Mitigation

CVE-2025-31911: Critical SQL Injection Vulnerability in WordPress Social Share And Social Locker Plugin

CVE News

CVE-2025-31911: Critical SQL Injection Vulnerability in WordPress Social Share And Social Locker Plugin

A critical SQL injection vulnerability (CVE-2025-31911) has been identified in the WordPress plugin “Social Share And Social...

Dell PowerProtect Data Domain Vulnerability (CVE-2025-29987): Root Access Exploit Analysis

CVE News

Dell PowerProtect Data Domain Vulnerability (CVE-2025-29987): Root Access Exploit Analysis

A critical vulnerability (CVE-2025-29987) in Dell PowerProtect Data Domain systems running Data Domain Operating System (DD OS)...

GitHub Expands Security Tools Following 39 Million Secret Leaks in 2024

Data Breach

GitHub Expands Security Tools Following 39 Million Secret Leaks in 2024

GitHub has introduced new security measures after its systems detected 39 million exposed secrets—including API keys, tokens,...

Verizon Call Filter API Vulnerability Exposed Customer Call Logs via Unsecured Endpoint

CVE News

Verizon Call Filter API Vulnerability Exposed Customer Call Logs via Unsecured Endpoint

A security flaw in Verizon’s Call Filter API allowed unauthorized access to customers’ incoming call histories due...

AssetView Vulnerability Exposes Systems to Unauthenticated File Access and Deletion (CVE-2025-25060)

CVE News

AssetView Vulnerability Exposes Systems to Unauthenticated File Access and Deletion (CVE-2025-25060)

A critical vulnerability in AssetView and AssetView CLOUD (CVE-2025-25060) has been disclosed, allowing unauthenticated attackers to access...

Critical Path Traversal Vulnerability in FortiSIEM (CVE-2023-40714) Allows Privilege Escalation

CVE News

Critical Path Traversal Vulnerability in FortiSIEM (CVE-2023-40714) Allows Privilege Escalation

A critical vulnerability (CVE-2023-40714) affecting multiple versions of Fortinet’s FortiSIEM security information and event management solution has...

YesWiki Path Traversal Vulnerability (CVE-2025-31131): Technical Analysis and Mitigation

CVE News

YesWiki Path Traversal Vulnerability (CVE-2025-31131): Technical Analysis and Mitigation

A critical path traversal vulnerability (CVE-2025-31131) has been identified in YesWiki, a PHP-based wiki system, with a...

Critical SQL Injection Vulnerability in Next-Cart Store to WooCommerce Migration Plugin (CVE-2025-30807)

CVE News

Critical SQL Injection Vulnerability in Next-Cart Store to WooCommerce Migration Plugin (CVE-2025-30807)

A critical SQL injection vulnerability (CVE-2025-30807) has been identified in the Next-Cart Store to WooCommerce Migration plugin,...

Critical SQL Injection Vulnerability in WooCommerce Order Splitter Plugin (CVE-2025-31089)

CVE News

Critical SQL Injection Vulnerability in WooCommerce Order Splitter Plugin (CVE-2025-31089)

A high-severity SQL injection vulnerability (CVE-2025-31089) has been identified in Fahad Mahmood’s Order Splitter for WooCommerce plugin,...

Critical SQL Injection Vulnerability in RSVPMarker WordPress Plugin (CVE-2025-31552)

CVE News

Critical SQL Injection Vulnerability in RSVPMarker WordPress Plugin (CVE-2025-31552)

A critical SQL injection vulnerability (CVE-2025-31552) has been identified in the RSVPMarker WordPress plugin, affecting versions up...

Critical SQL Injection Vulnerability in Advanced WooCommerce Product Sales Reporting (CVE-2025-31553)

CVE News

Critical SQL Injection Vulnerability in Advanced WooCommerce Product Sales Reporting (CVE-2025-31553)

A critical SQL injection vulnerability (CVE-2025-31553) has been identified in the WPFactory Advanced WooCommerce Product Sales Reporting...

Hong Kong Data Breach: 128,000 Records Exposed Due to System Neglect and Outdated Infrastructure

Data Breach

Hong Kong Data Breach: 128,000 Records Exposed Due to System Neglect and Outdated Infrastructure

A recent data breach affecting nearly 128,000 individuals in Hong Kong has been attributed to a combination...

High-Severity SQL Injection Vulnerability in WordPress Uptime Robot Plugin (CVE-2025-31547)

CVE News

High-Severity SQL Injection Vulnerability in WordPress Uptime Robot Plugin (CVE-2025-31547)

A high-severity SQL injection vulnerability (CVE-2025-31547) has been identified in the Aphotrax Uptime Robot Plugin for WordPress,...

