Severity Medium Analysis Summary CVE-2022-3154 Shortcodes Ultimate plugins for WordPress are vulnerable to cross-site request forgery, caused by improper validation of user-supplied input. By persuading an […]

Severity High Analysis Summary Gamaredon is a Russia-backed advanced persistent threat (APT) that has been operating since at least 2013. The main goal of this APT […]

Severity Medium Analysis Summary CVE-2022-2981 Download Monitor plugin for WordPress could allow a remote authenticated attacker to obtain sensitive information, caused by a flaw when decoding […]

Severity Medium Analysis Summary CVE-2022-2563 Tutor LMS plugin for WordPress is vulnerable to cross-site scripting, caused by improper validation of user-supplied input by Create/Edit a Course […]

Severity Medium Analysis Summary CVE-2022-3082 CVSS:5.4miniOrange Discord Integration plugin for WordPress is vulnerable to cross-site request forgery, caused by improper validation of user-supplied input by AJAX […]

Severity High Analysis Summary Chaos is a customizable ransomware builder that emerged on June 9 2021 (in underground forums) by falsely marketing itself as the .NET […]

Severity High Analysis Summary CVE-2022-37982 CVSS:8.8 Microsoft Windows could allow a remote attacker to execute arbitrary code on the system, caused by a flaw in the […]

Severity High Analysis Summary Kimsuky is a North Korean nation-state actor that has been active since 2012. It primarily targets South Korean government agencies and conducts […]

Severity High Analysis Summary Guloader is currently being distributed via spam email campaigns with archived attachments that contain malware. The majority of malware downloaded by GuLoader […]