Topic: vulnerability history
-
Critical Vulnerability in All In One SEO Plugin Impacts 3M+ WordPress Sites
A critical vulnerability in the All in One SEO plugin exposed its global AI access token to any logged-in user with Contributor-level permissions, risking unauthorized AI usage and service credit depletion. The flaw, stemming from a missing permission check on an API endpoint, is part of a trend,...
Read More » -
Ransomware Gangs Now Exploiting Critical Linux Flaw
A critical Linux kernel vulnerability (CVE-2024-1086) is now being actively exploited by ransomware gangs, allowing attackers to gain complete control over affected systems. The flaw enables local privilege escalation to root access, permitting attackers to disable security, deploy malware, and s...
Read More »