Critical SQL Injection Vulnerability in PiExtract’s SOOP-CLM (CVE-2025-3011)

CVE News

Critical SQL Injection Vulnerability in PiExtract’s SOOP-CLM (CVE-2025-3011)

A critical SQL injection vulnerability (CVE-2025-3011) has been identified in PiExtract’s SOOP-CLM software, rated 9.8 (CRITICAL) on...

Critical Authentication Bypass in CHOCO TEI WATCHER mini Exposes Industrial Systems

CVE News

Critical Authentication Bypass in CHOCO TEI WATCHER mini Exposes Industrial Systems

A critical vulnerability (CVE-2025-25211) affecting all versions of the CHOCO TEI WATCHER mini (IB-MCT001) industrial monitoring device...

Martin Lewis’ Mobile Security Alert: How to Retrieve and Secure Your IMEI

News

Martin Lewis’ Mobile Security Alert: How to Retrieve and Secure Your IMEI

Financial expert Martin Lewis has issued a security alert urging all mobile phone users to retrieve their...

CVE-2025-2249: WordPress SoJ SoundSlides Plugin Vulnerability Exposes Sites to Arbitrary File Uploads

CVE News

CVE-2025-2249: WordPress SoJ SoundSlides Plugin Vulnerability Exposes Sites to Arbitrary File Uploads

A critical vulnerability (CVE-2025-2249) in the WordPress SoJ SoundSlides plugin allows authenticated attackers with Contributor-level access or...

UK ICO Issues GDPR Warning Over Children’s Data Handling by TikTok and Other Platforms

Cyber Laws & Regulations

UK ICO Issues GDPR Warning Over Children’s Data Handling by TikTok and Other Platforms

The UK Information Commissioner’s Office (ICO) has issued a stark warning to digital businesses regarding compliance with...

Medusa Ransomware Targets Critical Infrastructure: Technical Analysis and Mitigation

Threat Intelligence

Medusa Ransomware Targets Critical Infrastructure: Technical Analysis and Mitigation

The U.S. Cybersecurity and Infrastructure Security Agency (CISA), Federal Bureau of Investigation (FBI), and Multi-State Information Sharing...

Meta Warns of Actively Exploited FreeType Vulnerability (CVE-2025-27363) with High-Severity RCE Risk

CVE News

Meta Warns of Actively Exploited FreeType Vulnerability (CVE-2025-27363) with High-Severity RCE Risk

Meta has issued a warning about an actively exploited vulnerability in the FreeType font rendering library, tracked...

Posts pagination

Previous 1 2 3 4 5 6 7 Next

Mitigation

CVE-2025-31911: Critical SQL Injection Vulnerability in WordPress Social Share And Social Locker Plugin

Dell PowerProtect Data Domain Vulnerability (CVE-2025-29987): Root Access Exploit Analysis

GitHub Expands Security Tools Following 39 Million Secret Leaks in 2024

Verizon Call Filter API Vulnerability Exposed Customer Call Logs via Unsecured Endpoint

AssetView Vulnerability Exposes Systems to Unauthenticated File Access and Deletion (CVE-2025-25060)

Critical Path Traversal Vulnerability in FortiSIEM (CVE-2023-40714) Allows Privilege Escalation

YesWiki Path Traversal Vulnerability (CVE-2025-31131): Technical Analysis and Mitigation

Critical SQL Injection Vulnerability in Next-Cart Store to WooCommerce Migration Plugin (CVE-2025-30807)

Critical SQL Injection Vulnerability in WooCommerce Order Splitter Plugin (CVE-2025-31089)

Critical SQL Injection Vulnerability in RSVPMarker WordPress Plugin (CVE-2025-31552)

Critical SQL Injection Vulnerability in Advanced WooCommerce Product Sales Reporting (CVE-2025-31553)

Hong Kong Data Breach: 128,000 Records Exposed Due to System Neglect and Outdated Infrastructure

High-Severity SQL Injection Vulnerability in WordPress Uptime Robot Plugin (CVE-2025-31547)

Critical SQL Injection Vulnerability in PiExtract’s SOOP-CLM (CVE-2025-3011)

Critical Authentication Bypass in CHOCO TEI WATCHER mini Exposes Industrial Systems

Martin Lewis’ Mobile Security Alert: How to Retrieve and Secure Your IMEI

CVE-2025-2249: WordPress SoJ SoundSlides Plugin Vulnerability Exposes Sites to Arbitrary File Uploads

Medusa Ransomware Targets Critical Infrastructure: Technical Analysis and Mitigation

Meta Warns of Actively Exploited FreeType Vulnerability (CVE-2025-27363) with High-Severity RCE Risk

You may have missed

Scania Insurance Data Breach: Compromised Credentials Lead to Extortion Attempt

Critical RCE Vulnerability in Veeam Backup & Replication (CVE-2025-23120): Analysis and Mitigation

Sitecore XP Exploit Chain: Hardcoded Credentials Lead to Unauthenticated RCE

23andMe’s £2.31M UK Fine: A Case Study in Genetic Data Security Failures