Ddos April 9, 2025

Microsoft Threat Intelligence has disclosed active exploitation of a zero-day vulnerability in the Windows Common Log File...

Siemens Security Alert: Critical Vulnerabilities in SENTRON 7KT PAC1260 Data Manager CVE-2024-22040 - SINEC Security Monitor Siemens Security Advisory SENTRON 7KT PAC1260

CVE-2024-22040 - SINEC Security Monitor Siemens Security Advisory SENTRON 7KT PAC1260

Siemens Security Alert: Critical Vulnerabilities in SENTRON 7KT PAC1260 Data Manager

Ddos April 9, 2025

In a recent security advisory, Siemens ProductCERT has revealed multiple critical vulnerabilities affecting the SENTRON 7KT PAC1260...

Kibana Code Injection Vulnerability: Prototype Pollution Threat (CVE-2024-12556) CVE-2024-43707 Kibana vulnerability Prototype pollution

Kibana Code Injection Vulnerability: Prototype Pollution Threat (CVE-2024-12556)

Ddos April 9, 2025

A newly disclosed vulnerability in Kibana, the popular open-source data visualization front-end for Elasticsearch, has been rated...

Chrome Update Fixes High-Severity “Use After Free” Vulnerability Chrome update Security vulnerability

Chrome Update Fixes High-Severity “Use After Free” Vulnerability

Ddos April 9, 2025

The Chrome Stable channel has been updated to version 135.0.7049.84/.85 for Windows and Mac, and to 135.0.7049.84...

Microsoft April 2025 Patch Tuesday: Critical Security Updates and Zero-Day Exploits CVE-2024-43573 and CVE-2024-43572 Microsoft Patch Tuesday Security Vulnerabilities

CVE-2024-43573 and CVE-2024-43572 Microsoft Patch Tuesday Security Vulnerabilities

Microsoft April 2025 Patch Tuesday: Critical Security Updates and Zero-Day Exploits

Ddos April 9, 2025

This April, Microsoft’s Patch Tuesday release addresses a significant number of vulnerabilities, highlighting the ever-present need for...

Inaba Denki Sangyo Wi-Fi AP Units Affected by Critical Vulnerabilities Vonets WiFi Bridge Inaba Denki Sangyo Wi-Fi vulnerability

Inaba Denki Sangyo Wi-Fi AP Units Affected by Critical Vulnerabilities

Ddos April 9, 2025

A recent security advisory from JPCERT/CC has highlighted multiple vulnerabilities in Inaba Denki Sangyo Co., Ltd.’s Wi-Fi...

Apache mod_auth_openidc Vulnerability Exposes Protected Content mod_auth_openidc, Apache security

Apache mod_auth_openidc Vulnerability Exposes Protected Content

Ddos April 9, 2025

In a recently published security advisory, OpenIDC has revealed a vulnerability in mod_auth_openidc, the widely used OpenID...

Fortinet: Critical Unverified Password Change Flaw in FortiSwitch Fortinet Vulnerability CVE-2024-48887

Fortinet: Critical Unverified Password Change Flaw in FortiSwitch

Ddos April 8, 2025

Fortinet has released a security advisory addressing a critical vulnerability in FortiSwitch products. The vulnerability, identified as...