SQL injection
-
Ghost CMS flaw exploited in large-scale ClickFix campaign
A campaign is using a critical Ghost CMS SQL injection flaw to inject malicious JavaScript and drive ClickFix attacks, with researchers saying more than 700 domains were affected.
-
Avada Builder WordPress flaws could expose site credentials, database data
Two flaws in the Avada Builder WordPress plugin could let attackers read server files or pull data from the database. The issues affect versions through 3.15.2 and 3.15.1, and site owners were urged to upgrade to 3.15.3.
-
LiteLLM flaw exploited within 36 hours of public disclosure
LiteLLM’s CVE-2026-42208 SQL injection was exploited within 36 hours of disclosure, with attackers targeting database tables that store provider keys and runtime settings. The flaw affects versions 1.81.16 through 1.83.6.
-
Nine LeakyLooker flaws in Google Looker Studio could expose GCP data
Tenable found nine cross-tenant vulnerabilities in Google Looker Studio that could have allowed arbitrary SQL queries and data exfiltration across Google Cloud tenants. Google patched the flaws after a June 2025 responsible disclosure.
-
GhostRedirector threat cluster compromises 65 Windows servers, deploys Rungan backdoor and Gamshen IIS module for SEO fraud
A fresh threat cluster named GhostRedirector has compromised at least 65 Windows servers, deploying a passive backdoor called Rungan and an IIS module named Gamshen to conduct SEO fraud, according to ESET researchers. The campaign shows SQL injection-based initial access, PowerShell-based tool delivery, and persistence through multiple remote-access tools, with a China-aligned attribution considered plausible…
-
Mitel Issues Critical Security Patch for MiVoice MX-ONE Amid Vulnerability Concerns
Mitel Networks has released critical security updates for its MiVoice MX-ONE platform, addressing an authentication bypass vulnerability and a high-severity SQL injection flaw in MiCollab, urging customers to apply patches promptly.
-
Critical SQL Injection Vulnerability Uncovered in Fortinet FortiWeb
Cybersecurity researchers have uncovered a critical SQL injection vulnerability in Fortinet’s FortiWeb Fabric Connector, allowing unauthenticated remote code execution. Organizations are urged to update their systems immediately to mitigate the risk of full system compromise.
-
China-Linked Hackers Target South Asian Organizations Through Critical SAP Vulnerability
A China-linked hacker group known as Earth Lamia has successfully exploited a critical SAP vulnerability, targeting numerous organizations in South Asia and expanding their tactics beyond financial sectors to include IT and governmental entities.
