disclosure

  • Blog
    digitpatrox4 weeks ago
    32

    Oracle warns of Agile PLM file disclosure flaw exploited in attacks

    Oracle has fixed an unauthenticated file disclosure flaw in Oracle Agile Product Lifecycle Management (PLM) tracked as CVE-2024-21287, which was actively exploited as a zero-day to download files. Oracle Agile PLM is a software platform that enables businesses to manage product data, processes, and collaboration across global teams. Yesterday, Oracle urged Agile PLM customers to install the latest version to fix the…

    Read More »
  • Blog
    digitpatroxOctober 14, 2024
    46

    Jetpack fixes critical information disclosure flaw existing since 2016

    WordPress plugin Jetpack released a critical security update earlier today, addressing a vulnerability that allowed a logged-in user to access forms submitted by other visitors to the site. Jetpack is a popular WordPress plugin by Automattic that provides tools to enhance website functionality, security, and performance. According to the vendor, the plugin is installed on 27 million websites. The issue was…

    Read More »
Back to top button
close