Tag: SQL INJECTION

Weekly IT Vulnerability Report: Critical Updates for SAP, Microsoft, Fortinet, and Others
Key vulnerabilities in major platforms such as SAP, Microsoft, and Fortinet have been identified, necessitating immediate attention due to active exploitation by threat actors. The vulnerabilities include privilege escalation, unauthorized access, and critical flaws in widely used applications. Affected: SAP, Microsoft, Fortinet

Keypoints :

Cyble Research and Intelligence Labs (CRIL) analyzed vulnerabilities disclosed between January 8 and 14, 2025.…
Read More
Critical Vulnerability Threatens STEALTHONE Network Storage Servers
Summary: JPCERT/CC has issued a warning about critical vulnerabilities in STEALTHONE D220, D340, and D440 network storage servers, urging immediate firmware updates. The vulnerabilities, identified as CVE-2025-20016, CVE-2025-20055, and CVE-2025-20620, could allow attackers to execute arbitrary commands, gain unauthorized access, and steal administrative passwords. Users are advised to update their devices to the latest firmware to mitigate these risks.…
Read More
Gootloader inside out
The Gootloader malware employs sophisticated social engineering tactics to infect users through compromised WordPress sites. It manipulates search engine results to direct victims to these sites, where they encounter fake message boards that link to the malware. The infection process is complex and heavily obfuscated, making it difficult for even site owners to detect.…
Read More
SAP fixes critical vulnerabilities in NetWeaver application servers
Summary: SAP has addressed two critical vulnerabilities in its NetWeaver web application server that could lead to privilege escalation and unauthorized access to sensitive information. Alongside these critical fixes, SAP also released patches for 12 additional vulnerabilities rated medium to high severity. The company urges customers to promptly apply these updates to safeguard their SAP environments.…
Read More
Critical SAP Flaws Revealed in Latest Security Patch Day
Summary: SAP has released 14 new security notes addressing critical and high-severity vulnerabilities in its core systems, including NetWeaver and BusinessObjects. Notably, two critical vulnerabilities, CVE-2025-0070 and CVE-2025-0066, pose significant risks, allowing unauthorized access and potential privilege escalation. SAP urges customers to apply the patches promptly to safeguard their systems against potential threats.…
Read More
SAP Patches Critical Vulnerabilities in NetWeaver
Summary: SAP has released 14 new security notes addressing critical vulnerabilities, including two with a CVSS score of 9.9, during its January 2025 Patch Day. Organizations are urged to apply these patches promptly to mitigate potential exploitation by threat actors.

Threat Actor: Unknown | unknown Victim: SAP | SAP

Key Point :

Two critical vulnerabilities (CVE-2025-0070 and CVE-2025-0066) could allow attackers to steal credentials and read decrypted information.…
Read More
Chinas UNC5337 Exploits a Critical Ivanti RCE Bug, Again
Summary: A Chinese threat actor, UNC5337, is exploiting critical vulnerabilities in Ivanti remote access devices, particularly targeting the Connect Secure and Policy Secure gateways. Despite Ivanti’s efforts to enhance security, the group has successfully deployed sophisticated malware to compromise affected systems.

Threat Actor: UNC5337 | UNC5337 Victim: Ivanti | Ivanti

Key Point :

UNC5337 has exploited CVE-2025-0282, a critical vulnerability allowing code execution without authentication.…
Read More
Chinese APT Group Is Ransacking Japan’s Secrets
Summary: Japanese authorities have issued a warning about a sophisticated cyber-espionage campaign named “MirrorFace,” attributed to a Chinese state-backed threat actor, aimed at stealing technology and national security secrets. The campaign has evolved since its inception in 2019, employing various tactics including phishing and exploiting vulnerabilities in network devices.…
Read More
Major Vulnerabilities Patched in SonicWall, Palo Alto Expedition, and Aviatrix Controllers
Summary: Palo Alto Networks has released patches for critical vulnerabilities in its Expedition migration tool, including a high-severity SQL injection flaw that could allow authenticated attackers to access sensitive data. Additionally, SonicWall and Securing have also addressed significant security flaws in their respective products.

