In this publication, Check Point describes a technique which would have allowed a threat actor to potentially identify and join active meetings.
Zoom - Predict Zoom Meeting IDs
Elementor Page Builder - Authenticated Reflected XSS
Plugin in question: https://www.ultimatebeaver.com/
Vulnerable version: 2.8.4 and below
Learn more: https://wpvulndb.com/vulnerabilities/10051
Code Snippets - Remote Code Execution vulnerability
Plugin in question: https://wordpress.org/plugins/code-snippets/
Vulnerable version: 2.13.3 and below
Learn more: https://wpvulndb.com/vulnerabilities/10050
WPS Hide Login - Access secret login page
Plugin in question: https://wordpress.org/plugins/wps-hide-login/
Vulnerable version: 188.8.131.52 and below
LearnDash - Reflected Cross-Site Scripting attack
Vulnerable version: 3.1.1 and below
WP Time Capsule - Authentication Bypass vulnerability
Plugin in question: https://wordpress.org/plugins/wp-time-capsule/
Vulnerable version: 1.21.16 and below
Learn more: https://wpvulndb.com/vulnerabilities/10010
Windows 7 no longer supported by Microsoft
If you are still not aware from our previous notifications, Microsoft has now stopped all support for Windows 7 operating system.
WHat this means is that you will no longer receive any updates, or security patches from Microsoft. That is a huge no-no, and prevents a security risk to your device.
Need help upgrading? Talk to us for a custom quote on assisting you with the upgrade to Windows 10. https://ctare.cloud/contact/
Ultimate Addons for Visual Composer - Authenticated XSS, CSRF, RCE
Plugin in question: https://codecanyon.net/item/ultimate-addons-for-visual-composer/6892199
Vulnerable version: 3.16.11 and below
Learn more: https://wpvulndb.com/vulnerabilities/8821
ElegantThemes Divi Suite - Authenticated Code Injection attack
Vulnerable version: below 4.0.10
Biggest data breaches in Southeast Asia: 2016 - 2019
Cyber attacks are on the sharpest rise in the APAC region. And these articles shares why.