October 21, 2024 at 05:20PM Threat actors exploited CVE-2024-37383, a stored XSS vulnerability in Roundcube Webmail, targeting CIS government organizations. This medium-severity flaw allows malicious JavaScript execution via crafted emails to steal credentials. System administrators are urged to update to version 1.6.9, as earlier versions remain vulnerable to attacks. ### Meeting Takeaways 1. **Threat Overview**: … Read more
October 21, 2024 at 05:58AM An XSS vulnerability in Roundcube Webmail has been exploited for code execution in an attack against a governmental organization in a CIS country, as reported by SecurityWeek. **Meeting Notes Takeaways:** 1. **Vulnerability Identified**: There is an XSS (Cross-Site Scripting) vulnerability in Roundcube Webmail. 2. **Target of Exploitation**: This vulnerability has … Read more
July 12, 2024 at 11:35AM Netgear urges customers to update their WiFi 6 routers to address security vulnerabilities. These include a stored cross-site scripting flaw affecting XR1000 Nighthawk gaming routers and an authentication bypass bug impacting CAX30 Nighthawk AX6 6-Stream cable modem routers. Netgear provides steps for firmware updates and warns users of potential consequences … Read more
February 27, 2024 at 09:57AM A security vulnerability in LiteSpeed Cache plugin for WordPress (CVE-2023-40000) allows unauthenticated users to elevate privileges. Patchstack researcher Rafie Muhammad mentioned potential information theft and privilege escalation. The issue was fixed in version 5.7.0.1, and the latest version is 6.1, released on February 5, 2024. This follows Wordfence’s discovery of … Read more
January 17, 2024 at 11:04AM Over 6,700 WordPress sites were infected with the Balada Injector malware through a vulnerable Popup Builder plug-in, exploiting a cross-site scripting vulnerability (CVE-2023-6000). This long-running campaign has compromised over 1 million WordPress sites. Security experts advise implementing integrity monitoring and conducting routine updates to mitigate these threats. Based on the … Read more
December 12, 2023 at 09:57AM Around 1,450 pfSense instances online are vulnerable to command injection and cross-site scripting flaws, potentially allowing remote code execution. SonarCloud’s researchers discovered these flaws in mid-November, affecting older versions of pfSense. Netgate released security updates in November, but as of now, the majority of instances remain vulnerable, posing a significant … Read more
November 7, 2023 at 12:36AM Veeam has released security updates to address four vulnerabilities in its ONE IT monitoring and analytics platform. Two of the flaws are rated critical and can lead to remote code execution and obtaining sensitive information. The affected versions are 11, 11a, and 12, and users are advised to install the … Read more