WordPress PrivateContent Plugin <= 8.4.3 is vulnerable to Bypass Vulnerability

Software PrivateContent Type Plugin Vulnerable versions = 8.4.3 Fixed in 8.4.4 OWASP Top 10 A5: Broken Access Control Classification Bypass Vulnerability CVE CVE-2023-0581 Patch priority Low CVSS severity Low 5.3 Developer Claim ownership PSID 8c5077753b61 Credits Riccardo Granata Required...

USN-4204-1 python-psutil vulnerability

Riccardo Schirone discovered that psutil incorrectly handled certain reference counting operations. An attacker could use this issue to cause psutil to crash, resulting in a denial of service, or possibly execute arbitrary code...

Welcome, Brooke Motta!

By Ivan Novikov I am excited to announce a great addition to our Go-To-Market team. Brooke Motta has joined Wallarm as Vice President of Sales. Brooke brings 15 years of Cyber Security Sales Experience to the team. She has experience selling up and down the organization from an individual securit...

Oracle Linux 7 : sos-collector (ELSA-2018-3663)

The remote Oracle Linux 7 host has a package installed that is affected by a vulnerability as referenced in the ELSA-2018-3663 advisory. 1.5-3.0.1 - To recognize OL systemOraBug 28807430 - import os module to detect /etc/redhat-release OraBug 28740046 1.5-3 - Resolve race condition in cluster...

RHEL 7 : sos-collector (RHSA-2018:3663)

The remote Redhat Enterprise Linux 7 host has a package installed that is affected by a vulnerability as referenced in the RHSA-2018:3663 advisory. sos-collector is a utility that gathers sosreports from multi-node environments. sos-collector facilitates data collection for support cases and it c...

Critical: Red Hat Security Advisory: redhat-certification security update

An update for redhat-certification is now available for Red Hat Certification for Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having a security impact of Critical. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is...

WordPress WP Live Chat Support plugin <=8.0.07 - Authenticated Cross-Site Scripting (XSS) vulnerability

Authenticated Cross-Site Scripting XSS vulnerability found by Riccardo ten Cate in WordPress WP Live Chat Support plugin versions =8.0.07. Solution Update the WordPress WP Live Chat Support plugin to the latest available version at least 8.0.08...

Riccardo Di Blasio joins Wallarm as an advisor

We are excited to welcome Riccardo Di Blasio to Wallarm advisory team. Riccardo is a well known industry executive who brings his experience running go-to-market operations and managing business worldwide for large internationals like EMC Corp and VMware, including RSA Security. Riccardo’s...

Unfixed XSS vulnerability at www.videosnice.com

Security researcher riccardo, has submitted on 20/04/2011 a cross-site-scripting XSS vulnerability affecting www.videosnice.com, which at the time of submission ranked 4419340 on the web according to Alexa. We manually validated and published a mirror of this vulnerability on 28/12/2011. It is...