VULNERA

VULNERA https://validator.w3.org/feed/docs/rss2.html Critical XSS Vulnerability in WordPress Plugin Threatens Over Two Million Websites PolarEdge Botnet: Over 2,000 IoT Devices Infected Globally Critical Vulnerability in Ivanti EPM: PoC for CVE-2024-13159 Released Critical Vulnerability in Everest Forms Plugin Threatens Over 100,000 WordPress Sites February 21, 2025 March 7, 2025 February 28, 2025 February 14, 2025 Google Researcher Discloses High-Risk Vulnerability in Palo Alto Networks’ PAN-OS Firewall Software Russian Sandworm APT’s Subgroup, BadPilot, Exploits Edge Bugs on a Global Scale Critical Security Flaw in Juniper Session Smart Routers Allows Authentication Bypass Ubiquiti UniFi Protect Cameras Vulnerable to Remote Hijacking: Critical Security Advisory Issued RedMike Exploits Cisco Vulnerabilities in Global Espionage Campaign Windows Disk Cleanup Tool Vulnerability Allows SYSTEM Privileges Exploitation: CVE-2025-21420 Patched U.S. CISA Catalogs SimpleHelp Vulnerability as Known Exploited Threat RansomHub Emerges as Leading Ransomware Group in 2024, Impacting Over 600 Global Entities Targeted Attacks Exploit PostgreSQL Flaw Alongside BeyondTrust Zero-Day Vulnerability Critical Remote Code Execution Vulnerability Identified in WinZip: CVE-2025-1240 Palo Alto Networks Addresses High-Severity Firewall Vulnerability Amid Active Exploits PandasAI Vulnerability Allows Full System Compromise Through Prompt Injection SonicWall Firewall Vulnerability Allows VPN Session Hijacking: Urgent Patch Required CISA Adds Apple’s Flaw to Known Exploited Vulnerabilities Catalog Fortinet Firewalls Compromised by New Zero-Day Exploit Mirai Botnet Variant ‘Aquabot’ Targets Mitel Devices, Offers DDoS-as-a-Service March 14, 2025 CISA Mandates Federal Agencies to Address Linux Kernel Vulnerability February 7, 2025 January 24, 2025 January 10, 2025 CISA Highlights Exploited Flaws in Microsoft .NET and Apache OFBiz January 3, 2025 Mirai Botnet Offshoots Instigate Global DDoS Attack Surge Urgent Call to Secure Systems Against Ongoing Attacks Exploiting Microsoft Outlook RCE Vulnerability SimpleHelp RMM Vulnerabilities Exploited to Deploy Sliver Malware Critical Vulnerabilities in Cisco’s Identity Services Engine: A Detailed Analysis Critical Remote Code Execution Vulnerability Detected in Cacti Open-Source Framework Zyxel Refuses to Patch Actively Exploited Flaws in Discontinued Routers Zero-Day Attacks Exploit 7-Zip Vulnerability to Target Ukrainian Entities Voyager PHP Package Vulnerabilities Open Path to One-Click RCE Exploits New Aquabotv3 Botnet Malware Exploits Mitel Command Injection Vulnerability BeyondTrust Discloses Zero-Day Breach Impacting 17 SaaS Customers Due to Compromised API Key Contec CMS8000 Patient Monitors Vulnerable to Cyber Threats: CISA and FDA Warning Google Patches Android Kernel Zero-Day Exploited in Attacks and Other Vulnerabilities in January 2025 Security Updates Critical Zero-Day Vulnerability in Zyxel CPE Series Devices Actively Exploited January 17, 2025 Hackers Exploit SimpleHelp RMM Software Vulnerabilities to Infiltrate Networks January 31, 2025 Fortinet Patches Zero-Day Vulnerability Allowing Super-Admin Access Apple Patches First Actively Exploited Zero-Day Vulnerability of the Year Home