RCE is back: VMware details file upload vulnerability in vCenter Server Once again, if a malicious actor can hit port 443 on vCenter Server, it's goodnight nurse.

Why File Transfer Vendors’ Vulnerability Responses Are Effective While zero-day vulnerabilities often capture the spotlight, attackers also continue to rely on older, known vulnerabilities and ...

Versa Networks has fixed a zero-day vulnerability exploited in the wild that allows attackers to upload malicious files by exploiting an unrestricted file upload flaw in the Versa Director GUI.

The unrestricted file upload flaw is likely being exploited by an initial access broker to deploy JSP web shells that grant full access to servers and allow installing additional malware payloads.

SonicWall urges customers to patch SMA 100 series appliances against a critical authenticated arbitrary file upload vulnerability that can let attackers gain remote code execution.

The vulnerability impacts the jQuery File Upload plugin authored by prodigious German developer Sebastian Tschan, most commonly known as Blueimp.