ATENTION‼ New - CVE-2016-10953
📖 Read
via "National Vulnerability Database".
The Headway theme before 3.8.9 for WordPress has XSS via the license key field.📖 Read
via "National Vulnerability Database".
ATENTION‼ New - CVE-2016-10952
📖 Read
via "National Vulnerability Database".
The quotes-collection plugin before 2.0.6 for WordPress has XSS via the wp-admin/admin.php?page=quotes-collection page parameter.📖 Read
via "National Vulnerability Database".
ATENTION‼ New - CVE-2016-10951
📖 Read
via "National Vulnerability Database".
The fs-shopping-cart plugin 2.07.02 for WordPress has SQL injection via the pid parameter.📖 Read
via "National Vulnerability Database".
ATENTION‼ New - CVE-2016-10950
📖 Read
via "National Vulnerability Database".
The sirv plugin before 1.3.2 for WordPress has SQL injection via the id parameter.📖 Read
via "National Vulnerability Database".
ATENTION‼ New - CVE-2016-10949
📖 Read
via "National Vulnerability Database".
The Relevanssi Premium plugin before 1.14.6.1 for WordPress has SQL injection with resultant unsafe unserialization.📖 Read
via "National Vulnerability Database".
ATENTION‼ New - CVE-2016-10948
📖 Read
via "National Vulnerability Database".
The Post Indexer plugin before 3.0.6.2 for WordPress has incorrect handling of data passed to the unserialize function.📖 Read
via "National Vulnerability Database".
ATENTION‼ New - CVE-2016-10947
📖 Read
via "National Vulnerability Database".
The Post Indexer plugin before 3.0.6.2 for WordPress has SQL injection via the period parameter by a super admin.📖 Read
via "National Vulnerability Database".
ATENTION‼ New - CVE-2016-10946
📖 Read
via "National Vulnerability Database".
The wp-d3 plugin before 2.4.1 for WordPress has CSRF.📖 Read
via "National Vulnerability Database".
ATENTION‼ New - CVE-2016-10945
📖 Read
via "National Vulnerability Database".
The PageLines theme 1.1.4 for WordPress has wp-admin/admin-post.php?page=pagelines CSRF.📖 Read
via "National Vulnerability Database".
ATENTION‼ New - CVE-2016-10944
📖 Read
via "National Vulnerability Database".
The multisite-post-duplicator plugin before 1.1.3 for WordPress has wp-admin/tools.php?page=mpd CSRF.📖 Read
via "National Vulnerability Database".
ATENTION‼ New - CVE-2016-10943
📖 Read
via "National Vulnerability Database".
The zx-csv-upload plugin 1 for WordPress has SQL injection via the id parameter.📖 Read
via "National Vulnerability Database".
ATENTION‼ New - CVE-2016-10942
📖 Read
via "National Vulnerability Database".
The podlove-podcasting-plugin-for-wordpress plugin before 2.3.16 for WordPress has SQL injection via the insert_id parameter exploitable via CSRF.📖 Read
via "National Vulnerability Database".
ATENTION‼ New - CVE-2016-10941
📖 Read
via "National Vulnerability Database".
The podlove-podcasting-plugin-for-wordpress plugin before 2.3.16 for WordPress has XSS exploitable via CSRF.📖 Read
via "National Vulnerability Database".
ATENTION‼ New - CVE-2016-10940
📖 Read
via "National Vulnerability Database".
The zm-gallery plugin 1.0 for WordPress has SQL injection via the order parameter.📖 Read
via "National Vulnerability Database".
ATENTION‼ New - CVE-2016-10939
📖 Read
via "National Vulnerability Database".
The xtremelocator plugin 1.5 for WordPress has SQL injection via the id parameter.📖 Read
via "National Vulnerability Database".
ATENTION‼ New - CVE-2016-10938
📖 Read
via "National Vulnerability Database".
The copy-me plugin 1.0.0 for WordPress has CSRF for copying non-public posts to a public location.📖 Read
via "National Vulnerability Database".
🔐 Cybercrimninals set sights on bot attacks and mobile apps 🔐
📖 Read
via "Security on TechRepublic".
The past six months have seen a 13% increase in human-initiated cyberattacks. Here's what cybercriminals are targeting.📖 Read
via "Security on TechRepublic".
TechRepublic
Cybercriminals set sights on bot attacks and mobile apps
The past six months have seen a 13% increase in human-initiated cyberattacks. Here's what cybercriminals are targeting.
🔏 Friday Five: 9/13 Edition 🔏
📖 Read
via "Subscriber Blog RSS Feed ".
Hackers hit a U.S. power utility, a new audit on whether schools are monitoring employee access to student data, and more - catch up on the week's news with the Friday Five!📖 Read
via "Subscriber Blog RSS Feed ".
Digital Guardian
Friday Five: 9/13 Edition
Hackers hit a U.S. power utility, a new audit on whether schools are monitoring employee access to student data, and more - catch up on the week's news with the Friday Five!
❌ Astaroth Spy Trojan Uses Facebook, YouTube Profiles to Cover Tracks ❌
📖 Read
via "Threatpost".
At every turn, the info-stealer uses legitimate services to get around normal email, endpoint and network defenses.📖 Read
via "Threatpost".
Threat Post
Astaroth Spy Trojan Uses Facebook, YouTube Profiles to Cover Tracks
At every turn, the info-stealer uses legitimate services to get around normal email, endpoint and network defenses.
🕴 No Quick Fix for Security-Worker Shortfall 🕴
📖 Read
via "Dark Reading: ".
Security professionals see acquiring skills as the way forward, but only half of companies are training their workers, with more continuing to search for highly skilled employees.📖 Read
via "Dark Reading: ".
Dark Reading
No Quick Fix for Security-Worker Shortfall
Security professionals see acquiring skills as the way forward, but only half of companies are training their workers, with more continuing to search for highly skilled employees.
🕴 6 Questions to Ask Once You've Learned of a Breach 🕴
📖 Read
via "Dark Reading: ".
With GDPR enacted and the California Consumer Privacy Act on the near horizon, companies have to sharpen up their responses. Start by asking these six questions.📖 Read
via "Dark Reading: ".
Darkreading
6 Questions to Ask Once You’ve Learned of a Breach
With GDPR enacted and the California Consumer Privacy Act on the near horizon, companies have to sharpen up their responses. Start by asking these six questions.