Connect with us

NEWS

3rd Party Elementor Plugins Vulnerability Affects +1 Million

Published

on

Three Vulnerabilities Fixed by Brainstorm Force in March 2021

This is a list of three separate exploits related to their Elementor Plugins that Brainstorm Force fixed in March 2021:

  • Version 1.30.0 – Fixed – March 30, 2021
    Hardened allowed options in the editor to enforce better security policies.
  • Version 4.1.7 – Important Update 09 Mar 2021
    Vulnerability fixed – Final Patch
  • Version 4.1.6 – Important Update 08 Mar 2021
    Vulnerability fixed – Registration Widget

Advertisement

Continue Reading Below

Brainstorm Force Elementor Plugin Vulnerabilities

The publishers of the Ultimate Addons for Elementor plugin notified customers of a vulnerability affecting two of their plugins.  This is the third time this year that Brainstorm Force has released an update to fix vulnerabilities in the Elementor Plugins that they publish.

The two affected plugins are addons for the popular Elementor page builder plugin. Addons are third party plugins that extend the functionality and features of the Elementor Page Builder plugin.

The addon plugins with vulnerabilities are published by a third party, Brainstorm Force.

The affected plugins for Elementor are:

  • Ultimate Addons for Elementor
  • Elementor – Header, Footer & Blocks Template

Advertisement

Continue Reading Below

An email sent by Brainstorm Force noted that they were notified of the vulnerabilities by the Wordfence security team and that they responded within hours.

According to the email:

“In each of these updates, we’ve fixed a vulnerability reported to use by the team at Wordfence.

These are very similar to the ones that the Elementor team recently fixed in their version 3.1.2.”

Screenshot of Brainstorm Force Email

Screenshot of Brainstorm Force email

Screenshot of Brainstorm Force email

The Elementor vulnerability that Brainstorm Force referenced is known as a Stored Cross-site Scripting Vulnerability, one that had the possibility of enabling malicious hackers to stage a full site takeover.

(Read: WordPress Elementor Vulnerability Affects +7 Million)

Stored Cross-site Scripting Vulnerability

Brainstorm Force did not explicitly say that the exploit patched was a Stored Cross-site Scripting Vulnerability. They only compared the fixed exploit to one that was patched by the Elementor page builder software.

A Stored Cross-Site Scripting Vulnerability is one in which a malicious script is uploaded directly to the website. This kind of vulnerability is generally considered to be more serious than another kind of cross site scripting (XSS) vulnerability called a Reflected XSS that depends on a link being clicked.

Advertisement

Continue Reading Below

With a Stored XSS Vulnerability there is no need for a link to be clicked, the vulnerability exists on the affected website.

Wordfence Has Not Released Details

Wordfence has not released details of the vulnerability. As of this date, the only description of the vulnerability has been provided by Brainstorm Force as being similar to the Elementor page builder vulnerability.

But Brainstorm Force did not explicitly state that their plugin vulnerabilities are Stored XSS exploits. Only that they were similar to the Elementor vulnerability that was an XSS vulnerability.

Fixed Versions of Elementor Addons

The Elementor – Header, Footer & Blocks Template

The Elementor – Header, Footer & Blocks Template was patched on March 31, 2021 to version 1.5.8.

According to the changelog that documents what the updates contain, this update hardened it against a vulnerability.

Advertisement

Continue Reading Below

This is what the changelog documented: 

“1.5.8
Fix: Hardened allowed options in the editor to enforce better security policies.”

The fact that the editor needed hardening gives a clue that suggests that the vulnerability may be one that requires that a hacker have subscriber level privileges.

But this is not yet been officially confirmed at this time.

Ultimate Addons for Elementor

The Ultimate Addons for Elementor plugin was also patched on March 31, 2021 to version 1.30.0.

The reason given as to what was fixed is exactly the same as for the Elementor – Header, Footer & Blocks Template.

According to the Ultimate Addons for Elementor changelog:

“Hardened allowed options in the editor to enforce better security policies.”

