logo_clicknbuy.png

Day: 10 January 2025

CVE-2024-12473 – “AI Scribe SQL Injection Vulnerability in WordPress Plugin”

CVE ID : CVE-2024-12473 Published : Jan. 10, 2025, 4:15 a.m. | 27 minutes ago Description : The AI Scribe – SEO AI Writer, Content Generator, Humanizer, Blog Writer, SEO Optimizer, DALLE-3, AI WordPress Plugin ChatGPT (GPT-4o 128K) plugin for WordPress is vulnerable to SQL Injection via the ‘template_id’ parameter of the ‘article_builder_generate_data’ shortcode in all […]

Fake LDAPNightmare PoC Exploit Conceals Information-Stealing Malware

Fake LDAPNightmare PoC Exploit Conceals Information-Stealing Malware Trend Micro researchers have uncovered a dangerous fake proof-of-concept (PoC) exploit masquerading as an exploit for CVE-2024-49113, a critical vulnerability in Microsoft’s Lightweight Directory Acce … Read more Published Date: Jan 10, 2025 (1 hour, 58 minutes ago) Vulnerabilities has been mentioned in this article. CVE-2024-49113

The Linux Foundation to Manage New Chromium Fund

The Linux Foundation to Manage New Chromium Fund The Chromium project, the open-source foundation for web browsers like Google Chrome, Microsoft Edge, and Opera, is getting a financial shot in the arm. Google, in partnership with The Linux Foundatio … Read more Published Date: Jan 10, 2025 (2 hours, 11 minutes ago) Vulnerabilities has been mentioned in […]

Chinese APT Group Is Ransacking Japan’s Secrets

Chinese APT Group Is Ransacking Japan’s Secrets Source: Birgit Korber via Alamy Stock PhotoThe National Police Agency and the National Center of Incident Readiness and Strategy for Cybersecurity warned Japanese organizations of a sophisticated Chin … Read more Published Date: Jan 10, 2025 (2 hours, 14 minutes ago) Vulnerabilities has been mentioned in this article. CVE-2023-3519 CVE-2023-27997 […]

Unmasking Play Ransomware: Tactics, Techniques, and Mitigation Strategies

Unmasking Play Ransomware: Tactics, Techniques, and Mitigation Strategies EDR detection of threat actor attack actions used in the Lateral Movement phase | Source: AhnLabPlay ransomware, also known as Balloonfly or PlayCrypt, has emerged as a significant cyber threat since … Read more Published Date: Jan 10, 2025 (2 hours, 24 minutes ago) Vulnerabilities has been mentioned in […]

Unpatched Vulnerabilities in Fancy Product Designer Plugin Put 20,000+ Websites at Risk

Unpatched Vulnerabilities in Fancy Product Designer Plugin Put 20,000+ Websites at Risk In a recent security advisory, Rafie Muhammad, a security researcher at Patchstack, has uncovered critical vulnerabilities in the Fancy Product Designer plugin, a popular premium plugin designed for p … Read more Published Date: Jan 10, 2025 (2 hours, 39 minutes ago) Vulnerabilities has been […]