Skip to main content
Abstract art
Abstract art
Abstract art
Abstract art

For providers

25 Jan 2025
Riasztás

NA - CVE-2025-24360 - Nuxt is an open-source web development...

Nuxt is an open-source web development framework for Vue.js. Starting in version 3.8.1 and prior to version 3.15.3, Nuxt allows any websites to send any requests to the development server and read...
security-database.com
Read more
25 Jan 2025
Riasztás

NA - CVE-2025-24361 - Nuxt is an open-source web development...

Nuxt is an open-source web development framework for Vue.js. Source code may be stolen during dev when using version 3.0.0 through 3.15.12 of the webpack builder or version 3.12.2 through 3.152 of...
security-database.com
Read more
25 Jan 2025
Riasztás

Critical - CVE-2025-0357 - The WPBookit plugin for WordPress is vulnerable...

The WPBookit plugin for WordPress is vulnerable to arbitrary file uploads due to insufficient file type validation in the 'WPB_Profile_controller::handle_image_upload' function in...
security-database.com
Read more
25 Jan 2025
Riasztás

Medium - CVE-2024-13709 - The Linear plugin for WordPress is vulnerable...

The Linear plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 2.8.1. This is due to missing or incorrect nonce validation on the...
security-database.com
Read more
25 Jan 2025
Riasztás

NA - CVE-2025-0411 - 7-Zip Mark-of-the-Web Bypass Vulnerability....

7-Zip Mark-of-the-Web Bypass Vulnerability. This vulnerability allows remote attackers to bypass the Mark-of-the-Web protection mechanism on affected installations of 7-Zip. User interaction is...
security-database.com
Read more
24 Jan 2025
Biztonsági szemle

CISOs Are Gaining C-Suite Swagger, but Has It Come With a Cost?

The number of CISOs who report directly to the CEO is up sharply in recent years, but many still say it's not enough to secure adequate resources.
darkreading.com
Read more
24 Jan 2025
Biztonsági szemle

Attacks on Ivanti appliances demonstrate danger of chained exploits

CISA warned that attackers are chaining a number of CVE-listed vulnerabilities into a single exploit script.
scmagazine.com
Read more
24 Jan 2025
Biztonsági szemle

Reddit, WeTransfer pages spoofed in Lumma Stealer campaign

Nearly 1,000 imitation pages were discovered, targeting users looking for other software.
scmagazine.com
Read more
24 Jan 2025
Biztonsági szemle

Cursive Funk, Microsoft, Ivanti, Sonic Wall, Exchange, PowerSchool, Aaran Leyland... - SWN #445

scmagazine.com
Read more
24 Jan 2025
Biztonsági szemle

DoJ Busts Up Another Multinational DPRK IT Worker Scam

A departmentwide initiative has now led to five major law enforcement actions, in an attempt to curb the increasingly common trend of North Korean hackers posing as IT job applicants.
darkreading.com
Read more
Language
Type