Google Drive integration errors created SSRF flaws in multiple applications Post Views: 466 Reading Time: 1 Minute Bug hunter earned $17k bounty for HelloSign bug. Implementation flaws in Google Drive integrations created server-side request forgery (SSRF)...
Cisco patches critical vulnerabilities in SMB routers, exploitation available Post Views: 465 Reading Time: 1 Minute Cisco has released patches for multiple vulnerabilities in the Small Business RV Series router platform that could allow remote attackers to gain...
ESET antivirus bug let attackers gain Windows SYSTEM privileges Post Views: 664 Reading Time: 1 Minute The flaw (CVE-2021-37852) was reported by Michael DePlante of Trend Micro’s Zero Day Initiative, and it enables attackers to escalate privileges to NT...
Cloudflare launches a paid public bug bounty program Post Views: 377 Reading Time: 1 Minute Cloudflare, an American company focused on web infrastructure and website security, has announced the launch of a new public bug bounty program. “Today we are...
600K WordPress sites impacted by critical plugin RCE vulnerability Post Views: 426 Reading Time: 1 Minute Essential Addons for Elementor, a popular WordPress plugin used in over a million sites, has been found to have a critical remote code execution (RCE)...
Windows vulnerability with new public exploits lets you become admin Post Views: 3,701 Reading Time: 1 Minute A security researcher has publicly disclosed an exploit for a Windows local privilege elevation vulnerability that allows anyone to gain admin privileges in...
