2665 matches found
CVE-2026-27389 WordPress WeDesignTech Ultimate Booking Addon plugin <= 1.0.1 - Account Takeover vulnerability
Authentication Bypass Using an Alternate Path or Channel vulnerability in designthemes WeDesignTech Ultimate Booking Addon wedesigntech-ultimate-booking-addon allows Authentication Abuse.This issue affects WeDesignTech Ultimate Booking Addon: from n/a through = 1.0.1...
CVE-2026-27389
Authentication Bypass Using an Alternate Path or Channel vulnerability in designthemes WeDesignTech Ultimate Booking Addon wedesigntech-ultimate-booking-addon allows Authentication Abuse.This issue affects WeDesignTech Ultimate Booking Addon: from n/a through = 1.0.1...
CVE-2026-27390
Authentication Bypass Using an Alternate Path or Channel vulnerability in designthemes WeDesignTech Ultimate Booking Addon wedesigntech-ultimate-booking-addon allows Authentication Abuse.This issue affects WeDesignTech Ultimate Booking Addon: from n/a through = 1.0.1...
CVE-2026-27390
The CVE CVE-2026-27390 affects the WordPress plugin WeDesignTech Ultimate Booking Addon (versions n/a through 1.0.1). Red Hat and CVE records describe an Authentication Bypass/Authentication Abuse leading to potential account takeover. Wordfence reports this vulnerability as Unpatched for the add...
PT-2026-23146
Name of the Vulnerable Software and Affected Versions BuddhaThemes WeDesignTech Ultimate Booking Addon versions through 1.0.3 Description An authorization issue exists in the WeDesignTech Ultimate Booking Addon, allowing exploitation due to incorrectly configured access control security levels...
PT-2026-23262
Name of the Vulnerable Software and Affected Versions WeDesignTech Ultimate Booking Addon versions through 1.0.1 Description An authentication bypass issue exists in the WeDesignTech Ultimate Booking Addon, allowing authentication abuse through an alternate path or channel. The issue allows...
Important: Red Hat Security Advisory: RHTAS - Tech Preview Release Of the Policy Controller Operator
The Tech Preview release of the RHTAS Policy Controller Operator. For more details please visit the product documentation at https://access.redhat.com/documentation/en-us/redhattrustedartifactsigner/1.3 The RHTAS Policy Controller Operator can be used with OpenShift Container Platform 4.16, 4.17,...
Here’s What a Google Subpoena Response Looks Like, Courtesy of the Epstein Files
The US Justice Department disclosures give fresh clues about how tech companies handle government inquiries about your data...
Important: Red Hat Security Advisory: RHTAS - Tech Preview Release Of the Policy Controller Operator
The Tech Preview release of the RHTAS Policy Controller Operator. For more details please visit the product documentation at https://access.redhat.com/documentation/en-us/redhattrustedartifactsigner/1.3 The RHTAS Policy Controller Operator can be used with OpenShift Container Platform 4.16, 4.17,...
Important: Red Hat Security Advisory: Red Hat Developer Hub 1.8.4 release.
Red Hat Developer Hub 1.8.4 has been released. Red Hat Developer Hub RHDH is Red Hat's enterprise-grade, self-managed, customizable developer portal based on Backstage.io. RHDH is supported on OpenShift and other major Kubernetes clusters AKS, EKS, GKE. The core features of RHDH include a single...
Upcoming Speaking Engagements
This is a current list of where and when I am scheduled to speak: I'm speaking at Ontario Tech University in Oshawa, Ontario, Canada, at 2 PM ET on Thursday, February 26, 2026. I’m speaking at the Personal AI Summit in Los Angeles, California, USA, on Thursday, March 5, 2026. I’m speaking at Tech...
Malwarebytes earns PCMag Best Tech Brand spot, scores 100% with MRG Effitas
Malwarebytes is on a roll. Recently named one of PCMag's “Best Tech Brands for 2026,” Malwarebytes also scored 100% on the first-ever MRG Effitas consumer security product test, cementing the fact that we are loved by users and trusted by experts. But don’t take our word for it. As PCMag Principa...
CVE-2025-69036
Deserialization of Untrusted Data vulnerability in strongholdthemes Tech Life CPT techlife-cpt allows Object Injection.This issue affects Tech Life CPT: from n/a through = 16.4...
CVE-2025-69036
Deserialization of Untrusted Data vulnerability in strongholdthemes Tech Life CPT techlife-cpt allows Object Injection.This issue affects Tech Life CPT: from n/a through = 16.4...
CVE-2025-69036 WordPress Tech Life CPT plugin <= 16.4 - PHP Object Injection vulnerability
Deserialization of Untrusted Data vulnerability in strongholdthemes Tech Life CPT techlife-cpt allows Object Injection.This issue affects Tech Life CPT: from n/a through = 16.4...
CVE-2025-69036 WordPress Tech Life CPT plugin <= 16.4 - PHP Object Injection vulnerability
Deserialization of Untrusted Data vulnerability in strongholdthemes Tech Life CPT techlife-cpt allows Object Injection.This issue affects Tech Life CPT: from n/a through = 16.4...
CVE-2025-69036
Deserialization of Untrusted Data vulnerability in strongholdthemes Tech Life CPT techlife-cpt allows Object Injection.This issue affects Tech Life CPT: from n/a through = 16.4...
CVE-2025-69036
CVE-2025-69036 is a Deserialization of Untrusted Data vulnerability in the TechLife - Tech Life CPT (Tech Life CPT) WordPress plugin by strongholdthemes. The issue enables PHP Object Injection via deserialization of untrusted data and affects Tech Life CPT versions n/a through 16.4. The CVSS base...
PT-2026-4124
Name of the Vulnerable Software and Affected Versions strongholdthemes Tech Life CPT versions n/a through 16.4 Description An issue exists in strongholdthemes Tech Life CPT that allows for Object Injection due to deserialization of untrusted data. This impacts the techlife-cpt component...
WordPress plugin Tech Life CPT code issue vulnerability
WordPress and WordPress plugins are both products of the WordPress Foundation. WordPress is a blog platform developed using the PHP language. This platform allows for the creation of personal blog websites on servers based on PHP and MySQL. A WordPress plugin is an application extension. There we...