21 febrero, 2020

Active Attack on Recently Patched Duplicator Plugin Vulnerability Affects Over 1 Million Sites

https://www.wordfence.com/blog/2020/02/active-attack-on-recently-patched-duplicator-plugin-vulnerability-affects-over-1-million-sites/ Description: Unauthenticated Arbitrary File DownloadAffected Plugin: DuplicatorAffected Versions: <= 1.3.26CVSS Score: 7.5 (High)CVSS Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:NPatched Version: 1.3.28 A critical security update was recently issued for Duplicator, one of the most popular plugins in the WordPress ecosystem. Over a million WordPress More info: https://www.wordfence.com/blog/2020/02/active-attack-on-recently-patched-duplicator-plugin-vulnerability-affects-over-1-million-sites/

21 febrero, 2020

L	M	X	J	V	S	D
					1	2
3	4	5	6	7	8	9
10	11	12	13	14	15	16
17	18	19	20	21	22	23
24	25	26	27	28	29

Day: 21 febrero, 2020

Active Attack on Recently Patched Duplicator Plugin Vulnerability Affects Over 1 Million Sites

Duplicator < 1.3.28 – Unauthenticated Arbitrary File Download

Adobe Media Encoder CVE-2020-3764 Unspecified Arbitrary Code Execution Vulnerability

Cisco Unified Contact Center Express CVE-2019-1888 Remote Privilege Escalation Vulnerability

Cisco Identity Services Engine CVE-2020-3156 Cross Site Scripting Vulnerability

Cisco Smart Software Manager On-Prem Default Credentials Unauthorized Access Vulnerability

Fortinet FortiOS CVE-2019-6696 URL Redirection Vulnerability

Adobe After Effects CVE-2020-3765 Arbitrary Code Execution Vulnerability

Cisco Email Security Appliance CVE-2019-1947 Remote Denial of Service Vulnerability

CoTURN Denial of Service and Heap Based Buffer Overflow Vulnerabilities