Aggregator

Alleged Data Leak Targeting 1.1M USA Citizen Records

A vulnerability was found in LuckyWP Scripts Control Plugin up to 1.2.1 on WordPress. It has been declared as problematic. This vulnerability affects unknown code. The manipulation leads to missing authorization. This vulnerability was named CVE-2023-47778. The attack can be initiated remotely. There is no exploit available.

A vulnerability was found in Daniel Söderström & Sidney van de Stouwe Subscribe to Category Plugin up to 2.7.4 on WordPress. It has been classified as problematic. This affects an unknown part. The manipulation leads to missing authorization. This vulnerability is uniquely identified as CVE-2022-43476. It is possible to initiate the attack remotely. There is no exploit available.

A vulnerability was found in Linux Kernel up to 6.0.7 and classified as critical. Affected by this issue is some unknown functionality of the component s5p_cec. The manipulation leads to buffer overflow. This vulnerability is handled as CVE-2022-49035. The attack needs to be initiated within the local network. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability has been found in 1Panel-dev MaxKB up to 1.8.x and classified as critical. Affected by this vulnerability is an unknown functionality. The manipulation leads to os command injection. This vulnerability is known as CVE-2024-56137. The attack can be launched remotely. There is no exploit available. It is recommended to upgrade the affected component.

In light of recent cybercrime incidents, the United States (US) Cybersecurity and Infrastructure Security Agency (CISA) has issued an alert pertaining to a Cisco vulnerability. As per recent reports, the Cisco vulnerability prevails within the Smart Install (SMI) feature and can be exploited for access to sensitive data. In this article, we’ll explore the vulnerability […]

The post Cisco Vulnerability: CISA Alerts Of Smart Install Exploits appeared first on TuxCare.

The post Best of 2024: Cisco Vulnerability: CISA Alerts Of Smart Install Exploits appeared first on Security Boulevard.

In light of recent cybercrime incidents, the United States (US) Cybersecurity and Infrastructure

A vulnerability was found in Adobe Acrobat Reader 9.5.1/10.1.3 on Mac. It has been declared as critical. This vulnerability affects unknown code. The manipulation leads to memory corruption. This vulnerability was named CVE-2012-4161. Access to the local network is required for this attack to succeed. Furthermore, there is an exploit available. It is recommended to upgrade the affected component.

A vulnerability was found in Adobe Acrobat Reader 9.5.1/10.1.3 on Mac. It has been rated as critical. This issue affects some unknown processing. The manipulation leads to memory corruption. The identification of this vulnerability is CVE-2012-4162. The attack needs to be approached within the local network. Furthermore, there is an exploit available. It is recommended to upgrade the affected component.

A vulnerability was found in Linux Kernel. It has been declared as critical. Affected by this vulnerability is the function xfrm6_tunnel_rcv of the file net/ipv6/xfrm6_tunnel.c of the component IPv6. The manipulation leads to improper resource management. This vulnerability is known as CVE-2012-1583. The attack can be launched remotely. There is no exploit available. It is recommended to apply a patch to fix this issue.

浙江农林大学的研究人员在《TrAC Trends in Analytical Chemistry》期刊上发表论文，发现人体组织中的微塑料和纳米塑料浓度与特定疾病有相关性。此前的研究在皮肤、动脉、静脉、血栓、骨髓、睾丸、精液、子宫和胎盘等人体不同器官组织中都发现了微塑料和纳米塑料。颗粒丰度与特定疾病如炎症性肠病、血栓形成、宫颈癌和子宫肌瘤之间存在正相关性。毒理学测试显示，微塑料和纳米塑料能引发氧化应激、线粒体功能障碍、炎症反应和不同类型的细胞凋亡，以及穿越血脑屏障引发神经退行性疾病等问题。研究人员发现，微塑料和纳米塑料浓度在病变组织中通常高于无病变组织，表明其积累与局部病理潜在相关。目前尚无法得出因果联系，但值得进一步研究。

A vulnerability, which was classified as critical, was found in Product Recommendation Quiz for eCommerce Plugin up to 2.1.0 on WordPress. This affects the function prq_set_token. The manipulation leads to missing authorization. This vulnerability is uniquely identified as CVE-2023-46631. It is possible to initiate the attack remotely. There is no exploit available.

A vulnerability was found in My Shortcodes Plugin up to 2.3 on WordPress. It has been classified as critical. Affected is an unknown function of the component AJAX Action Handler. The manipulation leads to missing authorization. This vulnerability is traded as CVE-2023-46632. It is possible to launch the attack remotely. There is no exploit available.

A vulnerability was found in WP Word Count Plugin up to 3.2.4 on WordPress. It has been declared as critical. Affected by this vulnerability is the function calculate_statistics. The manipulation leads to missing authorization. This vulnerability is known as CVE-2023-46628. The attack can be launched remotely. There is no exploit available.

A vulnerability was found in Animated Rotating Words Plugin up to 5.4 on WordPress. It has been classified as critical. This affects the function save_admin_options. The manipulation leads to missing authorization. This vulnerability is uniquely identified as CVE-2023-47187. It is possible to initiate the attack remotely. There is no exploit available.