Lucene search
K

78 matches found

RedhatCVE
RedhatCVE
added 2026/03/26 5:1 p.m.3 views

CVE-2026-22516

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in AncoraThemes Wizor's wizors-investments allows PHP Local File Inclusion.This issue affects Wizor's: from n/a through = 2.12...

8.1CVSS5.8AI score0.00415EPSS
Exploits0References1
EUVD
EUVD
added 2026/03/25 6:31 p.m.7 views

EUVD-2026-15532

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in AncoraThemes Wizor's wizors-investments allows PHP Local File Inclusion.This issue affects Wizor's: from n/a through = 2.12...

5.8AI score0.00415EPSS
Exploits0References2
NVD
NVD
added 2026/03/25 5:16 p.m.6 views

CVE-2026-22516

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in AncoraThemes Wizor's wizors-investments allows PHP Local File Inclusion.This issue affects Wizor's: from n/a through = 2.12...

8.1CVSS0.00415EPSS
Exploits0References1
CVE
CVE
added 2026/03/25 4:14 p.m.9 views

CVE-2026-22516

CVE-2026-22516 is a Local File Inclusion vulnerability affecting WordPress plugin/theme Wizor's Wizor's Investments, specifically versions up to and including 2.12. The issue is described as an improper control of filename for Include/Require statements in PHP, enabling PHP Local File Inclusion (...

8.1CVSS5.8AI score0.00415EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2026/03/25 12:0 a.m.4 views

PT-2026-27837

Name of the Vulnerable Software and Affected Versions AncoraThemes Wizor's wizors-investments versions through 2.12 Description The software contains a flaw related to improper control of filename handling for include/require statements, specifically a PHP Remote File Inclusion issue. This allows...

8.1CVSS5.8AI score0.00415EPSS
Exploits0References3
Wired Threat Level
Wired Threat Level
added 2025/07/03 8:50 p.m.5 views

The Person in Charge of Testing Tech for US Spies Has Resigned

IARPA director Rick Muller is departing after just over a year at the R&D unit that invests in emerging technologies of potential interest to agencies like the NSA and the CIA, WIRED has learned...

7.2AI score
Exploits0
Packet Storm News
Packet Storm News
added 2025/06/22 12:0 a.m.8 views

Organizational Adaptation to Generative AI in Cybersecurity: a Systematic Review

Cybersecurity organizations are adapting to GenAI integration through modified frameworks and hybrid operational processes, with success influenced by existing security maturity, regulatory requirements, and investments in human capital and infrastructure. This qualitative research employs...

6.9AI score
Exploits0
Packet Storm News
Packet Storm News
added 2025/06/21 12:0 a.m.5 views

An Advanced Reliability Reserve Incentivizes Flexibility Investments While Safeguarding the Electricity Market

To ensure security of supply in the power sector, many countries are already using or discussing the introduction of capacity mechanisms. Two main types of such mechanisms include capacity markets and capacity reserves. Simultaneously, the expansion of variable renewable energy sources increases...

6.8AI score
Exploits0
The Hacker News
The Hacker News
added 2025/05/19 11:0 a.m.26 views

Why CTEM is the Winning Bet for CISOs in 2025

Continuous Threat Exposure Management CTEM has moved from concept to cornerstone, solidifying its role as a strategic enabler for CISOs. No longer a theoretical framework, CTEM now anchors today's cybersecurity programs by continuously aligning security efforts with real-world risk. At the heart ...

7.2AI score
Exploits0
OSV
OSV
added 2025/05/19 7:48 a.m.2 views

MAL-2025-4005 Malicious code in ing-lib-investments (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 503bea11cdda0462a5a3704bfa53fb30372f852aedf852305e6826460f1eb140 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

7AI score
Exploits0References3
Malwarebytes
Malwarebytes
added 2024/12/04 4:9 p.m.15 views

Crypto’s rising value likely to bring new wave of scams

With the value of cryptocurrencies going to the roof, you can expect several attempts to get defrauded if you even show the slightest interest in the topic or not. Since most cybercriminals lack creativity and are notoriously lazy, we expect to see only slight variations of old tricks. So, we...

