Aggregator

A vulnerability was found in Apple Mac OS X up to 10.6.4. It has been rated as critical. This issue affects some unknown processing of the component Sample Table. The manipulation leads to memory corruption. The identification of this vulnerability is CVE-2011-0210. The attack may be initiated remotely. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability classified as critical has been found in Apple Mac OS X up to 10.6.4. Affected is an unknown function. The manipulation leads to numeric error. This vulnerability is traded as CVE-2011-0211. It is possible to launch the attack remotely. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability, which was classified as critical, has been found in Apple Mac OS X up to 10.6.4. Affected by this issue is some unknown functionality. The manipulation leads to memory corruption. This vulnerability is handled as CVE-2011-0213. The attack may be launched remotely. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability has been found in Apple QuickTime 7.x and classified as critical. Affected by this vulnerability is an unknown functionality. The manipulation leads to memory corruption. This vulnerability is known as CVE-2011-0186. The attack can be launched remotely. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability was found in Apple Mac OS X up to 10.8.5 and classified as problematic. This issue affects some unknown processing of the component QuickTime Movie Handler. The manipulation leads to memory corruption. The identification of this vulnerability is CVE-2013-1032. The attack may be initiated remotely. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability was found in Enhanced Text Widget Plugin up to 1.6.5 on WordPress. It has been declared as problematic. This vulnerability affects unknown code. The manipulation leads to cross site scripting. This vulnerability was named CVE-2024-0559. The attack can be initiated remotely. There is no exploit available.

A vulnerability, which was classified as problematic, was found in unclebob FitNesse up to 20220318. Affected is an unknown function. The manipulation leads to cross site scripting. This vulnerability is traded as CVE-2024-28128. It is possible to launch the attack remotely. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability was found in AccessAlly PopupAlly Plugin up to 2.1.0 on WordPress. It has been rated as problematic. Affected by this issue is some unknown functionality. The manipulation leads to missing authorization. This vulnerability is handled as CVE-2024-23520. The attack may be launched remotely. There is no exploit available.

A vulnerability was found in Hubbub Lite Plugin up to 1.33.0 on WordPress. It has been rated as critical. Affected by this issue is some unknown functionality of the component Password Protected Post Handler. The manipulation leads to improper authentication. This vulnerability is handled as CVE-2024-1526. The attack may be launched remotely. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability was found in invoke-ai invokeai up to 5.4.2 and classified as very critical. This issue affects some unknown processing of the file /api/v2/models/install of the component API. The manipulation leads to deserialization. The identification of this vulnerability is CVE-2024-12029. The attack may be initiated remotely. Furthermore, there is an exploit available. It is recommended to upgrade the affected component.

Scammers are in on the sextortion trend. Our expert analysis on this trend found that the likelihood of being targeted by sextortion scammers in the first few months of 2025 increased by a whopping 137% in the U.S., while the risk jumped to 49% in the U.K. and 34% in Australia.

The post Sextortion scams are on the rise — and they’re getting personal appeared first on Security Boulevard.

A massive cybercrime network known as "VexTrio" is using thousands of compromised WordPress sites to funnel traffic through a complex redirection scheme.

A vulnerability was found in Foreground Skin up to 1.42.1 on MediaWiki. It has been rated as problematic. Affected by this issue is some unknown functionality of the component Sidebar Menu Handler. The manipulation leads to cross site scripting. This vulnerability is handled as CVE-2024-40605. The attack may be launched remotely. There is no exploit available.

The Amazon Nova AI Challenge puts student research to the test and aims to bring a new perspective to challenges arising from the increase in AI-assisted software development.

Two malicious VSCode Marketplace extensions were found deploying in-development ransomware from a remote server, exposing critical gaps in Microsoft's review process. [...]