Operation FishMedley

April 10, 2025

ESET researchers detail a global espionage operation by FishMonger, the APT group run by I‑SOON

Source: Read More

Previous ArticleYou will always remember this as the day you finally caught FamousSparrow

Next Article MirrorFace updates toolset, expands targeting to Europe

Highlights

CVE-2025-46347 – YesWiki Remote Code Execution Vulnerability

April 29, 2025

CVE ID : CVE-2025-46347

Published : April 29, 2025, 6:15 p.m. | 52 minutes ago

Description : YesWiki is a wiki system written in PHP. Prior to version 4.5.4, YesWiki vulnerable to remote code execution. An arbitrary file write can be used to write a file with a PHP extension, which then can be browsed to in order to execute arbitrary code on the server, resulting in a full compromise of the server. This could potentially be performed unwittingly by a user. This issue has been patched in version 4.5.4.

Severity: 0.0 | NA

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

Community News: Latest PECL Releases (06.24.2025)

June 24, 2025

CVE-2025-7596 – Tenda FH1205 Stack-Based Buffer Overflow Vulnerability

July 14, 2025

CVE-2025-40620 – TCMAN’s GIM SQL Injection Vulnerability

May 6, 2025

CodeSOD: A Unique Way to Primary Key

BrowserStack launches Figma plugin for detecting accessibility issues in design phase

Parasoft brings agentic AI to service virtualization in latest release

Node.js vs. Python for Backend: 7 Reasons C-Level Leaders Choose Node.js Talent

The best CRM software with email marketing in 2025: Expert tested and reviewed

This multi-port car charger can power 4 gadgets at once – and it’s surprisingly cheap

I’m a wearables editor and here are the 7 Pixel Watch 4 rumors I’m most curious about

8 ways I quickly leveled up my Linux skills – and you can too

The Intersection of Agile and Accessibility – A Series on Designing for Everyone

The Intersection of Agile and Accessibility – A Series on Designing for Everyone

Zero Trust & Cybersecurity Mesh: Your Org’s Survival Guide

Execute Ping Commands and Get Back Structured Data in PHP

A Tomb Raider composer has been jailed — His legacy overshadowed by $75k+ in loan fraud

A Tomb Raider composer has been jailed — His legacy overshadowed by $75k+ in loan fraud

“I don’t think I changed his mind” — NVIDIA CEO comments on H20 AI GPU sales resuming in China following a meeting with President Trump

Galaxy Z Fold 7 review: Six years later — Samsung finally cracks the foldable code

Operation FishMedley

GPT-5 is Coming: Revolutionizing Software Testing

Win the Accessibility Game: Combining AI with Human Judgment

CVE-2024-45347 – Xiaomi Mi Connect Service APP Unauthorized Access Vulnerability

Best Figma Plugins for React: Convert Design to Code Faster

CVE-2025-6429 – Firefox YouTube Domain URL Parsing Vulnerability

CVE-2025-46712 – Erlang/OTP SSH Man-in-the-Middle Injection Vulnerability

CVE-2025-46347 – YesWiki Remote Code Execution Vulnerability

Community News: Latest PECL Releases (06.24.2025)

CVE-2025-7596 – Tenda FH1205 Stack-Based Buffer Overflow Vulnerability

CVE-2025-40620 – TCMAN’s GIM SQL Injection Vulnerability

Operation FishMedley

Related Posts