Cyberattack at French hospital exposes health data of 750,000 patients
Cyberattack at French hospital exposes health data of 750,000 patients

Cyberattack at French hospital exposes health data of 750,000 patients

2024-11-21 02:20

A data breach at an unnamed French hospital exposed the medical records of 750,000 patients...

Five Scattered Spider suspects indicted for phishing spree and crypto heists

Five Scattered Spider suspects indicted for phishing spree and crypto heists

2024-11-21 01:29

DoJ also shutters allleged crimeware and credit card mart PopeyeTools The US Department of...

Chinese cyberspies, Musk’s Beijing ties, labelled ‘real risk’ to US security by senator

Chinese cyberspies, Musk’s Beijing ties, labelled ‘real risk’ to US security by senator

2024-11-20 23:50

Meet Liminal Panda, which prowls telecom networks in South Asia and Africa A senior US senator...

Fintech giant Finastra investigates data breach after SFTP hack

Fintech giant Finastra investigates data breach after SFTP hack

2024-11-20 20:56

Finastra has confirmed it warned customers of a cybersecurity incident after a threat actor...

MITRE shares 2024's top 25 most dangerous software weaknesses

MITRE shares 2024's top 25 most dangerous software weaknesses

2024-11-20 20:37

MITRE has shared this year's top 25 list of the most common and dangerous software...

US charges five linked to Scattered Spider cybercrime gang

US charges five linked to Scattered Spider cybercrime gang

2024-11-20 19:22

The U.S. Justice Department has charged five suspects believed to be part of the financially...

Ubuntu Linux impacted by decade-old 'needrestart' flaw that gives root

Ubuntu Linux impacted by decade-old 'needrestart' flaw that gives root

2024-11-20 19:04

Five local privilege escalation (LPE) vulnerabilities have been discovered in the needrestart...

Vulnerabilities by Risk level (Last 12 months)

Risk level Last 12 months #
Critical 3117
High 8063
Medium 10580
Low 348

Vulnerabilities by Vendor (Last 12 months)

Vendor Last 12 months #
Linux 1723
Microsoft 862
Adobe 726
Google 559
Apple 380

Latest Vulnerabilities

  • CVE-2024-10913

    8.8

    The Clone plugin for WordPress is vulnerable to PHP Object Injection in all versions up to, and including, 2.4.6 via deserialization of untrusted input in the 'recursive_unserialized_replace'...

    network
    low complexity
    CWE-502
  • CVE-2024-11154

    4.3

    The PublishPress Revisions: Duplicate Posts, Submit, Approve and Schedule Content Changes plugin for WordPress is vulnerable to Sensitive Information Exposure in all versions up to, and including,...

    network
    low complexity
    CWE-862
  • CVE-2024-10520

    5.3

    The WP Project Manager plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check in the 'check' method of the 'Create_Milestone',...

    network
    low complexity
    CWE-862
  • CVE-2024-11404

    5.5

    Unrestricted Upload of File with Dangerous Type, Improper Input Validation, Improper Neutralization of Script-Related HTML Tags in a Web Page (Basic XSS) vulnerability in django CMS Association...

    network
    low complexity
    CWE-80
  • CVE-2024-11406

    6.9

    Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in django CMS Association django CMS Attributes Fields allows Stored XSS.This issue...

    network
    low complexity
    CWE-79

Latest Critical Vulnerabilities