5 matches found
Scammers Sent 40,000 E-Signature Phishing Emails to 6,000 Firms in Just 2 Weeks
Phishing campaign: Scammers sent over 40,000 spoofed SharePoint, DocuSign and e-sign emails to companies, hiding malicious links behind trusted redirect services...
‘Malsmoke’ Exploits Microsoft’s E-Signature Verification
Threat actors are exploiting Microsoft’s digital signature verification to steal user credentials and other sensitive information by delivering the ZLoader malware, which previously has been used to distribute Ryuk and Conti ransomware, researchers have found. Researchers at Check Point Research...
e-signature < 1.5.6.8 - Unauthenticated Arbitrary File Upload leading to RCE
The AJAX sifuploadfile allowed the authorised extensions to be provided in the request, which result in unauthenticated arbitrary file upload and lead to RCE PoC /wp-admin/admin-ajax.php?action=sifuploadfile...
e-signature < 1.5.6.8 - Unauthenticated Arbitrary File Upload leading to RCE
The AJAX sifuploadfile allowed the authorised extensions to be provided in the request, which result in unauthenticated arbitrary file upload and lead to RCE /wp-admin/admin-ajax.php?action=sifuploadfile...
WordPress WP E-Signature premium plugin <= 1.5.6.5 - Unauthenticated Remote Code Execution (RCE) vulnerability
Unauthenticated Remote Code Execution RCE vulnerability found by John Castro in WordPress WP E-Signature premium plugin versions = 1.5.6.5. Solution Update the WordPress WP E-Signature premium plugin to the latest available version at least 1.5.6.8...