CVE-2025-2353 - Critical SQL Injection Vulnerability in Virtual Airlines Manager (VAM) up to 2.6.2
Published: June 2024
Summary
A critical vulnerability, CVE-2025-2353, was recently discovered in Virtual Airlines Manager (VAM) versions up to 2.6.2. This vulnerability allows
CVE-2025-2344 - Critical Authentication Bypass in IROAD Dash Cam X5 and X6—How Remote Attackers Can Exploit Vulnerable API Endpoints
In March 2025, a critical security flaw was discovered in the IROAD Dash Cam X5 and X6 dashcam devices, versions up to firmware 20250308. This
CVE-2025-2342 - Critical Hard-Coded Credentials Vulnerability in IROAD X5 Mobile App (<=5.2.5) – Exploit and Analysis
A highly critical security flaw, now identified as CVE-2025-2342, has been found in all versions of the IROAD X5 Mobile App for Android up to
CVE-2024-58103 - Square Wire’s Missing Recursion Limit Exposes ProtoReader Exploit
In June 2024, a significant vulnerability was discovered in Square’s Wire library (before version 5.2.). The flaw, registered as CVE-2024-58103, impacts parsing logic
CVE-2025-2334 - Insecure Access Control in SpringBoot OpenAI ChatGPT Lets Attackers Delete Any User’s Chat History
In early 2025, a problematic vulnerability — CVE-2025-2334 — was disclosed affecting the popular springboot-openai-chatgpt (e84f6f5). This issue exposes users to risk by allowing unauthorized deletion of
Episode
00:00:00
00:00:00