Is you is or is you ain't my CVE?

#182 Sunday, April 20, 2025

Links:

• Hackers exploit WordPress plugin auth bypass hours after disclosure


• Microsoft: Windows 'inetpub' folder created by security fix, don’t delete


• AI hallucinations lead to a new cyber threat: Slopsquatting


• Threat Actors Using Cascading Shadows Attack Chain to Avoid Detection & Complicate Analysis


• Max Severity Bug in Apache Roller Enabled Persistent Access


• Funding Expires for Key Cyber Vulnerability Database


• A critical database tracking cybersecurity threats was on the chopping block. What happened?