CISA Warns of Sitecore RCE Flaws; Active Exploits Hit Next.js and DrayTek Devices

3 days ago 8

BOOK THIS SPACE FOR AD

ARTICLE AD

The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has added two six-year-old security flaws impacting Sitecore CMS and Experience Platform (XP) to its Known Exploited Vulnerabilities (KEV) catalog, based on evidence of active exploitation. The vulnerabilities are listed below - CVE-2019-9874 (CVSS score: 9.8) - A deserialization vulnerability in the Sitecore.Security.AntiCSRF

Read Entire Article

LEFT SIDEBAR AD

CISA Warns of Sitecore RCE Flaws; Active Exploits Hit Next.js and DrayTek Devices

BOOK THIS SPACE FOR AD

Related

RESURGE Malware Exploits Ivanti Flaw with Rootkit and Web Shell Features

BlackLock Ransomware Exposed After Researchers Exploit Leak Site Vulnerability

Product Walkthrough: How Datto BCDR Delivers Unstoppable Business Continuity

PJobRAT Malware Campaign Targeted Taiwanese Users via Fake Chat Apps

Nine-Year-Old npm Packages Hijacked to Exfiltrate API Keys via Obfuscated Scripts

Hackers Repurpose RansomHub's EDRKillShifter in Medusa, BianLian, and Play Attacks

Trending

Popular

Install waybackurls on Kali Linux

1-click RCE in Electron Applications

Microsoft Office Professional Plus 2019 (x64 & x86) Multilingual + Pre-Activated

Over 40 Apps With More Than 100 Million Installs Found Leaking AWS Keys

Autodesk Revit 2023 R1 Build 23.0.11.19 (x64) Multilingual + Crack

Install DalFox on Kali Linux

Adobe Master Collection CC 2022 v25.08.2022 (x64) Multilingual Pre-Activated

Maxon CINEMA 4D Studio S22.123 (x64) Multilingual + Crack

The best Mini LED TV I've tested isn't made by LG or TCL, and it's on sale for Black Friday

‘We are not motivated by profits’ – Open Bug Bounty maintainers on finding a niche in the crowdsourced AppSec market

BOOK THIS SPACE FOR AD