Aggregator

Focus on Pre-Breach Resilience and Post-Breach Recovery Via Mapping Dependencies
By acquiring vArmour’s intellectual property, Phoenix 24 will enhance its recovery services with advanced application visualization and dependency mapping. CEO Mark Grazman said the move will streamline recovery processes during ransomware attacks and improve organizational readiness.

Cost of Attack Has Reached $3.1 Billion for Parent Company UnitedHealth Group
One of the biggest data breaches of 2024 is even worse than previously reported, as the tally of Change Healthcare breach victims has now reached 190 million individuals, and costs tied to the attack $3.1 billion, according to its owner, U.S. health insurance giant UnitedHealth Group.

Whether you're facing growing data demands and increased cyber threats, or simply looking to future-proof your business, it's time to consider the long-term benefits of transitioning to a cloud-first infrastructure.

A vulnerability classified as problematic has been found in SeedProd Coming Soon Page, Under Construction & Maintenance Mode Plugin up to 6.18.9 on WordPress. Affected is an unknown function. The manipulation leads to cross-site request forgery. This vulnerability is traded as CVE-2025-24540. It is possible to launch the attack remotely. There is no exploit available.

A vulnerability was found in David F. Carr RSVPMarker Plugin up to 11.4.5 on WordPress. It has been classified as problematic. This affects an unknown part. The manipulation leads to missing authorization. This vulnerability is uniquely identified as CVE-2025-24600. It is possible to initiate the attack remotely. There is no exploit available.

A vulnerability was found in WisdmLabs Edwiser Bridge Plugin up to 3.0.8 on WordPress. It has been rated as problematic. This issue affects some unknown processing. The manipulation leads to cross site scripting. The identification of this vulnerability is CVE-2025-24593. The attack may be initiated remotely. There is no exploit available.

A vulnerability was found in Marian Kanev Cab Fare Calculator Plugin up to 1.1 on WordPress. It has been declared as critical. This vulnerability affects unknown code. The manipulation leads to missing authorization. This vulnerability was named CVE-2025-23982. The attack can be initiated remotely. There is no exploit available.

A vulnerability was found in David F. Carr RSVPMarker Plugin up to 11.4.5 on WordPress. It has been classified as problematic. This affects an unknown part. The manipulation leads to missing authorization. This vulnerability is uniquely identified as CVE-2025-24600. It is possible to initiate the attack remotely. There is no exploit available.

A vulnerability was found in Red Hat OpenShift Service Mesh and classified as critical. Affected by this issue is some unknown functionality of the component proxyv2-rhel9. The manipulation leads to http request smuggling. This vulnerability is handled as CVE-2025-0752. The attack may be launched remotely. There is no exploit available.

A vulnerability has been found in Saul Morales Pacheco Donate visa Plugin up to 1.0.0 on WordPress and classified as problematic. Affected by this vulnerability is an unknown functionality. The manipulation leads to missing authorization. This vulnerability is known as CVE-2025-23656. The attack can be launched remotely. There is no exploit available.

A vulnerability, which was classified as problematic, was found in Ivan Chernyakov LawPress Plugin up to 1.4.5 on WordPress. Affected is an unknown function. The manipulation leads to cross site scripting. This vulnerability is traded as CVE-2025-23756. It is possible to launch the attack remotely. There is no exploit available.

A vulnerability, which was classified as problematic, has been found in Ulrich Sossou The Loops Plugin up to 1.0.2 on WordPress. This issue affects some unknown processing. The manipulation leads to cross site scripting. The identification of this vulnerability is CVE-2025-23754. The attack may be initiated remotely. There is no exploit available.

A vulnerability classified as problematic was found in CGD Arrange Terms Plugin up to 1.1.3 on WordPress. This vulnerability affects unknown code. The manipulation leads to cross site scripting. This vulnerability was named CVE-2025-23752. The attack can be initiated remotely. There is no exploit available.

A vulnerability classified as problematic has been found in Nurul Amin & Mohammad Saiful Islam WP Smart Tooltip Plugin up to 1.0.0 on WordPress. This affects an unknown part. The manipulation leads to cross site scripting. This vulnerability is uniquely identified as CVE-2025-23669. It is possible to initiate the attack remotely. There is no exploit available.

A vulnerability was found in Jonathan Lau CubePM Plugin up to 1.0 on WordPress. It has been rated as problematic. Affected by this issue is some unknown functionality. The manipulation leads to cross site scripting. This vulnerability is handled as CVE-2025-23574. The attack may be launched remotely. There is no exploit available.

A vulnerability was found in David F. Carr RSVPMaker Volunteer Roles Plugin up to 1.5.1 on WordPress. It has been declared as problematic. Affected by this vulnerability is an unknown functionality. The manipulation leads to cross site scripting. This vulnerability is known as CVE-2025-23531. The attack can be launched remotely. There is no exploit available.

A vulnerability was found in Blokhaus Minterpress Plugin up to 1.0.5 on WordPress. It has been classified as problematic. Affected is an unknown function. The manipulation leads to missing authorization. This vulnerability is traded as CVE-2025-23529. It is possible to launch the attack remotely. There is no exploit available.

A vulnerability was found in CRI-O and classified as critical. This issue affects the function UnMountPodLogs/LinkContainerLogs. The manipulation of the argument emptyDirVolName leads to path traversal. The identification of this vulnerability is CVE-2025-0750. An attack has to be approached locally. There is no exploit available.

A vulnerability has been found in Benjamin Piwowarski Papercite Plugin up to 0.5.18 on WordPress and classified as problematic. This vulnerability affects unknown code. The manipulation leads to missing authorization. This vulnerability was named CVE-2025-23849. The attack can be initiated remotely. There is no exploit available.

A vulnerability, which was classified as critical, was found in TRENDnet TEW-632BRP up to 1.010B31. This affects an unknown part of the file ntp_sync.cgi of the component POST Request Handler. The manipulation leads to os command injection. This vulnerability is uniquely identified as CVE-2024-57590. It is possible to initiate the attack remotely. There is no exploit available.