Mastodawn

File read flaw in Smart Slider plugin impacts 500K WordPress sites

https://www.bleepingcomputer.com/news/security/file-read-flaw-in-smart-slider-plugin-impacts-500k-wordpress-sites/

Short summary: https://hackerworkspace.com/article/file-read-flaw-in-smart-slider-plugin-impacts-500k-wordpress-sites

File read flaw in Smart Slider plugin impacts 500K WordPress sites

A vulnerability in the Smart Slider 3 WordPress plugin, active on more than 800,000 websites, can be exploited to allow subscriber-level users access to arbitrary files on the server.

BleepingComputer

Show thread

mlle-cassis 7h ago

Le tout sans trucage chimique! (voir plus haut) #exploit

clankussy 15h ago

Russian FSB's TA446 deploys DarkSword iOS exploit kit via Atlantic Council phishing. Targets include Russian opposition leader Volkov. Leaked exploit kits + state actors = dangerous combination. 📱🇷🇺

https://thehackernews.com/2026/03/ta446-deploys-leaked-darksword-ios.html

#infosec #cybersecurity #iOS #nationstate #exploit

TA446 Deploys Leaked DarkSword iOS Exploit Kit in Targeted Spear-Phishing Campaign

TA446 used leaked DarkSword on March 26 to target iOS devices, prompting Apple alerts and widening mobile espionage risks.

The Hacker News

HackerWorkspace 20h ago

oh the sweet sweet irony

https://www.youtube.com/watch?v=TRPUpErYeco

#cybersecurity #vulnerability #exploit

oh the sweet sweet irony

https://blog.qualys.com/vulnerabilities-threat-research/2026/03/12/crackarmor-critical-apparmor-flaws-enable-local-privilege-escalation-to-root🏫 LEARN HOW C...

YouTube

HackerWorkspace 20h ago

How I Hacked This Website And Became ADMIN

https://www.youtube.com/watch?v=DMHILoDf_tw

#cybersecurity #vulnerability #exploit

How I Hacked This Website And Became ADMIN

YouTube

HackerWorkspace 20h ago

The Sequels Are Never As Good, But We're Still In Pain (Citrix NetScaler CVE-2026-3055 Memory Overread)

https://labs.watchtowr.com/the-sequels-are-never-as-good-but-were-still-in-pain-citrix-netscaler-cve-2026-3055-memory-overread/

Short summary: https://hackerworkspace.com/article/the-sequels-are-never-as-good-but-we-re-still-in-pain-citrix-netscaler-cve-2026-3055-memory-overread

#cybersecurity #vulnerability #exploit

The Sequels Are Never As Good, But We're Still In Pain (Citrix NetScaler CVE-2026-3055 Memory Overread)

Sequels? Pain? We're obviously talking about Citrix NetScalers, yet again. Welcome back to another watchTowr Labs blog post - pull up a chair, we always welcome new members to our group therapy sessions. If you asked a C programmer what they most dislike doing in life, their answer might well

watchTowr Labs

Teddy / Domingo (🇨🇵/🇬🇧)1d ago

Coruna, DarkSword & Democratizing Nation-State #Exploit Kits. Nation-state #malware is being sold on the #DarkWeb and leaked to #GitHub; and ordinary organizations might not stand much of a chance of defending themselves.
https://www.darkreading.com/endpoint-security/coruna-darksword-democratizing-nation-state-exploit-kits

HackerWorkspace 1d ago

Disabling Security Features in a Locked BIOS - MDSec

https://www.mdsec.co.uk/2026/03/disabling-security-features-in-a-locked-bios/

Short summary: https://hackerworkspace.com/article/disabling-security-features-in-a-locked-bios-mdsec

#cybersecurity #vulnerability #exploit

Disabling Security Features in a Locked BIOS - MDSec

Overview This post explores how modifying a Dell UEFI firmware image at the flash level can fundamentally undermine platform security without leaving visible traces in the firmware interface. By directly...

MDSec

HackerWorkspace 1d ago

Security Bulletins | Cloud Customer Care | Google Cloud Documentation

https://docs.cloud.google.com/support/bulletins/index#gcp-2026-015

Short summary: https://hackerworkspace.com/article/security-bulletins-cloud-customer-care-google-cloud-documentation-2

#vulnerability #exploit #securitypatch