Jedar for Digital Rights

July 27, 2024

Critical Buffer Overflow Vulnerability Discovered in TOTOLINK A3100R Router

CVE ID: CVE-2024-7157 Published: July 28, 2024

July 26, 2024

Critical Vulnerability Discovered in Tenda O3: What You Need to Know About CVE-2024-7152

Published: July 27, 2024, 9:15 p.m.

Critical Security Flaw Discovered in Tenda O3: Remote Exploitation Risk Raises Alarms

On July 27, 2024, a serious security vulnerability was identified in the Tenda O3 router, specifically affecting firmware version 1.0.0.10(2478). Assigned the identifier CVE-2024-7151, this flaw represents a significant threat to users due to its critical nature.

French Authorities and Europol Unite in Major Offensive Against PlugX Malware Threat

In a decisive move to tackle cybercrime head-on, French judicial authorities have joined forces with the European law enforcement agency, Europol, to launch an extensive operation aimed at eradicating the notorious PlugX malware from infected systems. Officially commenced on July 18, this “disinfection operation” is set to unfold over several months, targeting a myriad of […]

Vigilance Required: Malicious PyPI Package “lr-utils-lib” Steals Google Cloud Credentials from macOS Users

In a sobering reminder of the digital threats lurking within the software development ecosystem, cybersecurity researchers have identified a malicious package on the widely utilized Python Package Index (PyPI). This insidious software, dubbed “lr-utils-lib,” targets Apple macOS systems, aiming to extract Google Cloud credentials from a specific group of unsuspecting victims.

Urgent Security Warning: PHP Object Injection Vulnerability Discovered in Flipbox Builder Plugin for WordPress

CVE ID: CVE-2024-6152

Urgent Alert: Critical Vulnerability in Media.net Ads Manager for WordPress Exposed

CVE ID: CVE-2024-6431 Published: July 27, 2024, 2:15 a.m. | Just In

July 25, 2024

Critical Remote Code Execution Vulnerability Discovered in Streamlit-Geospatial Application

CVE ID: CVE-2024-41119 Published: July 26, 2024

CVE-2024-41114: A Critical Vulnerability in Streamlit-Geospatial Exposes Users to Remote Code Execution Risks

On July 26, 2024, a significant vulnerability identified as CVE-2024-41114 emerged within the Streamlit-Geospatial framework, a multipage application solution widely used for geospatial projects. This vulnerability presents a severe risk to users, categorizing it as critical with a severity score of 9.8 out of 10.

Urgent Alert: CVE-2024-41116 Exposes Remote Code Execution Risk in Streamlit-Geospatial

In a critical security advisory published on July 26, 2024, a significant vulnerability identified as CVE-2024-41116 has been discovered in the popular Streamlit-Geospatial application. This multipage app, widely used for geospatial analysis and visualization, contains a major flaw that could potentially allow malicious actors to execute arbitrary code remotely on affected systems.