On December 22, 2020, our Threat Intelligence team responsibly disclosed a vulnerability in Facebook for WordPress, formerly known as Official Facebook Pixel, a WordPress plugin installed on over 500,000 sites. This flaw made it possible for unauthenticated attackers with access to a site’s secret salts and keys to achieve remote code execution through a deserialization […]
More info:
https://www.wordfence.com/blog/2021/03/two-vulnerabilities-patched-in-facebook-for-wordpress-plugin/
As much as the web has grown, surprisingly not a lot has changed in how websites get hacked. The most important thing you can do in keeping the web – and your own sites and visitors – safe is to understand these unchanging truths and hold them close to heart. Consider the Scale of Hacked […]
More info:
http://feedproxy.google.com/~r/sucuri/blog/~3/Bq1525bttf4/how-do-websites-get-hacked.html
Multiple Java vulnerabilities CVE-2020-2583, CVE-2020-2590, CVE-2020-2593 Security Advisory Security Advisory Description CVE-2020-2583 Vulnerability in the Java SE, Java SE Embedded product of ...
More info:
https://support.f5.com/csp/article/K62103028?utm_source=f5support&utm_medium=RSS
Multiple Java vulnerabilities CVE-2020-2601, CVE-2020-2604, CVE-2020-2654 Security Advisory Security Advisory Description CVE-2020-2601 Vulnerability in the Java SE, Java SE Embedded product of ...
More info:
https://support.f5.com/csp/article/K95453343?utm_source=f5support&utm_medium=RSS
Intel Ethernet Controller vulnerabilities CVE-2020-24497, CVE-2020-24498, CVE-2020-24500, CVE-2020-24501, and CVE-2020-24505 Security Advisory Security Advisory Description CVE-2020-24497
More info:
https://support.f5.com/csp/article/K85738358?utm_source=f5support&utm_medium=RSS
Intel Ethernet Controller vulnerabilities CVE-2020-24497, CVE-2020-24498, CVE-2020-24500, CVE-2020-24501, and CVE-2020-24505 Security Advisory Security Advisory Description CVE-2020-24497
More info:
https://support.f5.com/csp/article/K85738358?utm_source=f5support&utm_medium=RSS
Intel Ethernet controller vulnerabilities CVE-2020-24492, CVE-2020-24493, CVE-2020-24494, CVE-2020-24495, CVE-2020-24496 Security Advisory Security Advisory Description CVE-2020-24492 Insufficient ...
More info:
https://support.f5.com/csp/article/K91610944?utm_source=f5support&utm_medium=RSS
Intel Ethernet controller vulnerabilities CVE-2020-24492, CVE-2020-24493, CVE-2020-24494, CVE-2020-24495, CVE-2020-24496 Security Advisory Security Advisory Description CVE-2020-24492 Insufficient ...
More info:
https://support.f5.com/csp/article/K91610944?utm_source=f5support&utm_medium=RSS
On March 23, 2021, the Wordfence Threat Intelligence Team discovered two recently patched vulnerabilities being actively exploited in Thrive Theme’s “Legacy” Themes and Thrive Theme plugins that were chained together to allow unauthenticated attackers to upload arbitrary files on vulnerable WordPress sites. We estimate that more than 100,000 WordPress sites are using Thrive Theme products […]
More info:
https://www.wordfence.com/blog/2021/03/recently-patched-vulnerability-in-thrive-themes-actively-exploited-in-the-wild/
On March 23, 2021, the Wordfence Threat Intelligence Team discovered two recently patched vulnerabilities being actively exploited in Thrive Theme’s “Legacy” Themes and Thrive Theme plugins that were chained together to allow unauthenticated attackers to upload arbitrary files on vulnerable WordPress sites. We estimate that more than 100,000 WordPress sites are using Thrive Theme products […]
More info:
https://www.wordfence.com/blog/2021/03/recently-patched-vulnerability-in-thrive-themes-actively-exploited-in-the-wild/
