Latest zero-days Total: 474, in 2021: Zero-days 1, candidates: 0

Backdoor in SolarWinds Orion Platform


State-backed hackers are targeting government entities and private businesses all over the world in a global supply chain attack, in which they deploy a malicious SolarWinds update to compromise networks, according to a new report from the cybersecurity firm FireEye.

Improper access control in Easy WP SMTP plugin for WordPress

This vulnerability allows a remote attacker to reset admin account passwords.