WeLiveSecurity

Analysis of two arbitrary code execution vulnerabilities affecting WPS Office

ESET researchers discovered a code execution vulnerability in WPS Office for Windows (CVE⁠-⁠2024⁠-⁠7262), as it was being exploited by APT-C-60, a South Korea-aligned cyberespionage group. Upon ...
Threat Post

Imunify360 Bug Leaves Linux Web Servers Open to Code Execution, Takeover

CloudLinux’s security platform for Linux-based websites and web servers contains a high-severity PHP deserialization bug. A high-severity security vulnerability in CloudLinux’s Imunify360 ...