SQLi flaw in Elementor Ally plugin impacts 250k+ WordPress sites

An SQL injection vulnerability in Ally, a WordPress plugin from Elementor for web accessibility and usability with more than 400,000 installations, could be exploited to steal sensitive data without ...
CNET

Mullvad’s New WireGuard Implementation Put to the Test in Latest Audit

Specifically, Assured Security Consultants completed a code audit of GotaTun, Mullvad’s implementation of the WireGuard connection protocol, written in Rust. The audit consisted ...

CISA: Recently patched Ivanti EPM flaw now actively exploited

CISA flagged a high-severity Ivanti Endpoint Manager (EPM) vulnerability as actively exploited in attacks and ordered U.S. federal agencies to patch systems within three weeks.
GitHub

Obsidian - Browser Password Extractor

This tool is intended for educational purposes and personal password recovery only. Only use this on computers and accounts you own. Unauthorized access to someone else's passwords is illegal. The ...