Aggregator
CVE-2024-12222 | Deliver via Shipos for WooCommerce Plugin up to 2.1.7 on WordPress dvsfw_bulk_label_url cross site scripting
CVE-2024-12122 | ResAds Plugin up to 2.0.6 on WordPress cross site scripting
CVE-2024-12285 | SEMA API Plugin up to 5.27 on WordPress catid cross site scripting
CVE-2024-11328 | CLUEVO LMS, E-Learning Platform Plugin up to 1.13.2 on WordPress cross site scripting
CVE-2024-11686 | WhatsApp Click to Chat Plugin up to 3.0.4 on WordPress cross site scripting
CVE-2024-12819 | Searchie Plugin up to 1.17.0 on WordPress cross site scripting
CVE-2025-25069 | Apache Kvrocks up to 2.11.0 HTTP Request interpretation input
CVE-2024-12054 | ZF RSSPlus RSSPlus SecurityAccess Service authentication bypass (icsa-25-021-03)
Grip Security unveils SSPM solution to strengthen SaaS security posture
Grip Security has unveiled its SaaS Security Posture Management (SSPM) solution, which proactively identifies misconfigurations, enforces best practices and strengthens SaaS security posture against emerging risks. Unlike traditional SSPM products, Grip SSPM is built on a foundation of visibility and automation, enabling organizations to combine misconfiguration remediation and policy enforcement as part of a comprehensive security program that addresses SaaS security end-to-end. By consolidating SaaS security into a single platform, Grip SSPM streamlines operations, automates … More →
The post Grip Security unveils SSPM solution to strengthen SaaS security posture appeared first on Help Net Security.
清华大学李琦老师课题组招聘研究员、博士后、工程师
RedMike Hackers Exploited 1000+ Cisco Devices to Gain Admin Access
Researchers observed a sophisticated cyber-espionage campaign led by the Chinese state-sponsored group known as “Salt Typhoon,” also referred to as “RedMike.” Between December 2024 and January 2025, the group exploited over 1,000 unpatched Cisco network devices globally, targeting telecommunications providers and universities. The campaign highlights the ongoing vulnerability of critical infrastructure and the strategic intelligence […]
The post RedMike Hackers Exploited 1000+ Cisco Devices to Gain Admin Access appeared first on Cyber Security News.