Symantec Corporation has issued its Symantec 2015 Internet Security Threat Report. From social media vulnerabilities to digital extortion, the 2015 Symantec Internet Security Threat Report leverages an unparalleled amount of data and is the resource you need to quickly uncover digital threats.
Read More
Alerts
Flaws in WordPress ecommerce Plugin Expose over 5,000 Websites
More than 5000 electronic commerce (eCommerce) websites running wordpress have been exposed due to the flaw in a plugin. Researchers at High-Tech Bridge have identified several vulnerabilities in TheCartPress, an eCommerce plugin installed on more than 5,000 WordPress websites. According to experts, the plugin is plagued by security holes that can be exploited for cross-site scripting (XSS) attacks, arbitrary PHP code execution, and sensitive data disclosure.
WordPress Security Updates
WordPress 4.2.1 has been released to address cross-site scripting vulnerability. Exploitation of this vulnerability could allow a remote attacker to take control of an affected website.
Users and administrators are encouraged to review the WordPress security released and apply the necessary updates.
WordPress Security Updates
WordPress 4.1.2 has been released to address multiple vulnerabilities, one of which could potentially allow a site to be compromised by a remote attacker. WordPress versions 4.1.1 and earlier are affected by the identified vulnerability.
Users and administrators are encouraged to review the WordPress security released and apply the necessary updates.
Mozilla Security Updates
The Mozilla Foundation has release Firefox 37.0.2 to address a vulnerability that may allow an attacker to take control of an affected system.
Users and administrators are encouraged to review the Security advisories released from Mozilla Foundation and apply the necessary updates.