Paragon Commercial Spyware Infects Prominent Journalists

June 19, 2025

Paragon Commercial Spyware Infects Prominent Journalists

Source: Derek Croucher via Alamy Stock PhotoAt least two journalists had their iOS devices compromised in recent months as a result of commercial spyware, according to research published this past wee …

Published Date:
Jun 19, 2025 (5 hours, 40 minutes ago)

Vulnerabilities has been mentioned in this article.

CVE-2025-24200

Source: Read More

Previous Article100,000+ WordPress Sites Exposed to Privilege Escalation Attacks via MCP AI Engine

Next Article Grafito is a simple, self-contained web-based log viewer for journalctl

Highlights

CVE-2025-5497 – Slackero PHPWCMS Feedimport Module Deserialization Vulnerability

June 3, 2025

CVE ID : CVE-2025-5497

Published : June 3, 2025, 1:15 p.m. | 2 hours, 14 minutes ago

Description : A vulnerability was found in slackero phpwcms up to 1.9.45/1.10.8. It has been declared as critical. This vulnerability affects unknown code of the file include/inc_module/mod_feedimport/inc/processing.inc.php of the component Feedimport Module. The manipulation of the argument cnt_text leads to deserialization. The attack can be initiated remotely. The exploit has been disclosed to the public and may be used. Upgrading to version 1.9.46 and 1.10.9 is able to address this issue. It is recommended to upgrade the affected component.

Severity: 6.3 | MEDIUM

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

CodeSOD: A Unique Way to Primary Key

BrowserStack launches Figma plugin for detecting accessibility issues in design phase

Parasoft brings agentic AI to service virtualization in latest release

Node.js vs. Python for Backend: 7 Reasons C-Level Leaders Choose Node.js Talent

The best CRM software with email marketing in 2025: Expert tested and reviewed

This multi-port car charger can power 4 gadgets at once – and it’s surprisingly cheap

I’m a wearables editor and here are the 7 Pixel Watch 4 rumors I’m most curious about

8 ways I quickly leveled up my Linux skills – and you can too

The Intersection of Agile and Accessibility – A Series on Designing for Everyone

The Intersection of Agile and Accessibility – A Series on Designing for Everyone

Zero Trust & Cybersecurity Mesh: Your Org’s Survival Guide

Execute Ping Commands and Get Back Structured Data in PHP

A Tomb Raider composer has been jailed — His legacy overshadowed by $75k+ in loan fraud

A Tomb Raider composer has been jailed — His legacy overshadowed by $75k+ in loan fraud

“I don’t think I changed his mind” — NVIDIA CEO comments on H20 AI GPU sales resuming in China following a meeting with President Trump

Galaxy Z Fold 7 review: Six years later — Samsung finally cracks the foldable code

Paragon Commercial Spyware Infects Prominent Journalists

Paragon Commercial Spyware Infects Prominent Journalists

CVE-2025-44658 – Netgear RAX30 PHP-FPM Misconfigured Extension Bypass Vulnerability

CVE-2025-7393 – Drupal Mail Login Authentication Bypass

My first dives in Helldivers 2’s Illuminate Super Earth invasion were a brutal, chaotic disaster, and the Halo ODST in me loved every second of it

CVE-2025-48241 – Verge3D Cross-site Scripting (XSS)

CVE-2025-49593 – Portainer Exposed Registry Authentication Credentials Leakage

Rogue npm Packages Mimic Telegram Bot API to Plant SSH Backdoors on Linux Systems

CVE-2025-5497 – Slackero PHPWCMS Feedimport Module Deserialization Vulnerability

This new third-party Xbox controller is more than just a floral reskin

CVE-2025-23121 Critical Veeam Vulnerability: Backup Servers at Risk from Authenticated RCE Flaw

Unified Training Tracking

Paragon Commercial Spyware Infects Prominent Journalists

Paragon Commercial Spyware Infects Prominent Journalists

Related Posts