7.2AI score
Exploits0
Wiz blog
Wiz blog
added 2024/11/13 3:0 p.m.3 views

Accelerating our commitment to Europe with even more investments

Wiz increases investments in products and presence for European customers by enabling support for AWS European Sovereign Cloud ESC and new regional headquarters...

7.3AI score
Exploits0
The Hacker News
The Hacker News
added 2024/11/11 11:30 a.m.4 views

The ROI of Security Investments: How Cybersecurity Leaders Prove It

Cyber threats are intensifying, and cybersecurity has become critical to business operations. As security budgets grow, CEOs and boardrooms are demanding concrete evidence that cybersecurity initiatives deliver value beyond regulation compliance. Just like you wouldn't buy a car without knowing i...

7.1AI score
Exploits0
The Hacker News
The Hacker News
added 2024/11/07 4:39 a.m.15 views

Canada Orders TikTok to Shut Down Canadian Operations Over Security Concerns

The Canadian government on Wednesday ordered ByteDance-owned TikTok to dissolve its operations in the country, citing national security risks, but stopped short of instituting a ban on the popular video-sharing platform. "The decision was based on the information and evidence collected over the...

6.9AI score
Exploits0
The Hacker News
The Hacker News
added 2024/11/06 11:30 a.m.12 views

9 Steps to Get CTEM on Your 2025 Budgetary Radar

Budget season is upon us, and everyone in your organization is vying for their slice of the pie. Every year, every department has a pet project that they present as absolutely essential to profitability, business continuity, and quite possibly the future of humanity itself. And no doubt that some...

7.2AI score
Exploits0
Malwarebytes
Malwarebytes
added 2024/09/25 1:4 p.m.4 views

Romance scams costlier than ever: 10 percent of victims lose $10,000 or more

Romance scams continue to plague users, but their costs have risen to staggering heights, according to a Malwarebytes survey carried out last month via our weekly newsletter. More than 66 percent of 850 respondents have been targeted by a romance scam, and those that were ensnared paid a hefty...

6.9AI score
Exploits0
HackRead
HackRead
added 2024/04/19 11:29 a.m.13 views

Unlocking the Power of Portfolio Analysis – A Comprehensive Guide

By Owais Sultan In banking and business, you need to know how your investments are doing and what they are made… This is a post from HackRead.com Read the original post: Unlocking the Power of Portfolio Analysis - A Comprehensive Guide...

7.2AI score
Exploits0
The Hacker News
The Hacker News
added 2024/04/16 11:10 a.m.17 views

Identity in the Shadows: Shedding Light on Cybersecurity's Unseen Threats

In today's rapidly evolving digital landscape, organizations face an increasingly complex array of cybersecurity threats. The proliferation of cloud services and remote work arrangements has heightened the vulnerability of digital identities to exploitation, making it imperative for businesses to...

7.9AI score
Exploits0
The Hacker News
The Hacker News
added 2024/04/03 3:32 p.m.44 views

U.S. Cyber Safety Board Slams Microsoft Over Breach by China-Based Hackers

The U.S. Cyber Safety Review Board CSRB has criticized Microsoft for a series of security lapses that led to the breach of nearly two dozen companies across Europe and the U.S. by a China-based nation-state group called Storm-0558 last year. The findings, released by the Department of Homeland...

7.2AI score
Exploits0
The Hacker News
The Hacker News
added 2024/03/09 4:1 a.m.48 views

Microsoft Confirms Russian Hackers Stole Source Code, Some Customer Secrets

Microsoft on Friday revealed that the Kremlin-backed threat actor known as Midnight Blizzard aka APT29 or Cozy Bear managed to gain access to some of its source code repositories and internal systems following a hack that came to light in January 2024. "In recent weeks, we have seen evidence that...

7.7AI score
Exploits0
Rows per page
Query Builder