Seraphinite Accelerator WordPress Plugin Vulnerabilities Affect 60K Sites

A security advisory was issued for two vulnerabilities affecting the Seraphinite Accelerator WordPress plugin.

WordPress Calendar Plugin Vulnerability Affects Up To 100k Sites

Wordfence published an advisory on a vulnerability in the LatePoint – Calendar Booking WordPress Plugin that makes it possible for authenticated attackers with Agent-level access and above to gain ...
Microsoft

OAuth redirection abuse enables phishing and malware delivery

OAuth redirection is being repurposed as a phishing delivery path. Trusted authentication flows are weaponized to move users ...