Vulnerabilities – Threatpost
Critical WordPress Plugin Flaw Allows Site Takeover
A patch in the NextGen Gallery WordPress plugin fixes critical and high-severity cross-site request…
Read more >>
Vulnerabilities – Threatpost
Nespresso Smart Cards Brewed with Weak Security
A researcher hacked Nespresso Pro smart cards to dispense free, unlimited coffee. Via Vulnerabiliti…
Read more >>
Vulnerabilities – Threatpost
Industrial Networks See Sharp Uptick in Hackable Security Holes
Claroty reports that adversaries, CISOs and researchers have all turned their attention to finding …
Read more >>
Vulnerabilities – Threatpost
Unpatched WordPress Plugin Code-Injection Bug Afflicts 50K Sites
An CRSF-to-stored-XSS security bug plagues 50,000 'Contact Form 7' Style users. Via Vulnera…
Read more >>
Vulnerabilities – Threatpost
Google Chrome Zero-Day Afflicts Windows, Mac Users
Google warns of a zero-day vulnerability in the V8 open-source engine that's being actively exp…
Read more >>
Vulnerabilities – Threatpost
Critical Cisco Flaws Open VPN Routers Up to RCE Attacks
The vulnerabilities exist in Cisco's RV160, RV160W, RV260, RV260P, and RV260W VPN routers for s…
Read more >>
Vulnerabilities – Threatpost
Second SolarWinds Attack Group Breaks into USDA Payroll — Report
A second APT, potentially linked to the Chinese government, could be behind the Supernova malware. …
Read more >>
