Multiple Dell Products Vulnerabilities

January 13, 2025

Multiple Intel Products Vulnerabilities

January 14, 2025

Multiple WordPress Plugins Vulnerabilities

January 14, 2025

Severity

High

Analysis Summary

CVE-2024-56046 CVSS:10

Unrestricted Upload of File with Dangerous Type vulnerability in VibeThemes WPLMS allows Upload a Web Shell to a Web Server. This issue affects WPLMS: from n/a through 1.9.9.

CVE-2024-56068 CVSS:7.5

Deserialization of Untrusted Data vulnerability in Azzaroco WP SuperBackup.This issue affects WP SuperBackup: from n/a through 2.3.3.

Impact

Gain Access

Indicators of Compromise

CVE

CVE-2024-56046
CVE-2024-56068

Affected Vendors

WordPress

Affected Products

VibeThemes WPLMS - n/a
Azzaroco WP SuperBackup - n/a

Remediation

Upgrade to the latest version of the plugin for WordPress, available from the WordPress Plugin Directory.

CVE-2024-56046

CVE-2024-56068

Rewterz Annual Threat Intelligence Report 2024 - Download Now

Rewterz Annual Threat Intelligence Report 2024 - Download Now

Platform

Managed Security Services

Managed Penetration Testing

Assess

Transform

Train

Respond

Resources

Local Privilege Escalation to Root via Sudo chroot in Linux

CoinMiner Malware – Active IOCs

Google Warns of Active Exploits Targeting Chrome V8 Vulnerability

Threat Insights

About Us

Our Leadership

CSR

Connect with Us