SecBoard
Zurück zur Übersicht
Red-TeamerIT/SaaS

Avada Builder WordPress plugin flaws allow site credential theft

BleepingComputer·
Originalartikel lesen bei BleepingComputer

Two vulnerabilities in the Avada Builder plugin for WordPress, with an estimated one million active installations, allow hackers to read arbitrary files and extract sensitive information from the database. [...]

MITRE ATT&CK Kill Chain (1 Techniken)

Resource Development
T1588.006

Vulnerabilities

Themen
Security
Vollständigen Artikel lesen bei BleepingComputer

Verwandte Artikel

Popular node-ipc npm package compromised to steal credentials

BleepingComputer·vor 29 Minuten

Turla Turns Kazuar Backdoor Into Modular P2P Botnet for Persistent Access

The Hacker News·vor 29 Minuten

Microsoft backpedals: Edge to stop loading passwords into memory

BleepingComputer·vor etwa 3 Stunden

Inside the REMUS Infostealer: Session Theft, MaaS, and Rapid Evolution

BleepingComputer·vor etwa 4 Stunden

Four OpenClaw Flaws Enable Data Theft, Privilege Escalation, and Persistence

The Hacker News·vor etwa 4 Stunden