The popular Jetpack WordPress plugin was updated this week in order to patch a critical stored cross-site scripting vulnerability.
Browsing Category: Vulnerabilities
Apple pushed out its latest operating system, El Capitan, yesterday, and while it boasts many security fixes, the update fails to address the outstanding vulnerability in Gatekeeper that came to light this week.
Researchers at Zimperium have reported two new Stagefright vulnerabilities affecting one billion Android devices.
Unsupported versions of Honeywell distributed control system software are vulnerable to publicly available remote exploits.
Researcher Patrick Wardle will demonstrate a Mac OS X Gatekeeper bypass that exploits a weakness in the Apple OS that allows signed apps to execute malicious code.
SAP patched a dozen holes in its in-memory management system HANA that could have led to SQL injections, cross-site scripting (XSS) errors, and memory corruption vulnerabilities.
Two privilege escalation vulnerabilities in the last TrueCrypt build were discovered by James Forshaw of Google Project Zero, and patched in VeraCrypt.
Hilton Hotels and Resorts is reportedly looking into claims that some of its point-of-sale devices were compromised, some potentially as far back as November 2014.
Developers at Mozilla pushed out Firefox 41 this week and brought some much needed relief to AdBlockPlus users by finally fixing a 14-year old bug in the browser.
DHS CERT published an alert prompted by a paper delivered at USENIX regarding the security of browser cookies.