Update Immediately

It is highly recommended that all publishers using these two plugins update their versions immediately.

Advertisement

Continue Reading Below

The latest patched versions of the software are:

  • The Elementor – Header, Footer & Blocks Template 1.5.8
  • Ultimate Addons for Elementor 1.30.0

Searchenginejournal.com

Keep an eye on what we are doing
Be the first to get latest updates and exclusive content straight to your email inbox.
We promise not to spam you. You can unsubscribe at any time.
Invalid email address

NEWS

We asked ChatGPT what will be Google (GOOG) stock price for 2030

Published

on

We asked ChatGPT what will be Google (GOOG) stock price for 2030

Investors who have invested in Alphabet Inc. (NASDAQ: GOOG) stock have reaped significant benefits from the company’s robust financial performance over the last five years. Google’s dominance in the online advertising market has been a key driver of the company’s consistent revenue growth and impressive profit margins.

In addition, Google has expanded its operations into related fields such as cloud computing and artificial intelligence. These areas show great promise as future growth drivers, making them increasingly attractive to investors. Notably, Alphabet’s stock price has been rising due to investor interest in the company’s recent initiatives in the fast-developing field of artificial intelligence (AI), adding generative AI features to Gmail and Google Docs.

However, when it comes to predicting the future pricing of a corporation like Google, there are many factors to consider. With this in mind, Finbold turned to the artificial intelligence tool ChatGPT to suggest a likely pricing range for GOOG stock by 2030. Although the tool was unable to give a definitive price range, it did note the following:

“Over the long term, Google has a track record of strong financial performance and has shown an ability to adapt to changing market conditions. As such, it’s reasonable to expect that Google’s stock price may continue to appreciate over time.”

GOOG stock price prediction

While attempting to estimate the price range of future transactions, it is essential to consider a variety of measures in addition to the AI chat tool, which includes deep learning algorithms and stock market experts.

Finbold collected forecasts provided by CoinPriceForecast, a finance prediction tool that utilizes machine self-learning technology, to anticipate Google stock price by the end of 2030 to compare with ChatGPT’s projection.

According to the most recent long-term estimate, which Finbold obtained on March 20, the price of Google will rise beyond $200 in 2030 and touch $247 by the end of the year, which would indicate a 141% gain from today to the end of the year.

2030 GOOG price prediction: Source: CoinPriceForecast

Google has been assigned a recommendation of ‘strong buy’ by the majority of analysts working on Wall Street for a more near-term time frame. Significantly, 36 analysts of the 48 have recommended a “strong buy,” while seven people have advocated a “buy.” The remaining five analysts had given a ‘hold’ rating.

1679313229 737 We asked ChatGPT what will be Google GOOG stock price
Wall Street GOOG 12-month price prediction: Source: TradingView

The average price projection for Alphabet stock over the last three months has been $125.32; this objective represents a 22.31% upside from its current price. It’s interesting to note that the maximum price forecast for the next year is $160, representing a gain of 56.16% from the stock’s current price of $102.46.

While the outlook for Google stock may be positive, it’s important to keep in mind that some potential challenges and risks could impact its performance, including competition from ChatGPT itself, which could affect Google’s price.


Disclaimer: The content on this site should not be considered investment advice. Investing is speculative. When investing, your capital is at risk.

Source link

Keep an eye on what we are doing
Be the first to get latest updates and exclusive content straight to your email inbox.
We promise not to spam you. You can unsubscribe at any time.
Invalid email address
Continue Reading

NEWS

This Apple Watch app brings ChatGPT to your wrist — here’s why you want it

Published

on

Apple Watch Series 8

ChatGPT feels like it is everywhere at the moment; the AI-powered tool is rapidly starting to feel like internet connected home devices where you are left wondering if your flower pot really needed Bluetooth. However, after hearing about a new Apple Watch app that brings ChatGPT to your favorite wrist computer, I’m actually convinced this one is worth checking out.

