Security Bulletins
- Sodinokibi Ransomware
- Publicly Accessible .env File Information Disclosure
- Simple Fields 1.4.11—Stored XSS
- Windows Server PAExec Tool Remote Shell
- PS PHP Web Shell
- Apache Solr <8.12 Remote Code Execution
- Web Server Weathermap Cacti Plugin set_node_properties Remote Code Execution
- Apache Solr 5.0.0—5.5.5 and 6.0.0—6.6.5
- Powershell Nishang Framework
- Windows Server RemCom Tool Remote Shell
- PowerShell Empire Persistence and Recon Modules
- Windows PowerShell WMIC Lateral Movement RCE
- Windows (Telnet) tlntsess.exe Remote Access Man-in-the-Middle Attack
- Generic Successful /etc/passwd Data Exfiltration
- WordPress Plugin Crelly Slider <= 1.3.4 Authenticated Arbitrary File Upload
- WordPress Baggage-Freight upload-package.php Arbitrary File Upload
- Adobe Coldfusion BlazeDS Java Object Remote Code Execution
- WordPress Plugin Email Subscribers & Newsletters 3.4.7
- WordPress Ajax Form Pro Arbitrary File Upload
- Web Server Adminer LOAD DATA Data exfiltration
- WordPress WooCommerce Checkout Manager plugin <=4.2.6 Arbitrary File Upload
- WordPress SupportCandy Plugin <=2.0 Arbitrary File Upload
- WordPress Theme DesignFolio Plus 1.2 upload-file.php Arbitrary File Upload
- WordPress SiteGround Optimizer, switch_PHP Remote Code Execution
- WordPress WP Live Chat Support Pro wplc_api_remote_upload_handler Arbitrary File Upload
- WordPress Marketplace additional-preview-images.php Arbitrary File Upload
- LockerGoga Ransomware
- CMS WordPress rtMedia Plugin rtUploadAttachment.php Arbitrary Upload
- njRAT Windows Remote Access Tool
- Endpoint Antivirus PostCompromise Tool Installation
- Sodinokibi Ransomware
- Publicly Accessible .env File Information Disclosure
- Simple Fields 1.4.11—Stored XSS
- Windows Server PAExec Tool Remote Shell
- PS PHP Web Shell
- Apache Solr <8.12 Remote Code Execution
- Web Server Weathermap Cacti Plugin set_node_properties Remote Code Execution
- Apache Solr 5.0.0—5.5.5 and 6.0.0—6.6.5
- Powershell Nishang Framework
- Windows Server RemCom Tool Remote Shell
- PowerShell Empire Persistence and Recon Modules
- Windows PowerShell WMIC Lateral Movement RCE
- Windows (Telnet) tlntsess.exe Remote Access Man-in-the-Middle Attack
- Generic Successful /etc/passwd Data Exfiltration
- WordPress Plugin Crelly Slider <= 1.3.4 Authenticated Arbitrary File Upload
- WordPress Baggage-Freight upload-package.php Arbitrary File Upload
- Adobe Coldfusion BlazeDS Java Object Remote Code Execution
- WordPress Plugin Email Subscribers & Newsletters 3.4.7
- WordPress Ajax Form Pro Arbitrary File Upload
- Web Server Adminer LOAD DATA Data exfiltration
- WordPress WooCommerce Checkout Manager plugin <=4.2.6 Arbitrary File Upload
- WordPress SupportCandy Plugin <=2.0 Arbitrary File Upload
- WordPress Theme DesignFolio Plus 1.2 upload-file.php Arbitrary File Upload
- WordPress SiteGround Optimizer, switch_PHP Remote Code Execution
- WordPress WP Live Chat Support Pro wplc_api_remote_upload_handler Arbitrary File Upload
- WordPress Marketplace additional-preview-images.php Arbitrary File Upload
- LockerGoga Ransomware
- CMS WordPress rtMedia Plugin rtUploadAttachment.php Arbitrary Upload
- njRAT Windows Remote Access Tool
- Endpoint Antivirus PostCompromise Tool Installation