AI-Assisted Attacks Top Cyber Threat For Third Consecutive Quarter, Gartner Finds
AI-enhanced malicious attacks are a top concern for 80% of executives, and for good reason, as...
Increasing Awareness of DNS Hijacking: A Growing Cyber Threat
Read more about DNS hijacking and how organizations can prevent it.
Cybercrooks are targeting Bengal cat lovers in Australia for some reason
In case today’s news cycle wasn’t shocking enough, here’s a gem from Sophos Fresh from a series...
Hackers increasingly use Winos4.0 post-exploitation kit in attacks
Hackers are increasingly targeting Windows users with the malicious Winos4.0 framework,...
Microsoft Notepad to get AI-powered rewriting tool on Windows 11
Microsoft has started testing AI-powered Notepad text rewriting and Paint image generation tools...
Cisco bug lets hackers run commands as root on UWRB access points
Cisco has fixed a maximum severity vulnerability that allows attackers to run commands with root...
New SteelFox malware hijacks Windows PCs using vulnerable driver
A new malicious package called 'SteelFox' mines for cryptocurrency and steals credit...
Vulnerabilities by Risk level (Last 12 months)
Vulnerabilities by Vendor (Last 12 months)
Latest Vulnerabilities
-
CVE-2024-10028
7.5The Everest Backup – WordPress Cloud Backup, Migration, Restore & Cloning Plugin plugin for WordPress is vulnerable to Sensitive Information Exposure in all versions up to, and including, 2.2.13...
-
CVE-2024-10084
4.3The Contact Form 7 – Dynamic Text Extension plugin for WordPress is vulnerable to Basic Information Disclosure in all versions up to, and including, 4.5 via the CF7_get_post_var shortcode. This...
-
CVE-2024-49522
7.8Substance3D - Painter versions 10.0.1 and earlier are affected by an out-of-bounds write vulnerability that could result in arbitrary code execution in the context of the current user....
-
CVE-2024-10329
4.3The Ultimate Bootstrap Elements for Elementor plugin for WordPress is vulnerable to Sensitive Information Exposure in all versions up to, and including, 1.4.6 via the 'ube_get_page_templates'...
-
CVE-2024-10263
7.3The Tickera – WordPress Event Ticketing plugin for WordPress is vulnerable to arbitrary shortcode execution in all versions up to, and including, 3.5.4.4. This is due to the software allowing...
Latest Critical Vulnerabilities
-
CVE-2024-10687
9.8The Photos, Files, YouTube, Twitter, Instagram, TikTok, Ecommerce Contest Gallery – Upload, Vote, Sell via PayPal, Social Share Buttons plugin for WordPress is vulnerable to time-based SQL...
-
CVE-2024-10758 - SQL Injection vulnerability in multiple products
9.8A vulnerability, which was classified as critical, was found in code-projects/anirbandutta9 Content Management System and News-Buzz 1.0. This affects an unknown part of the file /index.php. The...
-
CVE-2024-10752 - SQL Injection vulnerability in Codezips PET Shop Management System 1.0
9.8A vulnerability was found in Codezips Pet Shop Management System 1.0. It has been classified as critical. This affects an unknown part of the file /productsadd.php. The manipulation of the...
-
CVE-2024-10741 - SQL Injection vulnerability in Anisha E-Health Care System 1.0
9.8A vulnerability has been found in code-projects E-Health Care System 1.0 and classified as critical. This vulnerability affects unknown code of the file /Users/registration.php. The manipulation...
-
CVE-2024-10740 - SQL Injection vulnerability in Anisha E-Health Care System 1.0
9.8A vulnerability, which was classified as critical, was found in code-projects E-Health Care System up to 1.0. This affects an unknown part of the file /Admin/consulting_detail.php. The...
-
CVE-2024-10739 - SQL Injection vulnerability in Anisha E-Health Care System 1.0
9.8A vulnerability, which was classified as critical, has been found in code-projects E-Health Care System 1.0. Affected by this issue is some unknown functionality of the file /Admin/adminlogin.php....
-
CVE-2024-10738 - SQL Injection vulnerability in Angeljudesuarez Farm Management System 1.0
9.8A vulnerability classified as critical was found in itsourcecode Farm Management System 1.0. Affected by this vulnerability is an unknown functionality of the file manage-breed.php. The...
-
CVE-2024-10736 - SQL Injection vulnerability in Codezips Free Exam Hall Seating Management System 1.0
9.8A vulnerability was found in Codezips Free Exam Hall Seating Management System 1.0. It has been rated as critical. This issue affects some unknown processing of the file /student.php. The...