Bleeping Computer

Cisco warns of Identity Service Engine flaw with exploit code

Cisco has patched a vulnerability in its Identity Services Engine (ISE) network access control solution, with public proof-of-concept exploit code, that can be abused by attackers with admin ...
The Hacker News

Automated FortiGate Attacks Exploit FortiCloud SSO to Alter Firewall Configurations

Cybersecurity company Arctic Wolf has warned of a "new cluster of automated malicious activity" that involves unauthorized firewall configuration changes on Fortinet FortiGate devices. The activity, ...
GitHub

StoryChief <= 1.0.42 - Unauthenticated Arbitrary File Upload

StoryChief (WordPress plugin) versions up to and including 1.0.42 expose a critical unauthenticated arbitrary file upload vulnerability via the REST endpoint /wp-json/storychief/webhook. An attacker ...