Linux kernel vulnerability CVE-2019-19059 Security Advisory Security Advisory Description Multiple memory leaks in the iwl_pcie_ctxt_info_gen3_init() function in drivers/net/wireless/intel/iwlwifi ...
More info:
https://support.f5.com/csp/article/K06554372?utm_source=f5support&utm_medium=RSS
More info:
http://kb.juniper.net/InfoCenter/index?page=content&id=JSA11021&actp=RSS
Project: Drupal coreDate: 2020-May-20Security risk: Moderately critical 10∕25 AC:Complex/A:Admin/CI:Some/II:Some/E:Theoretical/TD:UncommonVulnerability: Cross Site ScriptingDescription: The jQuery project released version 3.5.0, and as part of that, disclosed two security vulnerabilities that affect all prior versions. As mentioned in the jQuery blog, both are [...] security issues in jQuery’s DOM manipulation methods, as in .html(), .append(), and the others. Security advisories
More info:
https://www.drupal.org/sa-core-2020-002
Project: Drupal coreDate: 2020-May-20Security risk: Moderately critical 10∕25 AC:Basic/A:None/CI:None/II:None/E:Theoretical/TD:AllVulnerability: Open RedirectDescription: Drupal 7 has an Open Redirect vulnerability. For example, a user could be tricked into visiting a specially crafted link which would redirect them to an arbitrary external URL.The vulnerability is caused by insufficient validation of the destination query parameter in the drupal_goto() function.Other versions of Drupal
More info:
https://www.drupal.org/sa-core-2020-003
When the context is about security, we know how crucial it is to regularly update WordPress installations. The average WordPress website is attacked by malware 44 times a day. From weak plug-ins to insecure themes, anything could give a chance to a malware to infect your CMS. Keeping in mind the plight of the webmasters, […]
More info:
https://www.getastra.com/blog/cms/wordpress-security/wordpress-plugin-theme-updates-automatic/
On May 6, our Threat Intelligence team was alerted to a zero-day vulnerability present in Elementor Pro, a WordPress plugin installed on approximately 1 million sites. That vulnerability was being exploited in conjunction with another vulnerability found in Ultimate Addons for Elementor, a WordPress plugin installed on approximately 110,000 sites. We immediately released a firewall […]
More info:
https://www.wordfence.com/blog/2020/05/the-elementor-attacks-how-creative-hackers-combined-vulnerabilities-to-take-over-wordpress-sites/
Searching through the activity logs of multiple websites from one central place should be an easy thing to do. After all, you install an activity log plugin on all the child sites you manage via MainWP so you can know exactly what is happening when you need to. That is why we are really excited […]
More info:
https://www.wpsecurityauditlog.com/releases/al4mwp-1-5/
Today’s announcement is very different from all the previous ones. We are renaming WP Security Audit Log to WP Activity Log. The plugin’s name change reflects the vision we have for the plugin, as explained in this post. A bit of history When we started WP White Security and released the first version of WP […]
More info:
https://wpactivitylog.com/wp-security-audit-log-renamed-wp-activity-log/
