WordPress has released version 6.0.2. This security and maintenance release contains patches for 3 vulnerabilities, including a high severity SQL Injection vulnerability in the Links functionality (CVSS Score of 8.0), as well as two Medium Severity Cross-Site Scripting vulnerabilities.
Atlassian has published a security advisory warning Bitbucket Server and Data Center users of a critical security flaw that allows remote attackers with access to public repositories or read access to private Bitbucket repositories to execute arbitrary code.
Watch out for an active phishing campaign on campus in which the attacker offers a a part-time, work-from-home job.
Microsoft released announcements for known vulnerabilities addressed in their Tuesday Patch release. Two are considered Remote Code Execution vulnerabilities, meaning an attacker can exploit the system vulnerabilities remotely.
Django, an open-source Python-based web framework, has detected a SQL injection vulnerability (CVE-2022-34265) in some recent versions.
Qualys researchers discovered a Local Privilege Escalation vulnerability (CVE-2021-4034) in polkit’s pkexec, a program that is installed by default on every major Linux distribution.
Four critical vulnerabilities were discovered in Illumina Local Run Manager (LRM), software used by sequencing instruments to aid in genetic analysis.
Every Wed at noon, Jun 22-Jul 27: Come and learn information technology essentials, explore pertinent tools and case studies, and discover ways to hone your leadership skills. Receive Continuing Professional Education credits (CPEs) for each session you attend!
Scammers recently sent a phony Office 365 login alert. Learn how to protect yourself!
About the Event A recently discovered zero-day vulnerability in all supported versions of Windows could allow an attacker to execute arbitrary code on affected machines. The flaw, dubbed “Follina”, exists due to improper validation of links containing the Microsoft Support Diagnostic Tool (MSDT) protocol handler. Although the vulnerability was only recently disclosed, it is currently …