CVE-2024-1071 is a critical vulnerability in Ultimate Member WordPress plugin enables SQL injection, endangering over 200k installations' data security. Read More
Uncover critical security flaws in ConnectWise ScreenConnect (CVE-2024-1709 & CVE-2024-1708) posing remote code execution risks. Actively exploited in the wild. Read More
The Apache OfBiz ERP system is found to have a zero day flaw (CVE-2023-51467) that may lead to unauthorized access.… Read More
The latest vulnerability CVE-2023-50164 disclosed on Apache Struts affects the Struts 2 framework's file upload logic, allowing unauthorized path traversal. Read More
The Zimbra XSS vulnerability allows an attacker to impact the confidentiality and integrity of the user's data. Understand how to… Read More
Rapid Reset Attack vulnerability enables remote attackers to spike CPU usage, potentially causing DoS. Understand how to find & fix… Read More
The API vulnerabilities in Ivanti CVE-2023-35078, and CVE-2023-35082, are rated 10 on CVSS. Explore their characteristics and mitigation measures. Read More
Discover the recent severe vulnerabilities in Adobe ColdFusion - CVE-2023-29298, CVE-2023-29300, and CVE-2023-29301 Read More
Protect your business from MOVEit Transfer SQL Injection Vulnerabilities with Indusface Threat Coverage. Read More
What is the CVE-2021-41773 vulnerability? Apache Software has released the fix for zero-day vulnerability in the Apache HTTP server affecting… Read More