logo
The Timetable and Event Schedule by MotoPress plugin for WordPress is vulnerable to SQL Injection via the 'events' attribute of the 'mp-timetable' shortcode in all versions up to, and including, 2.4.11 due to insufficient escaping on the user supplied parameter and lack of sufficient preparation on the existing SQL query. This makes it possible for authenticated attackers, with contributor-level access and above, to append additional SQL queries into already existing queries that can be used to extract sensitive information from the database.

Security Links is a curated list of websites for cybersecurity. Find cutting edge information and trends.

LATEST NEWS
thumb
2024-05-15 17:00:25Google unveils new Android 15 security updates: What you need to know

Google''s helping you fight scammers and snoops.

by ZDNET Security

thumb
2024-05-17 13:00:00How a new wave of deepfake-driven cybercrime targets businesses

by Security Intelligence

thumb
2024-05-16 08:34:27How carmakers sell driver data to insurers | Kaspersky official blog

by Kaspersky

thumb
2024-05-17 09:02:54C/side Emerges From Stealth Mode With $1.7 Million Investment

by SecurityWeek

MORE NEWS
mailbox

STAY UPDATED!

Subscribe to our Newsletter for FREE!

483 TOTAL LINKS!
swag SWAG SHOP
PICKUP
IT Security Guru

IT Security Guru is the home of IT Security and Cybersecurity news in the UK, Europe and the World. Get the latest industry news and articles here.

XPN InfoSec Blog

Blog from Adam Chester, Hacker and InfoSec Researcher.

Zimperium Blog

Blog from Zimperium.

RECENTLY ADDED
DARKSEARCH NEW

Browse the largest dark web index on the internet. Search Onion sites via fulltext queries and browse them via Tor compatible browser (Brave or Tor Browser, ...).

Karma-X Blog NEW

Blog from Karma-X.

forensics.wiki NEW

The Forensics Wiki has transitioned to this new domain and platform; read more about it at Transitioning Forensics Wiki to GitHub.

Stop Ransomware NEW

TIPS & GUIDANCE Ransomware incidents can severely impact business processes and leave organizations without the data they need to operate and deliver.

CISA News & Events NEW

Read and watch the latest news, multimedia, and other important communications from CISA. View a calendar of upcoming events CISA hosts and participates in.

KnowBe4 Security Awareness Training Blog NEW

Keeping You Informed. Keeping You Aware. Stay on top of the latest in security including social engineering, ransomware and phishing attacks.

ScammerPayback NEW

Scammers are ruthless, and that is why I am here. My channel is all about bringing awareness to this critical problem with humor and fun. We will learn a lot of things along the way and if I help one person through this, it will be worth it.

Sysdig Blog NEW

Expert insight, best practices, and advice on Secure DevOps, security for containers, Kubernetes, and cloud services. Review Sysdig blog posts today!

Hackster.io NEW

The community dedicated to learning hardware.

Hack The Box Blog NEW

All the latest news and insights about cybersecurity from Hack The Box. Hacking trends, insights, interviews, stories, and much more.

TryHackMe Blog NEW

Blog from TryHackMe.

Hackyx NEW

Hackyx is a search engine for cybersecurity. The aim of this project is to easily find any resource related to IT security like CTF writeups, articles or Bug Bounty reports.

MORE WEBSITES