Organizations relying on Fortra FileCatalyst Workflow, a widely-used enterprise file transfer solution, are at severe risk due to a newly disclosed remote code execution (RCE) vulnerability (CVE-2024-25153, CVSS 9.8) and...
In September 2023, the infamous Russian-linked cyber-espionage group APT29 flexed its muscle again, this time targeting embassies of several nations with a well-crafted attack. The group exploited a critical vulnerability...
Security researchers have disclosed technical details for a Visual Studio Code remote code execution vulnerability (CVE-2023-36742, CVSS score of 7.8) and a public proof-of-concept (PoC) exploit. The flaw resides in...
In the vast world of container security, NeuVector, developed and maintained by SUSE, stands tall as a beacon of protection for containerized environments throughout their entire lifecycle. Its comprehensive suite...
At least three routers made by Australian telecommunications equipment company NetComm Wireless are affected by two serious vulnerabilities that can be exploited remotely to take control of affected devices. The...
Linux machines running distributions powered by kernels prior to 5.15.61 are affected by use after free flaw, related to ksmbd, exposing vulnerable systems to remote attacks. KSMBD is an open-source...
PHP Everywhere is an open-source WordPress plugin, that enables PHP code everywhere in your WordPress installation. Using this plugin you can use PHP in Pages, Posts, Sidebar. Everywhere you can...
On May 9, Spring released several security announcements that fixed several security vulnerabilities, including a high-risk remote code execution vulnerability. CVE-2018-1257 (High) Some versions of the Spring Framework allow applications...
On March 13, 2018, Adobe releases the security update to fix vulnerabilities in Adobe Flash Player, Adobe Connect, and Adobe Dreamweaver. A remote attacker could exploit these vulnerabilities to take control of...
Support Securityonline.info site. Thanks!
