#firefox

WordPress WooCommerce plugin version 7.1.0 suffers from a remote code execution vulnerability.

Cacti version 1.2.22 suffers from a remote command execution vulnerability.

Bludit version 3-14-1 suffers from a remote shell upload vulnerability.

Plus: Microsoft Outlook and Android patch serious flaws, Chrome and Firefox get fixes, and much more.

Network protocols can be used to identify operating systems and discern other device information.

myBB forums version 1.8.26 suffers from a persistent cross site scripting vulnerability.

Dreamer CMS version 4.0.0 suffers from a remote SQL injection vulnerability.

Helmet Store Showroom version 1.0 suffers from a remote SQL injection vulnerability that allows for login bypass.

Uniview NVR301-04S2-P4 suffers from a cross site scripting vulnerability.

By Deeba Ahmed According to cybersecurity researchers, a nation-state actor, LABYRINTH CHOLLIMA, is suspected to be behind the multi-stage attack on 3CXDesktopApp. This is a post from HackRead.com Read the original post: Popular PABX platform, 3CX Desktop App suffers supply chain attack