Ferrari Website Flaw Exposes Their Database Credentials | allinfosecnews.com

May 15, 2023, 10:06 p.m. | BALAJI N

GBHackers On Security gbhackers.com

Based on the recent report from char49, it appears that there was a critical flaw in Ferrari’s subdomain, which led to an arbitrary file read vulnerability. The vulnerability existed in the media.ferrari.com subdomain using a vulnerable WordPress plugin (W3 Total Cache) that could allow threat actors to read sensitive files on the server. The W3 […]

The post Ferrari Website Flaw Exposes Their Database Credentials appeared first on GBHackers - Latest Cyber Security News | Hacker News.

cache computer security credentials critical critical flaw cyber security cyber-security-course database ferrari file files flaw led media plugin report server subdomain threat threat actors vulnerability vulnerable website wordpress wordpress plugin

More from gbhackers.com / GBHackers On Security

ELLIO and ntop partnership to boost high-speed network traffic monitoring with real-time data on opportunistic … 1 day, 22 hours ago | gbhackers.com

applications attacks botnets commercial +16

LilacSquid Hackers Attacking IT Industries To Harvest Confidential Data 1 day, 22 hours ago | gbhackers.com

access advanced persistent threat can cisco +29

FlyingYeti Exploits WinRAR Vulnerability For Targeted Malware Attacks 1 day, 23 hours ago | gbhackers.com

actor attacks cve cybersecurity threats +23

Hackers Weaponizing MS Office-Cracked Versions to Deliver Malware 1 day, 23 hours ago | gbhackers.com

attackers changing commands cracked +23

DDoS-as-a-Service Botnet Backed by Mirai Attacking Gaming Community 1 day, 23 hours ago | gbhackers.com

as-a-service attacks botnet botnets +19

Hackers Exploiting Stored XSS Vulnerabilities in WordPress Plugins 2 days ago | gbhackers.com

attackers cross-site cve cve-2023-40000 +25

VirusTotal Celebrates 20th Anniversary, What’s Next? 2 days, 3 hours ago | gbhackers.com

20th anniversary anniversary cyber security cybersecurity +16

Beware of Fake Browser Updates That Deliver Bitrat & Lumma Stealer 2 days, 4 hours ago | gbhackers.com

attackers breaches browser campaign +24

Progress Telerik Report Server Flaw Let Attackers Bypass Authentication 2 days, 23 hours ago | gbhackers.com

attackers authentication authentication bypass bypass +13

CyberSOC Technical Lead

@ Integrity360 | Sandyford, Dublin, Ireland

View on infosec-jobs.com

Cyber Security Strategy Consultant

@ Capco | New York City

View on infosec-jobs.com

Cyber Security Senior Consultant

@ Capco | Chicago, IL

View on infosec-jobs.com

Sr. Product Manager

@ MixMode | Remote, US

View on infosec-jobs.com

Security Compliance Strategist

@ Grab | Petaling Jaya, Malaysia

View on infosec-jobs.com

Cloud Security Architect, Lead

@ Booz Allen Hamilton | USA, VA, McLean (1500 Tysons McLean Dr)

View on infosec-jobs.com