CVEFeed Newsroom – Latest Cybersecurity Updates
The "Cyber Newsroom Feed" module is a live feed of the latest cyber news enriched with CVE and vulnerability data. The feed is updated every 5 minutes and includes the latest news from the cyber security industry. The feed is designed to provide users with a comprehensive overview of the latest cyber security news and trends.
-
cert.pl
Vulnerability in SOWA OPAC software
CVE ID CVE-2024-6050 Publication date 01 July 2024 Vendor SOKRATES-software Product SOWA OPAC Vulnerable versions From 4.0 before 4.9.10, from 5.0 before 6.2.12 Vulnerability type (CWE) Improper Neutr ...
-
cert.pl
Vulnerabilities in Concept Intermedia S@M CMS software
CVE ID CVE-2024-3800 Publication date 28 June 2024 Vendor Concept Intermedia Product S@M CMS Vulnerable versions All through 3.3 Vulnerability type (CWE) Improper Neutralization of Input During Web Pa ...
-
cert.pl
Vulnerabilities in AdmirorFrames Joomla! extension
CVE ID CVE-2024-5735 Publication date 28 June 2024 Vendor Nikola Vasilijevski Product AdmirorFrames Vulnerable versions All before 5.0 Vulnerability type (CWE) Exposure of Sensitive System Information ...
-
seclists.org
SEC Consult SA-20240624-0 :: Multiple Vulnerabilities allowing complete bypass in Faronics WINSelect (Standard + Enterprise)
Full Disclosure mailing list archives From: SEC Consult Vulnerability Lab via Fulldisclosure <fulldisclosure () seclists org> Date: Mon, 24 Jun 2024 08:33:23 +0000 SEC Consult Vulnerability Lab Securi ...
-
0patch.com
Micropatches For Microsoft Outlook Remote Code Execution Vulnerability (CVE-2024-21378)
In February 2024, Microsoft released a patch for CVE-2024-21378, a vulnerability in Microsoft Outlook that allowed an attacker to execute arbitrary code on user's computer when the user opened a malic ...
-
cert.pl
Vulnerability in CRUDDIY software
CVE ID CVE-2024-4748 Publication date 24 June 2024 Vendor CRUDDIY Product CRUDDIY Vulnerable versions All through 202312.1 Vulnerability type (CWE) Improper Neutralization of Special Elements used in ...
-
cert.pl
SQL Injection vulnerability in MegaBIP software
CVE ID CVE-2024-6160 Publication date 24 June 2024 Vendor Jan Syski Product MegaBIP Vulnerable versions All through 5.12.1 Vulnerability type (CWE) Improper Neutralization of Special Elements used in ...
-
New Jetpack Site
Vulnerabilità critica in PHP sfruttata in the wild
PROTO: N240619 CERT-Yoroi informa che è stata resa nota una vulnerabilità critica sul linguaggio di programmazione PHP che consente ad utenti malintenzionati di eseguire del codice da remoto arbitrari ...
-
Google Cloud
Cloaked and Covert: Uncovering UNC3886 Espionage Operations
Written by: Punsaen Boonyakarn, Shawn Chew, Logeswaran Nadarajan, Mathew Potaczek, Jakub Jozwiak, Alex Marvi Following the discovery of malware residing within ESXi hypervisors in September 2022, Mand ...
-
cert.pl
Vulnerability in 2ClickPortal software
CVE ID CVE-2024-5961 Publication date 14 June 2024 Vendor Trol InterMedia Sp. z o.o. Sp. k. Product 2ClickPortal Vulnerable versions From 7.2.31 through 7.6.4 Vulnerability type (CWE) Improper Neutral ...