all InfoSec news logo
all InfoSec news - Your InfoSec news aggregator
Log in Sign up
all InfoSec news

Ferrari Website Flaw Exposes Their Database Credentials

Add to bookmarks
May 15, 2023, 10:06 p.m. | BALAJI N

GBHackers On Security gbhackers.com

Based on the recent report from char49, it appears that there was a critical flaw in Ferrari’s subdomain, which led to an arbitrary file read vulnerability. The vulnerability existed in the media.ferrari.com subdomain using a vulnerable WordPress plugin (W3 Total Cache) that could allow threat actors to read sensitive files on the server. The W3 […]


The post Ferrari Website Flaw Exposes Their Database Credentials appeared first on GBHackers - Latest Cyber Security News | Hacker News.

cache computer security credentials critical critical flaw cyber security cyber-security-course database ferrari file files flaw led media plugin report server subdomain threat threat actors vulnerability vulnerable website wordpress wordpress plugin

Visit resource

More from gbhackers.com / GBHackers On Security

NETGEAR buffer Overflow Vulnerability Let Attackers Bypass Authentication 2 days, 1 hour ago | gbhackers.com
1.0.6 address attacker attackers +30
5000+ CrushFTP Servers Hacked Using Zero-Day Exploit 2 days, 3 hours ago | gbhackers.com
access attacks can crushftp +30
13,142,840 DDoS Attacks Targeted Organization Around The Globe 2 days, 3 hours ago | gbhackers.com
attacks block can crash +16
Hackers Exploit Old Microsoft Office 0-day to Deliver Cobalt Strike 2 days, 5 hours ago | gbhackers.com
attack beacon cobalt cobalt strike +17
Microsoft Publicly Releases MS-DOS 4.0 Source Code 2 days, 7 hours ago | gbhackers.com
code computing cyber-attack cyber security +16
New SSLoad Malware Combined With Tools Hijacking Entire Network Domain 2 days, 7 hours ago | gbhackers.com
addition attack campaign cobalt +24
Palo Alto Networks Shares Remediation Advice for Hacked Firewalls 2 days, 8 hours ago | gbhackers.com
access advice alto breach +26
Analyze Malicious Powershell Scripts by Running Malware in ANY.RUN Sandbox 2 days, 22 hours ago | gbhackers.com
access antivirus any.run attackers +32
Beware! Zero-click RCE Exploit for iMessage Circulating on Hacker Forums 3 days, 1 hour ago | gbhackers.com
apple click code code execution +20

Jobs in InfoSec / Cybersecurity

Post a job on infosec-jobs.com Find talent on infosec-jobs.com

SOC 2 Manager, Audit and Certification

@ Deloitte | US and CA Multiple Locations
View on infosec-jobs.com

Network Security Engineer

@ Meta | Menlo Park, CA | Remote, US
View on infosec-jobs.com

Security Engineer, Investigations - i3

@ Meta | Washington, DC
View on infosec-jobs.com

Threat Investigator- Security Analyst

@ Meta | Menlo Park, CA | Seattle, WA | Washington, DC
View on infosec-jobs.com

Security Operations Engineer II

@ Microsoft | Redmond, Washington, United States
View on infosec-jobs.com

Engineering -- Tech Risk -- Global Cyber Defense & Intelligence -- Bug Bounty -- Associate -- Dallas

@ Goldman Sachs | Dallas, Texas, United States
View on infosec-jobs.com
View more jobs