FFmpeg PixelSmash Flaw Allows RCE on Video Players, Media Servers, NAS Appliances

Attackers can send crafted media files to execute code in any application that uses FFmpeg’s libavcodec library.
The post FFmpeg PixelSmash Flaw Allows RCE on Video Players, Media Servers, NAS Appliances appeared first on SecurityWeek.
Continue reading FFmpeg PixelSmash Flaw Allows RCE on Video Players, Media Servers, NAS Appliances

Attackers Exploit Gravity SMTP Plugin Flaw to Harvest Valuable WordPress Data

Vulnerable WordPress plugin iterations leak API keys, secrets, tokens, server information, and other data.
The post Attackers Exploit Gravity SMTP Plugin Flaw to Harvest Valuable WordPress Data appeared first on SecurityWeek.
Continue reading Attackers Exploit Gravity SMTP Plugin Flaw to Harvest Valuable WordPress Data