Broadcom warns of multiple stored cross-site scripting vulnerabilities in VMware Cloud Foundation and other products. Updates help.

The SiteOrigins Widgets plugin, with +600,000 active installations, provides a way to easily add a multitude of widget functions like sliders, carousels, maps, change the way blog posts are displayed, ...

The United States National Vulnerability Database published an advisory about two vulnerabilities discovered in the All In One SEO WordPress plugin. All In One SEO (AIOSEO) plugin, which has over ...

Microsoft has patched an actively exploited Exchange Server vulnerability that allows threat actors to execute arbitrary ...

Although a new methodology shook up the rankings of this year's most dangerous software bugs, the classic persistent threats still proved to be the biggest risk to organizations, reinforcing the need ...

A zero-day vulnerability exists in Microsoft Exchange, which attackers are already exploiting. Admins should act quickly.

Microsoft has patched an actively exploited Exchange Server vulnerability that allows threat actors to execute arbitrary JavaScript code in cross-site scripting (XSS) attacks targeting Outlook Web ...

Errors that allow SQL injection and cross-site scripting attacks are still the top vulnerabilities that pen-testers find, especially at smaller companies. Despite years topping vulnerability lists, ...

The vulnerability's potential impact was even more serious than usual because the PayPal page was guarded by an Extended Validation (EV) SSL certificate. Online payment provider PayPal has patched a ...