A researcher specializing in Software Supply Chain security named Dan Lorenc recently raised an interesting topic on LinkedIn. 138 new vulnerabilities in…
Tag: CVE
“TootRoot” Mastodon vulnerabilities fixed: Admins, patch now!
One of Twitter’s big rivals, Mastodon, recently finished fixing four issues which (in the worst case) allowed for the creation of files on…
Update now: 9 vulnerabilities impact Cisco Small Business Series
Vulnerabilities have been found and fixed in the web-based user interface of various Cisco products in the Small Business Series. These nine…
Update now: Critical flaw in VMWare Fusion and VMWare Workstation
Four vulnerabilities in virtualisation software have been fixed by VMware, including two which were exploited at the 20223 Pwn2Own contest. Three have…
Update now, there’s a Chrome zero-day in the wild
Google has announced an important update for Chrome to help fend off a zero-day. The update fixes several issues, and readers…
Time to uninstall! Abandoned Android apps pack a vulnerability punch
Synopsis has published an advisory warning of multiple vulnerabilities across three different Android remote mouse and keyboard apps with a combined…
Smart lights vulnerable to “blink and you’ll miss it” attack
Over the last couple of years, key parts of our daily lives have been sliding into some form of Internet connectivity….
WPGateway WordPress plugin vulnerability could allow full site takeover
There’s been a few WordPress plugin vulnerabilities in the wild recently, and today we have another one to add to the…
PrestaShop warns of vulnerability: Update your stores now!
A vulnerability affecting open source e-commerce platform PrestaShop could spell trouble for servers running PrestaShop websites. The 15-year-old organisation’s platform is…
Warning for WordPress admins: uninstall the Modern WPBakery plugin immediately!
WordPress admins are being warned to remove a buggy plugin or risk a total site takeover. This particular threat relates to…