Cybersecurity Alert to Departments #1
CERT-In Security Alert on Vulnerable ApplicationsThe Indian Computer Emergency Response Team (CERT-In) has issued a critical security alert regarding vulnerabilities identified in certain applications that pose significant risks to our Institutional security. Based on this alert and our internal risk assessment, we have identified the following applications as vulnerable:
1. GiveWP [Vulnerable WordPress Donation Plugin]These vulnerabilities could potentially allow attackers to execute remote code, inject malicious objects, or compromise the confidentiality, integrity, and availability of our systems.
Immediate Action Required: All departments are advised to:-
1. Cease Usage: Discontinue the use of the following services/applications until these applications are upgraded with the latest patches/versions:
- GiveWP [Vulnerable WordPress Donation Plugin]
- SolrSearch Application on XWiki Platform [Vulnerable SolrSearch Application on XWiki Platform]
2. Identify Exposure: Check your IT systems and infrastructure to determine if these applications are in use.
Upgrade GiveWP and XWiki Platform (including SolrSearch) with the latest patches/versions. These upgrades are critical to eliminate the identified vulnerabilities and protect our systems from potential exploitation. If immediate upgrading is not feasible, discontinue the use of GiveWP and SolrSearch on XWiki Platform until the patches are applied.
Failure to comply with this advisory may expose our organization to severe security risks. Please treat this as a priority and act swiftly. For assistance or clarification, contact the Cybersecurity Team immediately.Latest News
-
15-10-2025
Cybersecurity Awareness Quiz New
04-04-2025Cybersecurity Alert to Departments #1 New
26-03-2025Cybersecurity Advisory to Departments New
26-03-2025Cybersecurity Advisory to Users New
-
26-03-2025
Cyber Awareness Handbooks
26-03-2025Learn About Cybercrime
26-03-2025Free Malware/Bot Removal Tools
11-02-2025Safer Internet Day 2025
