WordPress WordPress Cloaking – Show & Create Geo-Targeted Custom HTML Plugin – GeoRequest Plugin <= 0.2.0 is vulnerable to Cross Site Scripting (XSS)

Software WordPress Cloaking – Show & Create Geo-Targeted Custom HTML Plugin – GeoRequest Type Plugin Vulnerable versions = 0.2.0 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim...

WordPress WordPress Cloaking – Show & Create Geo-Targeted Custom HTML Plugin – GeoRequest plugin <= 0.1.9 - Toggle The Debug Mode via Cross-Site Request Forgery (CSRF) vulnerability

Toggle The Debug Mode via Cross-Site Request Forgery CSRF vulnerability discovered in WordPress WordPress Cloaking – Show & Create Geo-Targeted Custom HTML Plugin – GeoRequest plugin versions = 0.1.9. Solution No patched version available...

WordPress WordPress Cloaking – Show & Create Geo-Targeted Custom HTML Plugin – GeoRequest plugin <= 0.1.9 - Sensitive Information Disclosure vulnerability

Sensitive Information Disclosure vulnerability discovered in WordPress WordPress Cloaking – Show & Create Geo-Targeted Custom HTML Plugin – GeoRequest plugin versions = 0.1.9. Solution No patched version available...

Several Malware Families Using Pay-Per-Install Service to Expand Their Targets

A detailed examination of a Pay-per-install PPI malware service called PrivateLoader has revealed its crucial role in the delivery of a variety of malware such as SmokeLoader, RedLine Stealer, Vidar, Raccoon, and GCleaner since at least May 2021. Loaders are malicious programs used for loading...