Your browser does not seem to support JavaScript. As a result, your viewing experience will be diminished, and you have been placed in read-only mode.

Please download a browser that supports JavaScript, or enable it if it's disabled (i.e. NoScript).

WordPress Plugin Bug Lets Subscribers Wipe Sites

Vulnerabilities

Cerberus last edited by

The flaw, found in the Hashthemes Demo Importer plugin, allows any authenticated user to exsanguinate a vulnerable site, deleting nearly all database content and uploaded media.

https://threatpost.com/wordpress-plugin-bug-wipe-sites/175826/
DISCLAIMER: Please note, that this article is not the work of (or owned by) Hostrisk.com. Attribution and copyright of this article is retained in full by the original author referred to in the Source link above
1 Reply Last reply
Reply Quote 0

Suggested Topics

Apple Patches Critical iOS Bugs; One Under Attack
Vulnerabilities • vulnerabilities • • Cerberus

1

0
Votes

1
Posts

1
Views

Researchers found that one critical flaw in question is exploitable from the browser, allowing watering-hole attacks.

https://threatpost.com/apple-patches-ios-bugs/175803/
FamousSparrow APT Wings in to Spy on Hotels, Governments
Vulnerabilities • vulnerabilities • • Cerberus

1

0
Votes

1
Posts

7
Views

A custom “SparrowDoor” backdoor has allowed the attackers to collect data from targets around the globe.

https://threatpost.com/famoussparrow-spy-hotels-governments/174948/
Zero-Day Used to Wipe My Book Live Devices
Vulnerabilities • • Cerberus

1

0
Votes

1
Posts

7
Views

Threat actors may have been duking it out for control of the compromised devices, first using a 2018 RCE, then password-protecting a new vulnerability.

https://threatpost.com/zero-day-wipe-my-book-live/167422/

1 / 1

WordPress Plugin Bug Lets Subscribers Wipe Sites

Suggested Topics

Apple Patches Critical iOS Bugs; One Under Attack Vulnerabilities • vulnerabilities • • Cerberus

FamousSparrow APT Wings in to Spy on Hotels, Governments Vulnerabilities • vulnerabilities • • Cerberus

Zero-Day Used to Wipe My Book Live Devices Vulnerabilities • • Cerberus

Apple Patches Critical iOS Bugs; One Under Attack
Vulnerabilities • vulnerabilities • • Cerberus

FamousSparrow APT Wings in to Spy on Hotels, Governments
Vulnerabilities • vulnerabilities • • Cerberus

Zero-Day Used to Wipe My Book Live Devices
Vulnerabilities • • Cerberus