CVE-2024-30304 – Adobe Acrobat and Adobe Reader Vulnerability

May 8, 2024

LockBit Ransomware Admin Found and Sanctioned by US, UK, Australian Authorities

May 8, 2024

CVE-2023-40000 – WordPress LiteSpeed Cache Plugin Vulnerability Exploit in the Wild

May 8, 2024

Severity

High

Analysis Summary

CVE-2023-40000

WordPress LiteSpeed Cache plugin is vulnerable to cross-site scripting vulnerability that may lead to privilege escalation. This may allow an unauthenticated user to steal sensitive information and elevate their privilege on the WordPress site by performing a single HTTP request.

Impact

Privilege Escalation
Information Theft
Cross-Site Scripting

Indicators of Compromise

CVE

CVE-2023-40000

Affected Vendors

WordPress

Affected Products

WP LiteSpeed Cache Prior to 5.7.0.1 for WordPress

Remediation

Upgrade to latest version of Plugin for WordPress, available from WordPress Plugin Directory,

WordPress Plugin Directory

Rewterz Annual Threat Intelligence Report 2024 - Download Now

Rewterz Annual Threat Intelligence Report 2024 - Download Now

Platform

Managed Security Services

Managed Penetration Testing

Assess

Transform

Train

Respond

Resources

SonicWall Flags Active Exploitation of Critical Security Flaws

North Korean APT Kimsuky aka Black Banshee – Active IOCs

Cactus Ransomware – Active IOCs

Threat Insights

About Us

Our Leadership

CSR

Connect with Us

CVE-2024-30304 – Adobe Acrobat and Adobe Reader Vulnerability

LockBit Ransomware Admin Found and Sanctioned by US, UK, Australian Authorities

Severity

High

Analysis Summary

Indicators of Compromise

CVE

Affected Vendors

Affected Products

Remediation

The Wait Is Over!

The Rewterz Annual Threat Intelligence Report 2024 is finally here.