Your browser does not seem to support JavaScript. As a result, your viewing experience will be diminished, and you have been placed in read-only mode.

Please download a browser that supports JavaScript, or enable it if it's disabled (i.e. NoScript).

WordPress Plugin Bug Lets Subscribers Wipe Sites

Vulnerabilities

Cerberus last edited by

The flaw, found in the Hashthemes Demo Importer plugin, allows any authenticated user to exsanguinate a vulnerable site, deleting nearly all database content and uploaded media.

https://threatpost.com/wordpress-plugin-bug-wipe-sites/175826/
DISCLAIMER: Please note, that this article is not the work of (or owned by) Hostrisk.com. Attribution and copyright of this article is retained in full by the original author referred to in the Source link above
1 Reply Last reply
Reply Quote 0

Suggested Topics

Widespread, Easily Exploitable Windows RDP Bug Opens Users to Data Theft
Vulnerabilities • vulnerabilities • • Cerberus

1

0
Votes

1
Posts

1
Views

Most Windows versions are at risk of remote, unprivileged attackers abusing RDP from the inside to hijack smart cards and get unauthorized file system access.

https://threatpost.com/windows-bug-rdp-exploit-unprivileged-users/177599/
Bug in Millions of Flawed IoT Devices Lets Attackers Eavesdrop
Vulnerabilities • • Cerberus

1

0
Votes

1
Posts

7
Views

A remote attacker could exploit a critical vulnerability to eavesdrop on live audio & video or take control. The bug is in ThroughTek’s Kalay network, used in 83m devices.

https://threatpost.com/bug-iot-millions-devices-attackers-eavesdrop/168729/
Microsoft Nov. Patch Tuesday Fixes Six Zero-Days, 55 Bugs
Vulnerabilities • vulnerabilities • • Cerberus

1

0
Votes

1
Posts

5
Views

Experts urged users to prioritize patches for Microsoft Exchange and Excel, those favorite platforms so frequently targeted by cybercriminals and nation-state actors.

https://threatpost.com/microsoft-nov-patch-tuesday-fixes-six-zero-days-55-bugs/176143/

1 / 1

WordPress Plugin Bug Lets Subscribers Wipe Sites

Suggested Topics

Widespread, Easily Exploitable Windows RDP Bug Opens Users to Data Theft Vulnerabilities • vulnerabilities • • Cerberus

Bug in Millions of Flawed IoT Devices Lets Attackers Eavesdrop Vulnerabilities • • Cerberus

Microsoft Nov. Patch Tuesday Fixes Six Zero-Days, 55 Bugs Vulnerabilities • vulnerabilities • • Cerberus

Widespread, Easily Exploitable Windows RDP Bug Opens Users to Data Theft
Vulnerabilities • vulnerabilities • • Cerberus

Bug in Millions of Flawed IoT Devices Lets Attackers Eavesdrop
Vulnerabilities • • Cerberus

Microsoft Nov. Patch Tuesday Fixes Six Zero-Days, 55 Bugs
Vulnerabilities • vulnerabilities • • Cerberus