WordPress Releases Update 6.4.2 to Address Critical Remote Attack Vulnerability

By Newsroom

WordPress has released version 6.4.2 with a patch for a critical security flaw that could be exploited by threat actors by combining it with another bug to execute arbitrary PHP code on vulnerable sites. "A remote code execution vulnerability that is not directly exploitable in core; however, the security team feels that there is a potential for high severity when combined with some plugins,

Related tags
December 8^th 2023 at 09:23

The Hacker News
Cybersecurity Agencies Warn Against IDOR Bugs Exploited for Data Breaches
July 28^th 2023 at 05:07

Cybersecurity Agencies Warn Against IDOR Bugs Exploited for Data Breaches

By THN

Cybersecurity agencies in Australia and the U.S. have published a joint cybersecurity advisory warning against security flaws in web applications that could be exploited by malicious actors to orchestrate data breach incidents and steal confidential data. This includes a specific class of bugs called Insecure Direct Object Reference (IDOR), a type of access control flaw that occurs when an

Related tags
July 28^th 2023 at 05:07