Security News

WordPress Ecommerce Plugin Vulnerability Details Disclosed (Threatpost)
2015-04-29 18:28

Details on a number of unpatched vulnerabilities in a popular WordPress ecommerce plugin called CartPress were disclosed.

A Year Later, XSS Vulnerability Still Exists in eBay (Threatpost)
2015-04-29 18:27

A potentially dangerous XSS vulnerability has existed in eBay for more than a year and it doesn’t appear the company is a rush to fix the issue.

WordPress Rushes to Fix Critical Zero-Day Vulnerability (SecurityWeek)
2015-04-28 22:48

WordPress Patches Zero-Day Vulnerability (Threatpost)
2015-04-28 17:12

WordPress quickly turned around a patch for a stored cross-site scripting zero-day vulnerability in the CMS' core engine.

Login Vulnerability Exposes SAP ASE Databases (SecurityWeek)
2015-04-24 10:02

iOS Vulnerability Could Force Devices Into Endless Reboot Loop (Threatpost)
2015-04-23 17:14

Researchers stumbled upon a vulnerability recently that can force any iPhone or iPad into a perpetual reboot loop.

Vulnerability management for over 15,000 unique apps (Help Net Security)
2015-04-23 06:54

Tripwire announced at RSA Conference 2015 that its Tripwire IP360 solution now discovers more than 100,000 conditions, including vulnerabilities, configurations and operating systems, and more than 15...

Analyzing the Magento RCE Vulnerability (Reddit)
2015-04-23 00:00

MS15-034 - Critical: Vulnerability in HTTP.sys Could Allow Remote Code Execution (3042553) - Version: 1.1 (Microsoft)
2015-04-22 19:00

No iOS Zone - A New Vulnerability Allows DoS Attacks on iOS Devices (Reddit)
2015-04-22 14:00