There’s a serious vulnerability in the Magento platform. Check Point researchers recently discovered a critical vulnerability in the Magento web e-commerce platform. The Remote Code Execution (RCE) can lead to the complete compromise of any Magento-based store. This could affect nearly two hundred thousand online shops. A patch to address the flaws was released on… Read more »
WordPress have released a critical security update for all previous versions of WordPress. WordPress have now made version 4.1.2 available.The WordPress security team discovered that versions 4.1.1 and earlier have a critical cross-site scripting vulnerability. This could enable anonymous users to compromise a site. Along with this particular vulnerability, the WordPress team also fixed the… Read more »
Yesterday evening a vulnerability in the GNU C Library (glibc) was disclosed (CVE-2015-0235). It could allow remote attackers to take control of the operating system by exploiting a buffer overflow bug in glibc’s GetHOST functions. Versions of the GNU C Library prior to glibc-2.18 are vulnerable. Like Shellshock and Heartbleed, the GHOST vulnerability is serious… Read more »