CYBER Threat Intelligence Reports
LATEST CTIs
XSS Vulnerability in WordPress Core (CVE-2024-4439)
A severe stored Cross-Site Scripting (XSS) vulnerability, CVE-2024-4439, has been discovered in WordPress versions up to 6.5.2, particularly affecting the Avatar block. This vulnerability allows…
Read more >
Widespread Attack on WordPress Sites via LiteSpeed Cache Plugin Exploit (CVE-2023-40000)
Hackers are exploiting a critical vulnerability, CVE-2023-40000, in the LiteSpeed Cache Plugin for WordPress, impacting over 5 million websites. This flaw allows unauthorized administrative account…
Read more >
CVE-2024-2848 in Responsive WordPress Theme
A critical vulnerability, CVE-2024-2848, has been detected in the Responsive WordPress theme, affecting over 30,000 sites. This flaw allows attackers to inject malicious HTML into…
Read more >
Security Flaws Uncovered in node-mysql2 Database Library
Security flaws in the node-mysql2 library pose severe risks to millions of applications. Key vulnerabilities, CVE-2024-21508 and CVE-2024-21511, allow remote code execution, potentially giving attackers…
Read more >
Forminator Plugin Flaw Impacts Over 300K WordPress Sites
A severe vulnerability has been discovered in the Forminator plugin, affecting over 500,000 WordPress sites. Identified as CVE-2024-28890, this critical flaw allows unauthenticated attackers to…
Read more >
Security Vulnerability in WordPress Plugin CVE-2024-2876
"Email Subscribers by Icegram Express" plugin, affecting over 90,000 WordPress sites. This flaw allows attackers to execute unauthorized SQL queries, potentially exposing sensitive data. Users…
Read more >
