Aggregator

A vulnerability, which was classified as critical, has been found in Chimpstudio FoodBakery Plugin up to 4.7 on WordPress. Affected by this issue is the function foodbakery_var_backup_file_delete of the component Setting Handler. The manipulation leads to missing authorization. This vulnerability is handled as CVE-2024-12920. The attack may be launched remotely. There is no exploit available.

A vulnerability classified as critical was found in IBM Security ReaQta 3.12. Affected by this vulnerability is an unknown functionality. The manipulation leads to unrestricted upload. This vulnerability is known as CVE-2024-45644. The attack can be launched remotely. There is no exploit available. It is recommended to upgrade the affected component.

Как Amazon выявляет протестные настроения сотрудников.

In today’s digital world, security breaches are all too common. Despite the many security tools and training programs available, identity-based attacks—like phishing, adversary-in-the-middle, and MFA bypass—remain a major challenge. Instead of accepting these risks and pouring resources into fixing problems after they occur, why not prevent attacks from happening in the first place? Our upcoming

The US Cybersecurity and Infrastructure Security Agency added flaws in Fortinet and a popular GitHub Action to its Known Exploited Vulnerabilities catalog

Security firm Barracuda said it has detected more than a million phishing-as-a-service (PhaaS) attacks in 2025

A vulnerability has been found in Aguestbook AN Guestbook 0.4 and classified as problematic. This vulnerability affects unknown code of the file send_email.php. The manipulation of the argument postid leads to cross site scripting. This vulnerability was named CVE-2008-2414. The attack can be initiated remotely. Furthermore, there is an exploit available.