CVE ID : CVE-2024-13447 Published : Jan. 22, 2025, 11:15 a.m. | 24 minutes ago Description : The WP Hotel Booking plugin for WordPress is vulnerable to unauthorized access of data due to a missing capability check on the hotel_booking_load_order_user AJAX action in all versions up to, and including, 2.1.6. This makes it possible for authenticated […]
A externally controlled reference to a resource in another sphere in Fortinet FortiManager before version 7.4.3, FortiMail before version 7.0.3, FortiAnalyzer before version 7.4.3, FortiVoice version 7.0.0, 7.0.1 and before 6.4.8, FortiProxy before version 7.0.4, FortiRecorder version 6.4.0 through 6.4.2 and before 6.0.10, FortiAuthenticator version 6.4.0 through 6.4.1 and before 6.3.3, FortiNDR version 7.2.0 before […]
VeraCrypt stopt support 32-bit Windowsversies, dicht lekken in Linux-versie Er is een nieuwe versie van encryptiesoftware VeraCrypt verschenen, die twee kwetsbaarheden in de Linux- en macOS-versies verhelpt. Daarnaast worden 32-bit versies van Windows niet meer ondersteund. V … Read more Published Date: Jan 22, 2025 (2 hours, 11 minutes ago) Vulnerabilities has been mentioned in this article.
CVE ID : CVE-2025-0429 Published : Jan. 22, 2025, 8:15 a.m. | 30 minutes ago Description : The “AI Power: Complete AI Pack” plugin for WordPress is vulnerable to PHP Object Injection in versions up to, and including, 1.8.96 via deserialization of untrusted input from the $form[‘post_content’] variable through the wpaicg_export_ai_forms() function. This allows authenticated attackers, […]
CVE ID : CVE-2025-0428 Published : Jan. 22, 2025, 8:15 a.m. | 30 minutes ago Description : The “AI Power: Complete AI Pack” plugin for WordPress is vulnerable to PHP Object Injection in versions up to, and including, 1.8.96 via deserialization of untrusted input from the $form[‘post_content’] variable through the wpaicg_export_prompts function. This allows authenticated attackers, […]
CVE ID : CVE-2024-13361 Published : Jan. 22, 2025, 8:15 a.m. | 30 minutes ago Description : The AI Power: Complete AI Pack plugin for WordPress is vulnerable to unauthorized access due to a missing capability check on the wpaicg_save_image_media function in all versions up to, and including, 1.8.96. This makes it possible for authenticated attackers, […]
CVE ID : CVE-2024-13360 Published : Jan. 22, 2025, 8:15 a.m. | 30 minutes ago Description : The AI Power: Complete AI Pack plugin for WordPress is vulnerable to Server-Side Request Forgery in all versions up to, and including, 1.8.96 via the wpaicg_troubleshoot_add_vector(). This makes it possible for authenticated attackers, with subscriber-level access and above, to […]
CVE ID : CVE-2024-13319 Published : Jan. 22, 2025, 8:15 a.m. | 30 minutes ago Description : The Themify Builder plugin for WordPress is vulnerable to Reflected Cross-Site Scripting due to the use of add_query_arg without appropriate escaping on the URL in all versions up to, and including, 7.6.5. This makes it possible for unauthenticated attackers […]
CVE-2025-23195 impacts Apache Ambari BackgroundApache Ambari is a widely-used open-source tool that helps manage, monitor, and provision Hadoop clusters. It provides a user-friendly interface, simplifies cluster operations, and supports … Read more Published Date: Jan 22, 2025 (1 hour, 40 minutes ago) Vulnerabilities has been mentioned in this article.
Oracle Releases January 2025 Patch to Address 318 Flaws Across Major Products Vulnerability / Enterprise Security Oracle is urging customers to apply its January 2025 Critical Patch Update (CPU) to address 318 new security vulnerabilities spanning its products and services. The … Read more Published Date: Jan 22, 2025 (1 hour, 20 minutes ago) Vulnerabilities has been […]
Unit A5, Endeavour Business Park
Penner Road, Havant
PO9 1QN
Company Registration Number: 5334133
Company VAT Number: 855 7246 95
