#bleepingcomputer #EN #SQL-Injection

Facebook PrestaShop module exploited to steal credit cards

Hackers are exploiting a flaw in a premium Facebook module for PrestaShop named pkfacebook to deploy a card skimmer on vulnerable e-commerce sites and steal people's payment credit card details.

#bleepingcomputer #EN #2024 #E-Commerce #Prestashop #SQL-Injection #Vulnerability #Website

·bleepingcomputer.com·Jun 24, 2024

Facebook PrestaShop module exploited to steal credit cards

WP Automatic WordPress plugin hit by millions of SQL injection attacks

Hackers have started to target a critical severity vulnerability in the WP Automatic plugin for WordPress to create user accounts with administrative privileges and to plant backdoors for long-term access.

#bleepingcomputer #EN #2024 #Actively-Exploited #Plugin #SQL-Injection #Vulnerability #WordPress #WP-Automatic

·bleepingcomputer.com·Apr 27, 2024

WP Automatic WordPress plugin hit by millions of SQL injection attacks

Exploit released for Fortinet RCE bug used in attacks, patch now

Security researchers have released a proof-of-concept (PoC) exploit for a critical vulnerability in Fortinet's FortiClient Enterprise Management Server (EMS) software, which is now actively exploited in attacks.

#bleepingcomputer #EN #2024 #Actively-Exploited #Exploit #Fortinet #PoC #Proof-of-Concept #RCE #Remote-Code-Execution #SQL-Injection #CVE-2023-48788

·bleepingcomputer.com·Mar 21, 2024

Exploit released for Fortinet RCE bug used in attacks, patch now