-
CVE-2024-13132 – Emlog Pro Cross-Site Scripting Vulnerability in Subpage Handler
CVE ID : CVE-2024-13132 Published : Jan. 5, 2025, 5:15 a.m. | 1 hour, 52 minutes ago Description : A vulnerability classified as problematic was found in Emlog Pro up to 2.4.3. This vulnerability affects unknown code of the file /admin/article.php of the component Subpage Handler. The manipulation leads to cross site scripting. The attack can be…
-
CVE-2024-13133 – ZeroWdd Studentmanager Unrestricted File Upload Vulnerability
CVE ID : CVE-2024-13133 Published : Jan. 5, 2025, 5:15 a.m. | 1 hour, 52 minutes ago Description : A vulnerability, which was classified as critical, has been found in ZeroWdd studentmanager 1.0. This issue affects the function addStudent/editStudent of the file src/main/Java/com/wdd/studentmanager/controller/StudentController. java. The manipulation of the argument file leads to unrestricted upload. The attack may…
-
CVE-2024-13130 – Dahua Web Interface Remote Path Traversal Vulnerability
CVE ID : CVE-2024-13130 Published : Jan. 5, 2025, 1:15 a.m. | 5 hours, 52 minutes ago Description : A vulnerability was found in Dahua IPC-HFW1200S, IPC-HFW2300R-Z, IPC-HFW5220E-Z and IPC-HDW1200S up to 20241222. It has been rated as problematic. Affected by this issue is some unknown functionality of the file ../mtd/Config/Sha1Account1 of the component Web Interface. The…
-
Nuclei flaw lets malicious templates bypass signature verification
Nuclei flaw lets malicious templates bypass signature verification A now-fixed vulnerability in the open-source vulnerability scanner Nuclei could potentially allow attackers to bypass signature verification while sneaking malicious code into templates that execute o … Read more Published Date: Jan 04, 2025 (8 hours, 8 minutes ago) Vulnerabilities has been mentioned in this article. CVE-2024-43405 Go to Source
-
CVE-2024-10957 Exposes Over 3 Million WordPress Sites to Unauthenticated PHP Object Injection Exploits
CVE-2024-10957 Exposes Over 3 Million WordPress Sites to Unauthenticated PHP Object Injection Exploits A newly discovered vulnerability in the UpdraftPlus Backup & Migration Plugin, used by over 3 million WordPress websites globally, has raised significant security concerns. Identified as CVE-2024-1095 … Read more Published Date: Jan 05, 2025 (5 hours, 37 minutes ago) Vulnerabilities has been mentioned…
-
Nuclei flaw bypasses template signature checks to execute commands
Nuclei flaw bypasses template signature checks to execute commands A now-fixed vulnerability in the open-source vulnerability scanner Nuclei could potentially allow attackers to bypass signature verification while sneaking malicious code into templates that execute o … Read more Published Date: Jan 04, 2025 (8 hours, 8 minutes ago) Vulnerabilities has been mentioned in this article. CVE-2024-43405 Go to…
-
Why Companies Need to Extend Penetration Testing to OT Environments
As companies continue to integrate their operational technology (OT) and IT environments, they’re coming to grips with the fact that this move opens them up to new avenues for cyber threats. Go to Source
-
Trustwave’s 2025 Cybersecurity Predictions: Zero Trust and AI Regulation
As 2024 comes to a close, we went around the room and asked some of Trustwave’s top executives what cybersecurity issues and technology they saw playing a prominent role in 2025. Go to Source
-
From Retail Rampages to 2FA Fails: Trustwave’s Wild Ride Through the 2024 Cybersecurity Circus
As always in cybersecurity, hardly a dull day went by in 2024. Go to Source
-
A Year of Recognition: Trustwave’s 2024 Industry Analyst Highlights
As we reflect on the past year, we’re incredibly proud to share that Trustwave has been recognized by some of the most respected industry analyst firms. Go to Source