-
The New Frontier of Phishing: AI-Generated Scams Targeting Executives
Cybercriminals are leveraging artificial intelligence to launch phishing attacks that are more sophisticated, convincing, and dangerous than ever before. These AI-generated scams go beyond traditional techniques, creating highly personalized messages that mimic the tone, style, and context of real-world communications. Executives, in particular, are prime targets for these attacks, as they hold the keys to…
-
UnitedHealth updates number of data breach victims to 190 million
The 2024 ransomware attack on Change Healthcare exposed the data of about 190 million people, according to an update from parent company UnitedHealth Group. Go to Source
-
CVE-2025-0411 – 7-Zip Mark-of-the-Web Bypass RCE Vulnerability
CVE ID : CVE-2025-0411 Published : Jan. 25, 2025, 5:15 a.m. | 1 hour, 13 minutes ago Description : 7-Zip Mark-of-the-Web Bypass Vulnerability. This vulnerability allows remote attackers to bypass the Mark-of-the-Web protection mechanism on affected installations of 7-Zip. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or…
-
CVE-2024-13709 – WordPress Linear CSRF Weakness
CVE ID : CVE-2024-13709 Published : Jan. 25, 2025, 4:15 a.m. | 2 hours, 13 minutes ago Description : The Linear plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 2.8.1. This is due to missing or incorrect nonce validation on the ‘linear-debug’. This makes it possible for unauthenticated attackers…
-
CVE-2025-0357 – WordPress WPBookit Plugin Arbitrary File Upload Vulnerability
CVE ID : CVE-2025-0357 Published : Jan. 25, 2025, 2:15 a.m. | 4 hours, 3 minutes ago Description : The WPBookit plugin for WordPress is vulnerable to arbitrary file uploads due to insufficient file type validation in the ‘WPB_Profile_controller::handle_image_upload’ function in versions up to, and including, 1.6.9. This makes it possible for unauthenticated attackers to upload arbitrary…
-
CVE-2024-52807 – Apache FHIR IG Publisher XML External Entity Injection Vulnerability
CVE ID : CVE-2024-52807 Published : Jan. 24, 2025, 7:15 p.m. | 11 hours, 3 minutes ago Description : The HL7 FHIR IG publisher is a tool to take a set of inputs and create a standard FHIR IG. Prior to version 1.7.4, XSLT transforms performed by various components are vulnerable to XML external entity injections. A…
-
CVE-2025-24728 – Yannick Lefebvre Bug Library SQL Injection Vulnerability
CVE ID : CVE-2025-24728 Published : Jan. 24, 2025, 6:15 p.m. | 12 hours, 2 minutes ago Description : Improper Neutralization of Special Elements used in an SQL Command (‘SQL Injection’) vulnerability in Yannick Lefebvre Bug Library allows Blind SQL Injection. This issue affects Bug Library: from n/a through 2.1.4. Severity: 8.5 | HIGH Visit the link…
-
CVE-2025-24672 – CodePeople Form Builder CP SQL Injection Vulnerability
CVE ID : CVE-2025-24672 Published : Jan. 24, 2025, 6:15 p.m. | 12 hours, 2 minutes ago Description : Improper Neutralization of Special Elements used in an SQL Command (‘SQL Injection’) vulnerability in CodePeople Form Builder CP allows SQL Injection. This issue affects Form Builder CP: from n/a through 1.2.41. Severity: 8.5 | HIGH Visit the link…
-
CVE-2025-24669 – SERPed SQL Injection Vulnerability
CVE ID : CVE-2025-24669 Published : Jan. 24, 2025, 6:15 p.m. | 12 hours, 2 minutes ago Description : Improper Neutralization of Special Elements used in an SQL Command (‘SQL Injection’) vulnerability in SERPed SERPed.net allows SQL Injection. This issue affects SERPed.net: from n/a through 4.4. Severity: 8.5 | HIGH Visit the link for more details, such…
-
CVE-2025-24650 – Themefic Tourfic Unrestricted Upload of File with Dangerous Type Vulnerability
CVE ID : CVE-2025-24650 Published : Jan. 24, 2025, 6:15 p.m. | 12 hours, 2 minutes ago Description : Unrestricted Upload of File with Dangerous Type vulnerability in Themefic Tourfic allows Upload a Web Shell to a Web Server. This issue affects Tourfic: from n/a through 2.15.3. Severity: 9.1 | CRITICAL Visit the link for more details,…