Impacted are PHP-based websites running a vulnerable version of the web-app creation tool Zend Framework and some Laminas Project releases.
Google's Android security update addressed 43 bugs overall affecting Android handsets, including Samsung phones.
The malware takes aim at PostgreSQL database servers with never-before-seen techniques.
Google updates its mobile OS, fixing ten critical bugs, including one remote code execution flaw.
A CISA alert is flagging a critical default credentials issue that affects 100+ types of devices found in hospitals, from MRI machines to surgical imaging.
Attackers are targeting the critical remote code-execution flaw to compromise systems in the healthcare, local government, logistics and legal sectors, among others.
Bug hunters at GitHub Security Labs help shore up German contact tracing app security, crediting open source collaboration.
WordPress websites using buggy Epsilon Framework themes are being hunted by hackers.
The bugs tracked as CVE-2020–8271, CVE-2020–8272 and CVE-2020–8273 exist in the Citrix SD-WAN Center.
Browser users are once again being asked to patch severe vulnerabilities that can lead to remote code execution.
Three security vulnerabilities can be chained to enable unauthenticated remote code execution.
A previous fix for the critical remote code execution bug was "incomplete," according to VMware.
Patches for both the Chrome desktop and Android browser address high-severity flaws with known exploits available in the wild.
The remote code-execution flaw (CVE-2020-14750) is low-complexity and requires no user interaction to exploit.
In all, WordPress patched 10 security bugs as part of the release of version 5.5.2 of its web publishing software.