in the news

Sucuri located an Object Injection Vulnerability within WooCommerce on June 10th. This vulnerability can allow attackers to download any file on the affected website.The vulnerability only effects websites that have the “PayPal Identity Token” option set within WooCommerce. The vulnerability seems to be most effective...

After the first TimThumb vulnerability which allowed image thumbnails to be uploaded containing code that can be executed which resulted in millions of websites being infected, another vulnerability has been found.The TimThumb webshot feature allows commands to be executed without any authorization! This can include...