The new app is called watchGPT and as I tipped off already, it gives you access to ChatGPT from your Apple Watch. Now the $10,000 question (or more accurately the $3.99 question, as that is the one-time cost of the app) is why having ChatGPT on your wrist is remotely necessary, so let’s dive into what exactly the app can do.

What can watchGPT do?

Source link

Keep an eye on what we are doing
Be the first to get latest updates and exclusive content straight to your email inbox.
We promise not to spam you. You can unsubscribe at any time.
Invalid email address
Continue Reading

NEWS

Discord goes all in with AI: chatbots, automods, whiteboards and more

Published

on

Discord goes all in with AI: chatbots, automods, whiteboards and more

AI is the future, at least over on Discord.

The messaging application originally made for gamers has become Gen Z’s favorite online hangout destination of choice, and now it’s rolling out a number of features powered by artificial intelligence.

In an announcement(Opens in a new tab) on Thursday, Discord shared what’s coming to the platform soon: an AI chatbot, an automated AI moderator, a conversation summarizer, an avatar remixer, and a whiteboard. Some of these features begin rolling out today, March 9. Others will launch in the coming weeks and months.

While AI has jumped into the mainstream thanks to the popularity of OpenAI’s ChatGPT chatbot, Discord has had an active AI community for quite a while now. According to the company, third-party AI apps already on the platform already have more than 30 million monthly users. Nearly 3 million servers on Discord have some AI element integrated into the community.

In fact, the biggest community on Discord is Midjourney, a text-to-image AI project which allows users to generate art from right within the server. Discord says Midjourney’s server has more than 13 million members.

So, with AI being such an integral part of Discord already, it seemed like only a matter of time before Discord itself started bringing AI directly into the platform.

images

AutoMod AI
Credit: Discord

The first feature coming to some Discord servers as soon as today is AutoMod AI. Discord already has an AutoMod feature, which basically automatically moderates rooms for admins based on the rules of the server. Discord has now integrated OpenAI-powered AI into AutoMod, allowing it to search the server and contact moderators when it thinks rules are possibly being broken. According to Discord, AutoMod AI can also consider the context of a conversation so, for example, users don’t get penalized for posts that are misconstrued.

Clyde is a bot that Discord users may already be familiar with, and starting next week, Clyde is getting an AI upgrade. Currently, the Clyde bot provides information, such as server error messages, and also responds to timeout or ban requests from users and mods. However, that’s pretty much all Clyde was able to do. Until now.

Clyde chatbot

Clyde
Credit: Discord

Clyde will now be able to answer all sorts of questions from users, much like OpenAI’s ChatGPT chatbot. Users simply have to type “@Clyde” followed by their prompt. Clyde will be able to pull up information and also help find specific emojis or GIFs based on a user’s description.

Another AI feature coming to Discord next week is Conversation Summaries. Again, the name is fairly descriptive of what it does. With users all over the world, many Discord channels are always moving regardless of time of day. Conversation Summaries will allow users to catch up on what they missed on a Discover Server. The AI-powered feature will “bundle” chats into topics so users can easily read up on what they find most interesting.

Conversation Summaries

Conversation Summaries
Credit: Discord

Starting today, developers can start playing with Avatar Remix, an open-source Discord app that integrates AI art into the messaging app. Avatar Remix allows users to take a fellow user’s avatar and change it up “using the power of generative image models.” What does that mean? In the demo that Discord showed Mashable, a user was able to add a party hat or a mustache to a friend’s avatar by simply mentioning their username and describing what changes they’d like to make.

Avatar Remix

Avatar Remix
Credit: Discord

The company is also launching an “AI incubator,” offering support for developers creating AI-powered apps on Discord.

Finally, Discord revealed a feature that’s coming soon that has long been requested by the Discord community: a whiteboard. But, of course, this won’t be just any collaborative whiteboard feature. It’s going to be AI-powered, allowing users to collaborate in generating AI art and more.

Source link

Keep an eye on what we are doing
Be the first to get latest updates and exclusive content straight to your email inbox.
We promise not to spam you. You can unsubscribe at any time.
Invalid email address
Continue Reading

Trending

Follow by Email
RSS