Adobe ColdFusion Vulnerability Let Attackers Read arbitrary files – PoC Released
Adobe has issued updates to address a vulnerability in its ColdFusion software that could allow attackers to read arbitrary files from affected systems.
The flaw,...
IBM Cognos Analytics Vulnerability Allows Malicious File Upload & Injection Attacks
IBM has released a critical security update for its Cognos Analytics software, addressing two severe vulnerabilities: CVE-2023-42017 and CVE-2024-51466.
These vulnerabilities could allow attackers to upload malicious...
Hikvision Camera Driver Vulnerability Records Login details in Log files
A newly disclosed security vulnerability, tracked under CVE-2024-12569, has been identified in Hikvision camera drivers integrated with Milestone's XProtect® Device Pack.
This vulnerability has raised...
Apache Struts RCE Vulnerability Actively Exploited in Wild Using Public PoC
A critical security vulnerability has been identified in Apache Struts, a popular open-source framework for building Java-based web applications actively used in attacks leveraging...
RCE Vulnerability in 1,000,000 WordPress Sites Lets Attackers Gain Control Over Backend
A critical Remote Code Execution (RCE) vulnerability (CVE-2024-6386), affecting over 1,000,000 active installations of the WordPress Multilingual Plugin (WPML).
This flaw, stemming from a Server-Side...
Windows Kernel Vulnerability Actively Exploits in Attacks to Gain System Access
The Cybersecurity and Infrastructure Security Agency (CISA) has added two new vulnerabilities to its Known Exploited Vulnerabilities Catalog, one of which belongs to a...
Tic TAC Alert: A Remote Code Execution Vulnerability in Medical Imaging
A critical Remote Code Execution (RCE) vulnerability has been discovered in a popular open-source biomedical tool used worldwide.
This vulnerability, identified as CVE-2024-42845, has...
Malichus Malware Exploiting Cleo 0-day Vulnerability In Wild
Threat actors are actively exploiting a critical zero-day vulnerability (CVE-2024-50623) in Cleo’s file transfer products Harmony, VLTrader, and LexiComis.
The flaw, stemming from an unrestricted...
Critical Vulnerability in Python Affected MacOS or Linux Leads to Exploiting The Memory
A high-severity vulnerability (CVE-2024-12254) impacting CPython has been publicly disclosed, affecting Python versions 3.12.0 and later.
The flaw, identified in the asyncio module, specifically...
Synology Router Vulnerabilities Let Attackers Inject Arbitrary Web Script
Synology, a leading provider of network-attached storage and networking solutions, has recently patched multiple vulnerabilities in its Router Manager (SRM) software.
These security flaws, classified...
Recent Posts
CyTwist Launches Advanced Security Solution to identify AI-Driven Cyber Threats in...
CyTwist, a leader in advanced next-generation threat detection solutions, has launched its patented detection engine to combat the insidious rise of AI-generated malware.
The cybersecurity...