Threat Actor: (authenticated attacker, unauthenticated attacker) | threat actor Victim: (Palo Alto Networks, SonicWall, Aviatrix) | Palo Alto Networks, SonicWall, Aviatrix

Key Point :

Palo Alto Networks addressed multiple vulnerabilities in its Expedition tool, including SQL injection and XSS flaws.…
Read More
MirrorFace: Unmasking the Chinese Cyber Espionage Group Targeting Japan
Summary: The Japanese National Police Agency has issued a warning about ongoing cyberattacks attributed to the MirrorFace group, which has targeted critical sectors in Japan since 2019. Their sophisticated techniques and campaigns pose significant risks to national security and advanced industries.

Threat Actor: MirrorFace (Earth Kasha) | MirrorFace Victim: Japanese National Police Agency | Japanese National Police Agency

Key Point :

MirrorFace has conducted three major cyberattack campaigns targeting government, academia, media, and advanced industries.…
Read More
Unpatched critical flaws impact Fancy Product Designer WordPress plugin
Summary: The Fancy Product Designer plugin for WordPress by Radykal has two critical vulnerabilities that remain unpatched, posing significant risks to users. These flaws allow for unauthenticated arbitrary file uploads and SQL injection attacks, which could lead to remote code execution and database compromise.

Threat Actor: Unknown | unknown Victim: Radykal | Radykal

Key Point :

Two critical vulnerabilities identified: CVE-2024-51919 (arbitrary file upload) and CVE-2024-51818 (SQL injection).…
Read More

### #ApacheTrafficControl #SQLInjectionRisk #ContentDeliveryNetwork

Summary: A critical SQL injection vulnerability (CVE-2024-45387) has been discovered in Apache Traffic Control, posing severe risks to sensitive data and service integrity. Organizations are urged to upgrade to version 8.0.2 to mitigate potential threats.

Threat Actor: Malicious Actors | Malicious Actors Victim: Apache Traffic Control Users | Apache Traffic Control Users

Key Point :

Vulnerability CVE-2024-45387 has a CVSS score of 9.9, indicating critical severity.…
Read More

### #SQLInjection #DataSecurity #AmazonRedshift

Summary: A series of SQL injection vulnerabilities in Amazon Redshift drivers could allow attackers to escalate privileges and compromise sensitive data. Immediate action is required to mitigate these high-severity flaws.

Threat Actor: Unknown | unknown Victim: Amazon Redshift | Amazon Redshift

Key Point :

Three SQL injection vulnerabilities tracked as CVE-2024-12744, CVE-2024-12745, and CVE-2024-12746 have been identified.…
Read More

### #WPLMSVulnerabilities #WordPressPlugins #OnlineCourseSecurity

Summary: Security researchers have identified critical vulnerabilities in the WPLMS and VibeBP plugins for WordPress, which could lead to unauthorized access and data breaches. These vulnerabilities have now been patched, but users are urged to update their systems immediately.

Threat Actor: Unknown | unknown Victim: WPLMS and VibeBP Users | WPLMS and VibeBP Users

Key Point :

Critical vulnerabilities included arbitrary file uploads, privilege escalation, and SQL injection.…
Read More

### #SophosSecurity #FirewallFlaws #SQLInjectionRisks

Summary: Sophos has addressed three critical vulnerabilities in its Firewall product, which could lead to severe security risks including remote code execution and privilege escalation. The vulnerabilities, tracked as CVE-2024-12727, CVE-2024-12728, and CVE-2024-12729, affect a small percentage of devices but require immediate attention from users.…

Read More

### #HackingOperations #MoneyLaundering #SQLInjection

Summary: Vitalii Antonenko, a Ukrainian hacker, was sentenced to nearly six years in prison for his involvement in a complex hacking and money laundering operation that compromised numerous payment card data. He will also face supervised release and restitution payments following his prison term.…

Read More