33 matches found
Alert: Adobe Commerce and Magento Stores Under Attack from CosmicSting Exploit
Cybersecurity researchers have disclosed that 5% of all Adobe Commerce and Magento stores have been hacked by malicious actors by exploiting a security vulnerability dubbed CosmicSting. Tracked as CVE-2024-34102 CVSS score: 9.8, the critical flaw relates to an improper restriction of XML external...
WordPress YAHMAN Add-ons plugin <= 0.9.28 - Malicious Polyfill.io Embed vulnerability
Malicious Polyfill.io Embed vulnerability discovered by Sansec.io in WordPress Plugin YAHMAN Add-ons versions = 0.9.28...
WordPress Mine Video Player plugin <= 2.8.11 - Malicious Polyfill.io Embed vulnerability
Malicious Polyfill.io Embed vulnerability discovered by Sansec.io in WordPress Plugin Mine Video Player versions = 2.8.11...
WordPress ADDRESSYA plugin <= 3.1.1 - Malicious Polyfill.io Embed vulnerability
Malicious Polyfill.io Embed vulnerability discovered by Sansec.io in WordPress Plugin ADDRESSYA versions = 3.1.1...
WordPress Contact Form 7 Multi-Step Addon plugin <= 1.0.5 - Malicious Polyfill.io Embed vulnerability
Malicious Polyfill.io Embed vulnerability discovered by Sansec.io in WordPress Plugin Contact Form 7 Multi-Step Addon versions = 1.0.5...
WordPress Weight Tracker plugin <= 10.9.1 - Malicious Polyfill.io Embed vulnerability
Malicious Polyfill.io Embed vulnerability discovered by Sansec.io in WordPress Plugin Weight Tracker versions = 10.9.1...
WordPress CommandBar for WP Admin plugin <= 1.0.7 - Malicious Polyfill.io Embed vulnerability
Malicious Polyfill.io Embed vulnerability discovered by Sansec.io in WordPress Plugin CommandBar for WP Admin versions = 1.0.7...
WordPress Word Balloon plugin <= 4.22.1 - Malicious Polyfill.io Embed vulnerability
Malicious Polyfill.io Embed vulnerability discovered by Sansec.io in WordPress Plugin Word Balloon versions = 4.22.1...
WordPress nicen-localize-image plugin <= 1.4.0 - Malicious Polyfill.io Embed vulnerability
Malicious Polyfill.io Embed vulnerability discovered by Sansec.io in WordPress Plugin nicen-localize-image versions = 1.4.0...
WordPress Social Warfare plugin <= 4.4.7.1 - Malicious Polyfill.io Embed vulnerability
Malicious Polyfill.io Embed vulnerability discovered by Sansec.io in WordPress Plugin Social Warfare versions = 4.4.7.1...
WordPress WebSitter Pro plugin <= 4.0.11 - Malicious Polyfill.io Embed vulnerability
Malicious Polyfill.io Embed vulnerability discovered by Sansec.io in WordPress Plugin WebSitter Pro versions = 4.0.11...
WordPress Field Day plugin <= 3.3.8 - Malicious Polyfill.io Embed vulnerability
Malicious Polyfill.io Embed vulnerability discovered by Sansec.io in WordPress Plugin Field Day versions = 3.3.8...
WordPress WP User Frontend plugin <= 4.0.7 - Malicious Polyfill.io Embed vulnerability
Malicious Polyfill.io Embed vulnerability discovered by Sansec.io in WordPress Plugin WP User Frontend versions = 4.0.7...
WordPress Simply Show Hooks plugin <= 1.2.1 - Malicious Polyfill.io Embed vulnerability
Malicious Polyfill.io Embed vulnerability discovered by Sansec.io in WordPress Plugin Simply Show Hooks versions = 1.2.1...
WordPress Taager plugin <= 1.16.0 - Malicious Polyfill.io Embed vulnerability
Malicious Polyfill.io Embed vulnerability discovered by Sansec.io in WordPress Plugin Taager versions = 1.16.0...
WordPress Digital River Global Commerce plugin <= 2.0.2 - Malicious Polyfill.io Embed vulnerability
Malicious Polyfill.io Embed vulnerability discovered by Sansec.io in WordPress Plugin Digital River Global Commerce versions = 2.0.2...
WordPress ShipAny plugin <= 1.1.52 - Malicious Polyfill.io Embed vulnerability
Malicious Polyfill.io Embed vulnerability discovered by Sansec.io in WordPress Plugin ShipAny versions = 1.1.52...
WordPress alfred24 Click & Collect plugin <= 1.1.7 - Malicious Polyfill.io Embed vulnerability
Malicious Polyfill.io Embed vulnerability discovered by Sansec.io in WordPress Plugin alfred24 Click & Collect versions = 1.1.7...
WordPress Product Customer List for WooCommerce plugin <= 3.1.6 - Malicious Polyfill.io Embed vulnerability
Malicious Polyfill.io Embed vulnerability discovered by Sansec.io in WordPress Plugin Product Customer List for WooCommerce versions = 3.1.6...
WordPress Amelia Shortcode Extended plugin <= 1.6 - Malicious Polyfill.io Embed vulnerability
Malicious Polyfill.io Embed vulnerability discovered by Sansec.io in WordPress Plugin Amelia Shortcode Extended versions = 1.6...