Progress Software released a security bulletin to address a vulnerability in MOVEit Transfer. A cyber threat actor could exploit this vulnerability to take control of an affected system. Users and…
High Vulnerabilities PrimaryVendor -- Product Description Published CVSS Score Source & Patch Info 3uu--Shariff Wrapper The Shariff Wrapper plugin for WordPress is vulnerable to Local File Inclusion in versions up…
Today, CISA released Barriers to Single Sign-On (SSO) Adoption for Small and Medium-Sized Businesses: Identifying Challenges and Opportunities, a detailed report exploring challenges to SSO adoption by small and medium-sized…
High Vulnerabilities PrimaryVendor -- Product Description Published CVSS Score Source & Patch Info actpro -- extra_product_options_for_woocommerce Missing Authorization vulnerability in actpro Extra Product Options for WooCommerce.This issue affects Extra Product…
Microsoft has released security updates to address vulnerabilities in multiple products. A cyber threat actor could exploit some of these vulnerabilities to take control of an affected system. Users and…
High Vulnerabilities PrimaryVendor -- Product Description Published CVSS Score Source & Patch Info 8theme--XStore Core Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in 8theme XStore…
High Vulnerabilities PrimaryVendor -- Product Description Published CVSS Score Source & Patch Info ASKEY--5G NR Small Cell ASKEY 5G NR Small Cell fails to properly filter user input for…
High Vulnerabilities PrimaryVendor -- Product Description Published CVSS Score Source & Patch Info ASUS--ExpertWiFi ASUS routers supporting custom OpenVPN profiles are vulnerable to a code execution vulnerability. An authenticated and…
Cisco released a bundled publication for security advisories that address vulnerabilities in Cisco Adaptive Security Appliance (ASA), Firepower Management Center (FMC), and Firepower Threat Defense (FTD) software. A cyber threat…
Rockwell Automation has released guidance encouraging users to remove connectivity on all Industrial Control Systems (ICS) devices connected to the public-facing internet to reduce exposure to unauthorized or malicious cyber…
