Poster - CVE CyberSecurity Database News (Page 109)

Apr 2, 2025 API

CVE-2024-42325 - Zabbix User Enumeration and Sensitive Information Exposure via API

CVE-2024-42325 is a recently disclosed vulnerability affecting Zabbix, the popular open-source monitoring solution. The flaw lies in how the Zabbix API’s user.get method

Apr 2, 2025

CVE-2024-36469 - Timing Attack Reveals Valid Usernames via Login Responses

Security researchers have discovered, documented, and assigned CVE-2024-36469 to a timing attack vulnerability found in many authentication systems. This flaw reveals if a username exists

Apr 2, 2025 API Exploit SQL

CVE-2024-36465 - How Regular Zabbix Users Can Exploit SQL Injection via groupBy Parameter

In June 2024, a severe security vulnerability—CVE-2024-36465—was publicly disclosed for Zabbix, a popular open-source monitoring tool used to track the status of servers

Apr 2, 2025 Exploit Google Chrome

CVE-2025-3068 - How Intents Flaw in Google Chrome Android Led to Privilege Escalation

Have you ever clicked a link in Chrome on your Android phone and had another app open unexpectedly? That’s the magic—and sometimes the

Apr 2, 2025 Exploit Google Chrome

CVE-2025-3074 - Remote UI Spoofing Attack in Google Chrome Downloads Explained

A recent Chrome vulnerability, CVE-2025-3074, has caught the security community’s attention. Even though it’s listed with *low* severity by the Chromium team, the