CVE-2024-3070 [CRITICAL] :

The Last Viewed Posts by WPBeginner plugin for WordPress is vulnerable to PHP Object Injection in all versions up to, and including, 1.0.0 via deserialization of untrusted input from the LastViewedPosts Cookie. This makes it possible for unauthenticated attackers to inject a PHP Object. No known POP chain is present in the vulnerable plugin. If a POP chain is present via an additional plugin or theme installed on the target system, it could allow the attacker to delete arbitrary files, retrieve sensitive data, or execute code.

#VPN

All the latest privacy news and features from the Proton VPN team. Learn how we protect online privacy, security, and freedom through technology.

https://protonvpn.com/blog/

Real news from the privacy world.

https://nordvpn.com/blog/

Express VPN Blog

The best internet privacy and online security blog. Regular news, opinion, and product updates from the world’s leading ultra-fast VPN service.

https://www.expressvpn.com/blog/

Mozilla VPN Resource Center

vpn

What’s the deal with Virtual Private Networks? Discover how they work, why they’re important and what using a VPN can do for you.

https://www.mozilla.org/en-US/products/vpn/resource-center/