Search
HomeVulnerability

Vulnerability

View Category
0-day

Critical XSS vulnerability in Zimbra exploited in the wild (CVE-2023-34192)

A critical cross site scripting (XSS) vulnerability (CVE-2023-34192) in...
Helga Labus -
Read
Data loss

Patch this 0-day right now (by hand)! – Naked Security

Popular collaboration product Zimbra has warned customers to apply a software patch urgently to close a security...
Paul Ducklin -
Read
elevation of privilege

Microsoft patches four zero-days, finally takes action against crimeware kernel drivers – Naked Security

This Tuesday, 2023-07-11, was Microsoft's Patch Tuesday for July 2023, so here's a brief reminder to do...
Paul Ducklin -
Read
Firefox

Firefox 115 is out, says farewell to older Windows and Mac users – Naked Security

Firefox's latest monthly update just came outbumping the primary version of the popular alternative browser to 115.0. OK,...
Paul Ducklin -
Read
command injection

Ghostscript bug could allow rogue documents to run system commands – Naked Security

Even if you haven't heard of the venerable Ghostscript project, you may very well have used it...
Paul Ducklin -
Read
Apple

Apple issues fix for zero-day flaws used in spy attacks against Kaspersky. Patch now! • Graham Cluley

If you have an Apple computer, watch, or smartphone you have hopefully already received a notification that...
Graham Cluley -
Read
Booklyplugin

Analyzing Another XSS Vulnerability Found in the Bookly Plugin

Estimated reading time: 3 minutesOur previous blog explored an XSS vulnerability within the Bookly plugin (WordPress...
Vinay Kumar -
Read
MOVEit

“Disable HTTP and HTTPS traffic immediately” – Naked Security

Update. Progress Software has now tested and published a patch for the "irresponsibly disclosed" vulnerability (CVE-2023-35708) described...
Paul Ducklin -
Read

Want to stay up to date with the latest news?

We would love to hear from you! Please fill in your details and we will stay in touch. It's that simple!

© 2024 Pid All rights reserved. Made with by PDS