PT-2026-31077

Name of the Vulnerable Software and Affected Versions LTL Freight Quotes – R+L Carriers Edition plugin for WordPress versions up to and including 3.3.13 Description The LTL Freight Quotes – R+L Carriers Edition plugin for WordPress is susceptible to unauthorized access due to missing...

CVE-2026-3453

Affected software: ProfilePress plugin for WordPress (versions up to and including 4.16.11). Vulnerability details: Insecure Direct Object Reference due to missing ownership validation on the change_plan_sub_id parameter in process_checkout()’s AJAX handler. The handler loads a subscription and c...

Crooks using phony call centers to spread ransomware via BazaCall attacks

By Deeba Ahmed In BazaCall, a "vishing-like" method is used in which victims are told to call a particular phone number or their subscription will expire. This is a post from HackRead.com Read the original post: Crooks using phony call centers to spread ransomware via BazaCall attacks...

U.S. Dept Of Defense: Domian Takeover in [███████]

Summary: subscription of ████ is expired so any attacker can takeover it Impact phishing attacks if any attacker takeovr the domain...