Cybersecurity, security vulnerability for Adobe ColdFusion
The US CISA: It contains an improper access control flaw that allows for remote code execution. Adobe: It has been exploited in the wild in very limited attacks.
CyberSecurity, Simple Task Scheduling System suffers a critical flaw
Cybersecurity Help experts: It’s the CVE-2022-30927. An attacker could execute arbitrary SQL queries in database, gaining the complete control of the application.
Cybersecurity, critical vulnerability in Horde webmail
Sonar: The flaw (CVE-2022-30287) allows an attacker to fully take over an instance as soon as a victim opens an email the attacker sent.
Cybersecurity, Apple patches the zero-day flaw CVE-2022-22620
Security updates for iOS, iPadOS (15.3.1) and macOS (Monterey 12.2.1). The vulnerability is actively exploited by cybercrime actors.
Cybercrime, companies worldwide targeted via SonicWall critical bugs
BleepingComputer cybersecurity experts: Threat actors exploit the CVE-2021-20038 to execute code as the 'nobody' user in compromised appliances.
Cybersecurity, macOS Monterey suffers the “powerdir” flaw
Microsoft experts detected the vulnerability CVE-2021-30970. It allows to bypass the TTC, gaining access to a user’s data. Update your systems ASAP!
Cybercrime, new life for TellYouThePass thanks to Log4Shell flaw
The cybersecurity expert “heige”: The ransomware is the last malware deployed in the cyber-attacks. Update your systems ASAP!
WordPress, Hashthemes Demo Importer has a critical vulnerability
Wordfence cybersecurity experts: The plugin flaw enables any authorized user to entirely wipe a site clean, erasing all of the material and data posted to it.
Cybersecurity, the WordPress Starter Template plugin has a flaw
Wordfence: The vulnerability allows Contributor level users to completely overwrite any page on the site with malicious JavaScript.
Cybercrime, the VMware vCenter Servers are under attack
The critical vulnerability (CVE-2021-22005) is actively exploited to hit organizations worldwide with RCE. Install the patch now!