Threat Post

phpMyAdmin Plugs SQL Injection, XSS Flaws

A new version of phpMyAdmin has been released to plug two serious security holes that could lead to SQL injection and cross-site scripting attacks. According to an advisory from the maintainers of the ...
Fudzilla

AI groups race to plug prompt injection bugs

Big language AI models are under a sustained assault and the tech world is scrambling to patch the holes. Anthropic, OpenAI, Google DeepMind and Microsoft are among the groups racing to stop so-called ...
eWeek

Adobe Plugs Dreamweaver SQL Injection Flaw

Web tools vendor Adobe Systems has acknowledged that code generated by its Macromedia Dreamweaver suite could allow SQL injection attacks. According to an advisory from Adobe, the flaw was confirmed ...
Dark Reading

Nearly 7K WordPress Sites Compromised by Balada Injector

About 6,700 WordPress websites have been infected with the Balada Injector malware, after using a Popup Builder plug-in with a cross-site scripting (XSS) vulnerability tracked as CVE-2023-6000. The ...