Topic

#zero-day

4 articles found

Gogs Zero-Day Flaw Exposes Indian Devs to Remote Code Execution Threats

An unpatched zero-day vulnerability in the Gogs self-hosted Git service can allow attackers to gain remote code execution (RCE) on Internet-facing instances. [...]

#security#zero-day#remote-code-execution#gogs#vulnerability

· 3 days ago· SecurityWeek

Analysis temporarily unavailable. Please try again in a moment.

Resolved last week, the vulnerability was exploited in the wild as a zero-day to execute scripts with root privileges. The post CISA Urges Immediate Patching of Exploited LiteSpeed cPanel Plugin Zero-Day appeared first on SecurityWeek.

#cybersecurity#zero-day#vulnerability#cisa#patch-management

· 4 days ago· Bleeping Computer

Zero-day vulnerability in KnowledgeDeliver enables web shell installation

Hackers exploited a critical zero-day vulnerability in a server running the KnowledgeDeliver learning management system (LMS) to deploy the Godzilla web shell. [...]

#zero-day#cybersecurity#web-shells#vulnerability#malware

· 4 days ago· SecurityWeek

Hackers Utilize KnowledgeDeliver Zero-Day Vulnerability for Web Shell Attacks

Hardcoded machineKey values in a configuration file enabled ViewState deserialization attacks leading to remote code execution. The post Hackers Exploited KnowledgeDeliver Zero-Day for Web Shell Deployment appeared first on SecurityWeek.

#security#zero-day#web-shell#remote-code-execution#cybersecurity