The most serious of a raft of security vulnerabilities found in two Netgear ProSAFE Plus networking switches could lead to unauthenticated remote code execution (RCE) on affected devices....
Nine security updates released by enterprise software giant SAP on Tuesday (March 9) include fixes for two newly discovered and critical vulnerabilities. A critical code injection vulnerability in...
The Git Project has patched a vulnerability that could result in remote code execution. The bug – tracked as CVE-2021-21300 – is present in several versions of the open source code...
Multiple vulnerabilities including a remote code execution (RCE) flaw in Micro Focus Operations Bridge Reporter have been patched. Operations Bridge Reporter (OBR) is an enterprise-grade product based on...
A team of researchers has developed a new open-source tool that can help automate the discovery of dangerous deserialization vulnerabilities in .Net applications. Named SerialDetector, the...
Vulnerabilities in the Smarty PHP template engine could be exploited to achieve remote code execution (RCE) in third-party applications, a security researcher has warned. Two separate sandbox...
Project Zero, Google’s 0day bug-hunting team, shared technical details and proof-of-concept (PoC) exploit code for a critical remote code execution (RCE) bug affecting a Windows graphics...
VMware has patched a critical remote code execution (RCE) vulnerability in its vCenter server management software that could allow hackers to take over servers and gain access to...
The NextGen Gallery development team has addressed two severe CSRF vulnerabilities to protect sites from potential takeover attacks. NextGen Gallery, a WordPress plugin used for creating...
Executive Summary In December 2020, Unit 42 researchers observed attempts to exploit CVE-2020-25213, which is a file upload vulnerability in the WordPress File Manager plugin. Successful exploitation...
Recent Comments